Lucy Powered by ThriveDX provides comprehensive tailored security awareness training to tackle your weakest line of defense – human error. With a combination of our powerful phishing platform and professional services, we provide a unique and effective security solution to keep your organization safe.
Simulate the full cyber threat landscape using customizable, easy-to-edit templates for any type of phishing attack. Our predefined, multilingual attack simulations offer a safe learning environment and real-world experience for testing whether your employees are fully familiar with the dangers of the internet.
Hundreds of interactive, web-based training modules help you elevate your company’s security awareness culture. Our continuous adaptive training model takes employees through various security topics relevant to your industry and delivers customized content based on employee progress and performance.
Our real-time reporting dashboard and automatic monthly reports allow you to measure employee progress, while maintaining full control and visibility of the program. You gain insights that are easy to understand, communicate to stakeholders, and take action on.
Generic training is ineffective as every company is subject to different tech stacks, policies, and regulations.
Lucy’s custom-tailored training and phishing solutions are built to solve your specific needs.
Uncover your organization’s weakest points with baseline testings that evaluate your vulnerabilities.
Get custom recommended attacks and awareness campaigns based on the results of our baseline testings.
Execute a variety of realistic phishing attacks to maintain resilience across your entire organization.
Optimize every employee’s learning experience with ongoing educational content personalized to fit their needs.
Our real-time dashboards provide powerful insights so stakeholders can gain transparency and act quickly.
The automatic response detection makes it possible to define and analyze automatic e-mail responses (e.g., out of office) as well as mail delivery errors (e.g., user unknown) within the campaign.
A built-in messaging platform allows the LUCY admin to communicate interactively with the recipients inside or outside the LUCY campaigns. All e-mails are archived and can be evaluated.
Raising employee awareness at random is the key factor for effective and sustainable awareness within the organization. Randomly sending many concurrent campaigns is one of the best means of training employees.
LUCY smart routines adapt the server installation to the given resources. Applications Server, DBMS Sizing, Memory and CPU usages are calculated during installation or during operations. You can scale a single, cloud-based LUCY installation for 400,000+ users.
The LUCY admin interface is available in different languages and can be translated into other languages on request.
Allows the automatic creation of official and trusted certificates for the admin, backend as well as for the campaigns. LUCY will automatically use the domain configured in the system to generate the certificate. If you decide to use SSL for the campaign, you can generate a custom certificate or a CSR (Certificate Signing Request). You can also import official trusted certificates.
LUCY offers a role-based access control (RBAC) that restricts system access to authorized users only. The permissions to perform certain operations are assigned to specific roles within the user settings. Members or staff (or other system users) are assigned particular roles through which to acquire the necessary computer permissions to perform particular LUCY functions.
Quickly upload users in bulk via a CSV, LDAP, or text file. Create different groups, organized by department, division, title, etc. Update users in a running campaign. Build dynamic user groups based on the phishing campaign results.
“Clients” can refer to different companies, departments, or groups that have an associated campaign in LUCY. These clients can be used, for example, to allow campaign-specific access or to create customer-specific analysis.
In case you want to reuse similar campaigns, you can save a complete campaign with attack templates and eLearning content as a campaign template. This feature allows you to evade having to repeat similar configurations over and over again.
LUCY offers several Setup Tools. Create a complete campaign in less than 3 minutes using the predefined campaign templates or let the Setup Wizard guide you through the configuration. Optionally, a risk-based setup mode is available, which makes specific suggestions for the selection of attack and awareness templates based on the company’s size and industry.
Preliminary checks before starting a LUCY campaign: E-Mail Delivery Check, MX Record Check, Schedule Check, Spam Check, and others.
A given campaign can be submitted to a supervisor in LUCY for approval.
The DNS API allows the administrator to create any domain on LUCY within seconds. Since attackers very often use similar spellings of a customer’s domain (called Typosquatting), this risk can also be represented in LUCY. If the customer’s original domain is, for example, “onlinebanking.com”, the DNS wizard could be used to reserve domains such as “0nlinebanking.com”, “onl1nebanking.com” or “onlinebanking.services” and assign it to a campaign later. LUCY then automatically creates the corresponding DNS entries (MX, SPF, Whois Protection etc) for the IP where LUCY is installed. Of course, the admin can also use his provider’s own domains in LUCY.
