KnowBe4 PhishER/PhishER Plus Reviews & Product Details

PhishER also helps sort and prioritize suspicious emails automatically, making it easier to focus on the ones that pose the biggest risk. It pulls together emails reported by users into one place, helping your team respond faster, spot patterns, and better protect staff from future phishing attempts. Review collected by and hosted on G2.com.

There are so many comprehensive features built-in, it can be difficult at times to ensure you're using all the features. Additional quick-start guides, simplified setup wizards, or more role-based dashboards would make it even easier for teams to maximize everything the platform offers without feeling overwhelmed. Review collected by and hosted on G2.com.

That we have an actionable portal in which to sandbox potential threats. In most cases, it does a good job determining if a reported email is either a threat, spam or clean. Review collected by and hosted on G2.com.

PhishER is lacking in key areas including features, reporting, and support. It does not offer the robust capabilities found elsewhere in the KnowBe4 ecosystem, particularly when compared to KSAT. The interface feels unpolished, and the platform frequently struggles to process requests, often running slowly and encountering errors more often than is acceptable for a security product.

Automation capabilities are minimal. Beyond basic keyword-based tagging, there is very little available to meaningfully streamline workflows or reduce manual effort. Reporting is another major weakness—built-in reports provide limited actionable insight and pale in comparison to the comprehensive reporting available in KSAT.

My experience with PhishER support has been particularly disappointing. Issues are routinely minimized or described as “expected behavior,” even when the platform becomes difficult or impossible to use. It is apparent that frontline support agents lack sufficient training and escalation support from senior staff and the development team.

If you are considering PhishER because you have been impressed with KnowBe4’s KSAT product, be aware that the same level of polish, investment, and maturity has not been applied here. Based on my experience, PhishER does not currently meet the expectations one would reasonably have for a product in this space. Review collected by and hosted on G2.com.

I like the automated triage that helps prioritize risky emails, the threat intel that helps us confirm if something is malicious, and the ability to group similar phishing emails so we can clean them up faster across the company. Review collected by and hosted on G2.com.

I’d like to see the automation and similar message detection become more consistent. Sometimes it misses emails that are clearly part of the same campaign and needs manual tuning. It would also be nice to have a bit more flexibility and visibility when building and troubleshooting automation workflows. Review collected by and hosted on G2.com.

PhishER provides a good platform for users to report potential phishing emails with. As admin, it provides a safe location to review those reported emails and ways to handle those. You can integrate several platforms with it to make it more powerful. The PhishRIP is great for pulling phishing emails out of user's inboxes that may not have reported it yet. It's another useful tool when combating phishing emails. It doesn't take long to set up and is pretty basic, making it easy to review the reported emails. I use it daily to review reported emails and take the necessary action against them. Review collected by and hosted on G2.com.

My biggest dislike with KnowBe4 is the delay that it operates at time. That may be due to it being a web based application, or it may be due to it's integration with M365 that I use, but sometimes it can take awhile to respond, so I have to wait for it to catch up. These do not happen every time, but when they do, it is fairly annoying. Review collected by and hosted on G2.com.

PhishER lets us tailor campaigns to our specific needs, including curated tests for particular roles across the organization. The admin center is intuitive and easy to navigate, and it brings the most pressing issues to the surface so they get the attention they need. Review collected by and hosted on G2.com.

The search feature is a bit rigid, and I would like more flexible options for how to filter through thousands of reported emails, PhishRIP queries, and similar items. Review collected by and hosted on G2.com.

I really like that KnowBe4 PhishER/PhishER Plus lets users across our company simply click a button to report suspicious emails, which significantly boosts its adoptability. It's also very easy to set up. The initial automated analysis is crucial in making our decision-making process quick and effective, allowing us to evaluate emails and determine the correct course of action almost instantaneously. Review collected by and hosted on G2.com.

I wish the tool had a partnership with a company like any.run to allow us to analyze attachments in a safe environment real-time within the platform to see if there's malicious code or additional attack vectors embedded inside attachments. Review collected by and hosted on G2.com.

I love that users can submit suspicious emails and then if we find that they are a threat we can do a "rip" to identify if other users have received the same email and pull it from their inboxes. Review collected by and hosted on G2.com.

Some of the selection processes within the platform take a bit of getting used to. You need to make sure that you deselect an option because it doesn't automatically do that - so I've sometimes inadvertently sent a response to a previously selected email, instead of only to the one that I wanted to address. Review collected by and hosted on G2.com.

We have seen an increase in reporting of phishing emails. As our training and testing has been going users are reporting and responding to real threats. Review collected by and hosted on G2.com.

More Integrations and reporting capabilities Review collected by and hosted on G2.com.

I find the detail I'm able to see and the sandbox environment in which to detonate emails to determine if there is a threat, as well as the automation for known emails to free up some of my time. Review collected by and hosted on G2.com.

I find it does not always return clean emails to inbox's and instead leaves them in the Junk Email folder. This might be something with how our account is configured, but I have not been able to determine what is causing this to happen. Review collected by and hosted on G2.com.

PhishER allows me to create some automation to help respond to users on a timely basis. For example, I can create rules that look for Spam keywords and automatically send a response thanking our users for their due diligence and give them some advice on reducing spam emails in the future. Additionally, if there are emails reported that PhishER has defined as a threat, or upon review I have decided is a threat, I am able to query our entire Outlook system and find messages that match the criteria, then pull and quarantine these messages. Review collected by and hosted on G2.com.

As bad actors continue to evolve, sometimes they are able to send to users, and the receiver's email is not located in the header. Sometimes this prevents the query from working as expected to remove these emails/threats from other users' inboxes. Review collected by and hosted on G2.com.