Skip to content Skip to navigation Skip to footer


FortiPhish tests your employees against real-world phishing techniques. These tests are based on the latest research by FortiGuard Labs. With phish testing as part of your broader security awareness program, your employees can learn to recognize, avoid, and report email-based cyberthreats including phishing, impersonation, Business Email Compromise (BEC), and ransomware.

Administrators can see the rates at which emails were opened, clicked, submitted, executed, replied to, and reported.

Granular Reporting

FortiPhish provides detailed visibility into campaign results. Administrators can drill down into progress and results to clearly see how employees are performing against a phish campaign.

An example custom phish template. Update email title, subject, sender name, sender email, clicking behavior, redirect URL, attachments, user reply tracking, and email body

Custom Phish Builder

Create custom phish emails that tie into specific areas of concern that you want to test employees against (Ex. a fake message coming from your HR department, an email exploiting news of an internal event, or a spoofed message from your CEO).

Risk grades on a scale from A to F

Campaign Risk Grades

Risk Grades help you get an immediate understanding of overall campaign performance and how well your employees are doing in spotting, avoiding and reporting a phish test.

Features and Benefits


Includes out-of-the-box, editable phishing templates—or you can create your own


Integrates smoothly with your existing user directory


Leverages the Fortinet Security Awareness and Training service to address problematic behavior


Tests your entire workforce with translated templates ready for use


Enables full visibility into campaign and user performance, plus associated risk


Challenges employees by making phish testing harder as your employees get smarter

FortiPhish Use Cases

icon benefits spam
Perform Phishing Testing
Test user awareness and vigilance with simulated phishing attacks that mimic real-world attacks.
icon benefits reliable
Assess and grade results
Analyze results and visualize program trends while identifying at-risk users and areas for improvement.
top rate icon
Teach and change behavior
Use immediate training at the point-of-click plus overall awareness training to teach users how to defend against phishing and other email threats

Models and Specifications


Per-mailbox/user subscription

Phish Templates


Basic templates

Event-specific templates

Custom templates

Point-of-click education pages

Phish Alert Button (PAB)

Integration with Fortinet Security Awareness and Training Service*

Risk and Reporting


Post-campaign reports

Campaign risk grades

Language Support


Multi-language – Admin

Multi-language – Templates

User Definition


User definition – Manual/CSV

User definition – LDAP

FortiCare Support & Professional Services

Fortinet is dedicated to helping our customers succeed, and every year FortiCare services help thousands of organizations get the most from their investments in Fortinet's products and services. To achieve this, FortiCare follows the life-cycle approach and provides unique services to help our customers in their success journeys.

Technical Support Services

Technical Support Services

Various per-device options are available for efficient operations. FortiCare Elite option provides a 15-minute response time for critical products.