SHIPPED WORK2026
PhisGuard
AI-powered phishing simulation campaigns for companies · realistic scenarios, live tracking, automated awareness training.
PhisGuard generates realistic phishing campaigns automatically · Claude drafts emails based on the company name, context, and current news, the Gophish (Go) engine delivers them, the Fastify backend tracks clicks and credential entry, and pushes the victim into a 5-minute targeted micro-training on click. NIS2 compliance and employee awareness in one loop.
THE PROBLEM
- -Classic KnowBe4 campaigns are the same for everyone · easy to spot
- -NIS2 requires recurring awareness training · not maintainable manually
- -Training is only valuable right after a fail · emailed PDFs go unread
- -No objective metric showing the team actually learns
WHAT THE CLIENT GOT
- Tailored campaigns · real metric for the company's current maturity
- Human-in-the-loop learning · 5-min training at the moment of failure
- NIS2-compliance documentation · CISO audit-ready
- Trajectory · quarter-over-quarter measurable drop in click-through
WHAT WE DELIVERED
- +AI-generated campaigns · a different scenario per employee, grounded in company context
- +Gophish-based engine · stable Go engine for delivery, landing pages, credential capture
- +Real-time tracking · who clicked, who entered credentials, who caught it
- +Automated micro-learning · whoever clicks gets a 5-minute training within the hour
- +NIS2-ready report · for CISO, HR, regulators (MNB / supervisory)
STACK
- TypeScript
- Fastify
- PostgreSQL
- Anthropic
- Go
- Gophish
RELATED READING
- Mobile app (iPhone + Android) · CybersecurityMobile analytics without cross-app tracking · 2026 reality~65% of iOS users decline tracking. Here's how we run product analytics for mobile apps anyway.
- AI solutions · CybersecurityAgentic AI · the safe tool-use pattern we ship by defaultAgentic AI that can send email and move money is not just a chatbot. Here's the safe tool-use pattern we ship.
- Website & online shop · CybersecurityMulti-tenant SaaS on Postgres · the RLS-first playbookBuilding multi-tenant SaaS on Postgres? RLS is non-negotiable. Here's the playbook we ship.
- Cybersecurity · Website & online shopHungarian fintech regulatory calendar 2026 · what MNB, NAV, and NAIH actually require this yearMNB, NAV, and NAIH all have 2026 obligations that hit Hungarian fintechs · this is the compact calendar of what's due and when.