Elementrica
03Case Studies04References05Company06News07Contact
PLENDE

PRODUCT

See who in your company will click, before a real attacker does

E-One is the controlled phishing-simulation platform we build at Elementrica. It runs a campaign from a realistic message, through a cloned login page, to a teaching page that explains what just happened. You see who opened, who clicked, who entered credentials and who recognized the attempt.

Realistic email, SMS and voice campaignsMeasures opens, clicks, submitted data and reportsSusceptibility rate by departmentReports ready for the board and the IT team

WHAT E-One IS

It simulates the attack that actually happens

E-One grew out of our offensive practice. The team that runs social-engineering campaigns and red teaming needed a platform that mirrors phishing the way real attackers do it, not a drill from a canned template. We use the same platform on client engagements.

Most companies know phishing is a problem, but not how big it is for them. E-One turns that hunch into numbers: it shows who really clicks, who submits data and who spots the attempt and reports it. The board sees the real risk, and the IT team gets a concrete list of people and departments to strengthen.

MODULES

Everything a social-engineering campaign needs

01
Campaign builder
Build a campaign from ready scenarios: target groups, send scheduling, personalization by department and role, plus A/B tests of different pretexts.
02
Message & page editor
Email templates and faithfully cloned login pages with previews across email clients. Impersonate a known brand or an internal system, down to the domain and certificate.
03
Teaching page
After a click, the employee lands on a page that explains what just happened and how to spot a phishing attempt. A teachable moment instead of just a slip.
04
Multiple channels
A campaign is not just email: smishing (SMS), vishing (voice calls) and quishing (QR codes) test alertness where people least expect it.
05
Results dashboard
Track in real time who opened, clicked, submitted data and who reported the incident. Campaign timeline and a susceptibility rate by department.
06
Report & handoff
Separate reports for the board and for IT, a list of people to retrain, and a smooth handoff onto the training path in the E-Two platform.

Full data isolation between companies in a multi-tenant model. Every campaign runs only with the client’s consent and within an agreed scope, and the data stays confidential.

WHY PHISHING WORKS

The weakest link is not technology, it is a moment of haste

Phishing does not break defenses by force, it exploits haste and trust. A well-crafted message arrives at the right moment, impersonates a known brand or an internal system, and asks for one thing: a click or a piece of data. Even the best technical controls will not help if an employee does this knowingly and in good faith.

For the board it means one thing: the risk is real and measurable, and one clicked link can open access to a mailbox and data. For the IT team it is a concrete signal where to focus education and strengthen processes. Every step of the campaign is logged, so the conversation rests on evidence, not guesswork.

CYBER MADE IN POLAND

Made in Poland, proven in real campaigns

We build E-One in Krakow, inside the same team that runs penetration tests and social-engineering simulations for public-sector, finance and IT clients. The scenarios grow out of techniques that genuinely work on people, not out of theory.

#CyberMadeInPolandCybersecurity Made in EuropeNTHW

SCENARIOS

Mirrors the techniques attackers actually use

E-One spans a dozen-plus scenarios across channels, from classic credential harvesting to vendor impersonation and fake notifications.

Attack scenarios
EMAILCredential harvestingLogin
FILEFake invoicePayment
WEBCloned login pageWeb page
SMSSmishingSMS message
VOICEVishingVoice call
QRQuishingQR code
OAUTHOAuth consent phishingApp access
BECVendor impersonationBEC
EMAILPassword resetAccount
WEBIT notificationHelpdesk
TARGETSpear phishingNamed target
FILEPayload attachmentFile
EMAILCredential harvestingLogin
FILEFake invoicePayment
WEBCloned login pageWeb page
SMSSmishingSMS message
VOICEVishingVoice call
QRQuishingQR code
OAUTHOAuth consent phishingApp access
BECVendor impersonationBEC
EMAILPassword resetAccount
WEBIT notificationHelpdesk
TARGETSpear phishingNamed target
FILEPayload attachmentFile
What we measure
OpensClicksSubmitted dataReports
Channels
EmailSMSPhoneQR codeWeb
Frameworks & compliance
MITRE ATT&CKDORANIS2ISO 27001

The scenario list keeps growing. Need a pretext for a specific industry or system? We build a scenario to order.

HOW IT WORKS

From scope to a list of people to retrain

01
Scope & consent
We agree target groups, channels, scenarios and formal consent for the campaign.
02
Scenario
We pick a realistic pretext and channel matched to the company and its processes.
03
Campaign
The send goes out and you track results live on the dashboard, step by step.
04
Measurement
We record opens, clicks, submitted data and reports, broken down by department.
05
Report
Results go separately to the board and IT, and at-risk people move onto the training path.

BY THE NUMBERS

A simulation that shows real risk, not a template statistic

4
campaign channels: email, SMS, phone and QR code
12+
ready phishing scenarios across channels
4
measured stages: open, click, data, report
PL / EN
reports separately for the board and the IT team

E-One covers the full campaign lifecycle: scope and consent, scenario selection, multi-channel delivery, behavior measurement, and reporting plus handing at-risk people to training.

See referencesSee case studies

SEE E-One

Book a platform demo

We will show E-One live and walk you through a campaign, from the scenario to the teaching page and a finished report. The demo is run by someone from our social-engineering team.

Talk to the team
No obligation · we reply within 24 h · your data stays confidential
Channels
Email / SMS / voice / QR
Measurement
4 campaign stages
Report
Board + IT
What you get
Real phishing risk shown on your own people
Hard numbers instead of hunches
Results in the board’s language and in IT’s language
A smooth move from test to training
Asia, ElementricaKacper, ElementricaGrzesiek, Elementrica
A member of our team runs the demo, and we reply within 24 hours. No bots, no call center.