TROY is the operational mailing platform behind Lancelot's authorized phishing simulation programs. We measure and reduce human-factor risk for enterprise security teams through realistic, consent-based campaigns delivered with full SPF, DKIM, and DMARC authentication.
Every TROY campaign is delivered through a hardened mail infrastructure with full authentication and reputation monitoring.
Six disciplines, one platform. Each one is a tab in the operator console; each one ships with hardened defaults that meet enterprise security review.
Operators provide a URL; TROY clones the page, rewrites assets to a controlled CDN, and binds it to a campaign-scoped landing slug. No more hand-coded fake pages.
Multilingual templates (Hebrew + English) with personalization tokens. Every link is wrapped with per-recipient tracking; every pixel reports back over HTTPS.
When an employee falls for a simulation, they're routed to a contextual training page in their own language — not a generic warning. Learning happens at the moment of failure.
Per-employee, per-department, longitudinal. Scores can be pushed to PRODPO and other security platforms via webhook.
Per-domain DKIM keys, automated SPF/DMARC verification, warm-up scheduling, and reputation tracking against Microsoft SNDS and Google Postmaster.
Every operator action is also a REST endpoint. Documented with OpenAPI/Swagger. Connect TROY to your SIEM, ticketing, or HRIS in a single afternoon.
From campaign draft to risk score in PRODPO in four operator-friendly stages. Every step is logged for audit.
Pick a tenant, an email template, a landing page, and a target list. Set a send rate that respects domain warm-up. The pre-flight checklist blocks send if SPF, DKIM, or DMARC is failing.
Hangfire workers dispatch through Postfix on a clean-IP MTA. DKIM signs the message; OpenDMARC validates alignment; List-Unsubscribe headers are inserted automatically.
Opens, clicks, submissions, and "reported as phishing" events are captured per-recipient. Submitted credentials are encrypted at rest and discarded after retention.
Affected employees see a contextual training page. Their risk scores update. PRODPO receives the delta via webhook for downstream handling.
"We needed something simpler than GoPhish but production-grade. TROY's URL cloner saved us a week of hand-coding fake landing pages, and the deliverability scoreboard meant we caught a DMARC misalignment before our first send."
"Every other awareness vendor wanted to host our employee data. TROY runs in our infrastructure, integrates with PRODPO, and gives us actual risk scores instead of vanity click rates."