Domains
PhishSpot uses two types of domains: Secured Domains (for sending emails) and Platform Domains (for hosting landing pages).
9.1 Secured Domains (Sender Verification)
Section titled “9.1 Secured Domains (Sender Verification)”Secured domains verify that you own the email domains you send phishing simulations from. This ensures emails are delivered reliably and not flagged as spam.
Navigate to Settings → Secured Domains. The list shows each domain with its verification status:
| Status | Meaning |
|---|---|
| Unverified | Domain has been added but verification has not been completed |
| Pending | Verification is in progress (DNS records added, awaiting propagation) |
| Verified | Domain ownership confirmed — ready for campaign use |
| Failed | Verification attempt failed — check your DNS records |
Verifying a Domain
Section titled “Verifying a Domain”To add and verify a new secured domain:
-
Click New Domain and enter the domain name (e.g., yourcompany.com).
-
PhishSpot will provide DNS records (CNAME or TXT) that you need to add to your domain’s DNS settings.
-
After adding the DNS records, click Verify DNS to check if the records have propagated.
-
Alternatively, you can verify via email — PhishSpot sends a verification code to a standard admin address on the domain.
9.2 Platform Domains (Landing Page URLs)
Section titled “9.2 Platform Domains (Landing Page URLs)”Platform domains are the URLs used for your phishing landing pages. When a recipient clicks the link in a phishing email, they are taken to a page hosted on one of these domains.
Navigate to Settings → Platform Domains. The list shows:
| Column | Description |
|---|---|
| Name | Domain display name |
| Public | Whether this domain is shared across accounts or private to yours |
| Whether the domain can also be used for sending emails | |
| Expires On | Expiration date (or Never if permanent) |
| Campaigns | Number of campaigns currently using this domain |