Skip to main content
Skip table of contents

Recreate Attack (Beta)

Read this article in: German

Recreate Attack is a brand new feature currently in Open Beta. It is available to all customers on the Premium or Ultimate package. We welcome you to try it out and provide feedback!

With Recreate Attack, you can turn real phishing emails into safe, realistic simulations in minutes - helping your employees learn from the threats that matter most, while keeping your organization secure. This allows you to quickly adapt to emerging real threats your organization is facing and train your employees accordingly.

How it works

Recreate Attack is a new capability in Template Studio. Instead of starting from a blank template or a generic library item, you can:

  1. Upload a screenshot of a real phishing email

  2. Let AI recreate the email structure and content

  3. Review and fine-tune the result

  4. Use it in a phishing simulation

All in a matter of minutes.

Demo walkthrough

Instructions

  1. Go to Phishing Simulation / Template Studio and select + Create custom template.

    Screenshot 2026-01-28 at 13.43.37.png

  2. Select Recreate from a real phishing mail. A new dialog window will open.

    Screenshot 2026-01-28 at 13.44.18.png

  3. By default, the template will be created in your organization’s standard language. You can add additional languages from the dropdown menu. The AI will create automated translated versions of this template for you.

  4. Upload a screenshot of a phishing email you want to recreate. This could be an impersonation attempt, a credential-harvesting email, or any other type of phishing message you want employees to learn from. After selecting your image, Recreate Attack will begin analyzing the contents, remove or neutralize all malicious elements and recreate the email as a safe draft that you can then refine. A notification at the bottom right will keep you informed of the progress, which can take a few minutes. Note that the template will be given a name based on the content of the screenshot as well.

Screenshot 2026-01-28 at 13.44.49.png
Screenshot 2026-01-28 at 13.48.57.png

You can safely navigate elsewhere in the manager and return to Phishing Simulation / Template Studio later.

Review and customization

Once the process has finished, you can review and customize the template that has been created. To preview the template, simply select the eye icon in its row. Furthermore, you can select the pen icon to customize your template by:

  • editing text

  • replacing placeholders or images

  • improving realism by fine-tuning sender names, addresses and other elements

For more details on editing templates, check out our QuickEdit documentation.

Once you’re happy with your template, you can save it and use it when setting up a phishing simulation!

Additional information

Why this matters

Train on real threats

Employees learn best from examples that feel familiar. Recreate Attack lets you train on the exact types of phishing emails your organization is seeing today - not last year.

Respond faster

What used to take hours or days can now be done in minutes. That means faster reaction to emerging threats and quicker reinforcement for employees.

Keep simulations safe

All recreated emails are fully sanitized. No real malicious links or payloads are ever included. Simulations remain safe at all times. And while you can customize the sender domain, all domains are fully controlled by SoSafe.

What Recreate Attack is - and isn’t

Recreate Attack is:

  • A fast way to turn real phishing emails into simulations

  • A self‑service workflow inside Template Studio

  • Designed for realism, speed, and control

Recreate Attack is not:

  • A live threat detection or monitoring tool

  • An automatic campaign launcher

  • A way to send real malicious content

Open Beta: What to expect

Recreate Attack is currently available as an Open Beta.

The following features are available:

  • Screenshot-based phishing email recreation

  • Automated translations

  • Template customization

Some advanced automation - such as automated learning hint generation, and more advanced sender modeling - is planned for later in Q1.

Your feedback during the beta will help shape the next iteration.

If you’d like to see Recreate Attack in action or share feedback during the Open Beta, reach out to your SoSafe Customer Success point of contact or explore it directly in Template Studio.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close