CanIPhish is a cybersecurity vendor headquartered in Queensland, Australia. Its focus is building a โhuman firewall,โ with a core product built around an AI-powered phishing simulation and security awareness training platform. Beyond traditional email phishing drills, it also covers hosted phishing websites, conversational email phishing, deepfake voice phishing, a learning management system, and human risk management. It is a good fit for organizations that want to bring employee behavior into their security governance program.
In terms of protection model, CanIPhish focuses on preventive training and behavioral measurement rather than gateway-style blocking. The platform provides a phishing email library, training module library, AI content generation, AI employee profiling, automated risk/skill-driven training, just-in-time phishing education, and gamified badges. On the administration side, it includes dynamic employee lists, scheduled reporting, custom notifications, audit logs, compliance reporting, and more.
Its integrations are fairly comprehensive, including Microsoft Entra ID and Google Workspace directory sync, Outlook/Gmail Report Phish plugins, Webhook, Vanta, Drata, SAML SSO, MFA, and SCORM import/export. The compliance information explicitly mentions a SOC 2 Type 2 Attestation Report, and the training experience is also marked as WCAG 2.2 Level AA Conformant.
Pricing transparency is one of its strengths: the Free plan is $0/month for up to 10 employees; Professional requires a minimum of 11 employees; Enterprise requires a minimum of 25 employees and includes voice phishing, SSO, white labeling, dark web monitoring, and advanced support. Both monthly and annual billing are available, with annual billing saving 60%; custom quotes are available for organizations with more than 1000 employees. Payment options include credit cards, direct debit in some regions, and international wire transfer, with multiple currencies supported, including USD, AUD, EUR, GBP, and others.
CanIPhish is suitable for SMBs that want to get started on their own, as well as education, healthcare, retail, and MSP teams running ongoing security awareness training programs.
Its strengths include broad feature coverage, public pricing, a rich set of AI simulation scenarios, and MSP-friendly white-label capabilities. The downsides are that key capabilities such as SSO, dark web monitoring, voice phishing, and advanced support are concentrated in the Enterprise plan, while the Free plan is limited in both scale and functionality.
The available information does not provide details on access quality from mainland China, Chinese-language content, local invoicing, or in-country data hosting, so its China access assessment remains unknown. Chinese organizations considering procurement should focus on validating network connectivity, email deliverability, payment/contract processes, and data compliance. Comparable products to evaluate include KnowBe4, Cofense, Hoxhunt, SoSafe, TitanHQ, and similar offerings.
โ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on caniphish.com official site.
caniphish.com is an Australia Cybersecurity provider. TG4G tracks its product information, an overall rating of 8.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach caniphish.com directly.