Free PBQ Demo · Intermediate

Topology · Phishing Defence

Stop credential-harvest phishing — enforce SPF / DKIM / DMARC, scan attachments, quarantine policy, user reporting.

Tests: Email security, anti-phishing controls, SPF/DKIM/DMARC, user training — Security+ Domain 2 Threats.

~8 minNo signup needed

Scenario

Harden the mail pipeline so credential-harvest phishing dies at the gateway.

Enforce SPF/DKIM/DMARC, scan attachments, quarantine suspicious mail, train + empower users.

Network Topology — Live View

monitoring
Internet MailinboundMail GatewayMimecast / ProofpointQuarantineadmin-releasedUser MailboxesExchange / M365SIEMphish telemetryAwarenesssimulated phish
InfectedAlertConfiguredclick any hostto configure

Mail Gateway

Mimecast / Proofpoint

Inbound Filtering

Enforce on inbound mail:
DMARC policy:

Tasks

  • Mail gateway — SPF + DKIM + DMARC enforced, DMARC p=reject.
  • Sandbox attachments, rewrite URLs, detect impersonation.
  • Quarantine — admin-approved release only.
  • User mailboxes — Report Phishing button + external sender banner.
  • Forward phishing telemetry to SIEM; quarterly sim + click-driven training.

0 settings configured

Liked this PBQ? There are 80+ more inside.

Sign up free to take full timed exams with mixed MCQs and all 6 PBQ types — across 10 CompTIA and Cisco certifications.