Phishing Simulation

SMS Templates

SMS Templates

Overview

SMS phishing templates let you simulate smishing attacks — fake text messages designed to trick users into clicking a malicious link. SMS campaigns require additional setup due to regulatory requirements (particularly in India under TRAI).

Setup process

Step 1 — Register an SMS header

The header is what appears as the sender name on the recipient's phone.

  1. Register with your SMS sending service (e.g., Jio TrueConnect)
  2. Choose header type:
    • Promotional — 6 numeric digits, must start with category number
    • Transactional / Service — 6 alphanumeric characters
  3. Create a unique header (duplicates are rejected)

Step 2 — Create the content template

  1. Select communication type: Promotional (P), Transactional (T), or Service (S)
  2. Select category and registered header
  3. Write your message — use {#var#} for variable fields
  4. Keep variables to 2 or fewer (3+ may be rejected by TRAI)
  5. Include your organisation PE name/trade name in the content

Step 3 — Get approval

Submit to your SMS provider. Allow 24–72 hours for approval.

Step 4 — Create in PhishGrid

Once approved, create the template in PhishGrid using the exact approved content.

Tips

  • Plan SMS campaigns well in advance — approval takes time
  • Keep messages short and urgent-sounding
  • Test with a small group first to verify delivery
  • Include a realistic-looking short URL for maximum realism