The domains used in our simulations may occasionally be falsely flagged by Google Safe Browsing as malicious, deceptive, or involved in social engineering. When this occurs, users might see warning banners when clicking on links on Hoxhunt simulations—potentially hindering the intended flow. By implementing a Safe Browsing allowlist that includes Hoxhunt simulation domains, you ensure that users can access simulation content without interruption.
Prerequisites
- Administrative access to the Google Admin Console (for enterprise settings) or the Chrome browser settings (for individual users).
- A list of the domains or URLs you want to allow.
- One or more XML or CSV templates for uploading the domains to each respective service.
About Hoxhunt simulation domains
Hoxhunt has several domains used in its simulations. Please see an overview of them below.
Sender domains: You can obtain a list of Hoxhunt sender email domains via Admin Portal and via External API.
Landing page domains: Used in Credential harvester simulations. Please find a CSV attached to the end of this article.
Fail link domains: This group contains both landing page domains as well as all other domains used in fail link URLs. A comprehensive list is currently not available. Instead, please use Sender domains and Landing page domains for your click-through allowlisting.
Allowlisting via Entra ID for Windows 11
1. Access the Entra ID Portal
- Go to Devices > Windows. Or follow the link: Microsoft Intune Windows
- Click on Create > New Policy.
- Select Windows 10 and later as Platform and select Settings catalog as a Profile type.
- Click Create.
2. Creating the profile
- Give a name for your profile, for example Chrome Safe Browsing Allowlist for Hoxhunt domains, and click Next.
- On the Configuration settings, click Add settings.
- On the Settings picker side panel, search for Safe Browsing settings.
- Click on Google Google Chrome Safe Browsing settings and on the bottom options select Configure the list of domains on which Safe Browsing will not trigger warnings.
- Toggle the option to Enabled.
- Import the list of Hoxhunt domains and click Next.
- Under Scope tags, click Next.
- Under Assignments, assign the profile to a group and click Next.
- Review and create the profile.
For more information, see: Manage Chrome browser with Intune Settings Catalog (Windows) - Chrome Enterprise and Education Help
Steps to Allowlist via Intune for Mac
1. Access the Intune Portal
- Go to Devices > Mac. Or follow the link: Microsoft Intune Mac
- Click on Create > New Policy.
- Select Templates as a Profile type.
- Select Custom.
- Click Create.
2. Creating the profile
- Give a name for your profile, for example Chrome Safe Browsing Allowlist for Hoxhunt domains, and click Next.
- On the Configuration settings, enter a name for the profile. This will be visible for users in their device’s settings under device management/profiles.
- Upload the ChromeSafeBrowsingAllowlist.xml you have populated with Hoxhunt domains.
- Assign to group and click Next.
- Review and create the profile.
Allowlisting via Google Enterprise Policy
1. Access the Google Admin Console
- Go to admin.google.com.
- Sign in with an account that has permission to manage Chrome policies.
2. Navigate to Device Management
- From the Admin Console, select Devices or Device Settings (names vary by version).
- Under Chrome, go to Settings or Policies.
3. Locate Safe Browsing Policy
- Look for policies related to Security or Safe Browsing.
- Depending on your console version, you might find it under User & Browser Settings or a similar section.
4. Add Your Hoxhunt Domains
- Look for a setting named Safe Browsing Allowlist, URL Exemptions, or Whitelist.
- Enter the domains you want to allowlist.
- Save your policy changes.
5. Apply and Confirm
- Assign the policy to the relevant organizational units (OUs) or user groups.
- Wait for policy propagation (this can take up to an hour according to Google).
- Confirm that end users no longer receive Google Safe Browsing warnings for the allowlisted domains.
Allowlisting via MDM Local Browser Settings (Multiple Devices)
1. Open Chrome
- Click the three-dot menu in the top-right corner of Chrome.
- Select Settings and scroll to Privacy and security.
2. Check Enhanced/Standard Protection
- Under Security, review whether Enhanced protection or Standard protection is enabled.
- Although Chrome doesn’t provide a direct “allowlist” here, toggling the level of protection may reduce or remove block warnings for certain domains.
3. Use Enterprise Policies for Full Control
- For a thorough allowlist solution, set up the enterprise policy described earlier.
- Browser-level changes alone may not be sufficient for large-scale deployments.
Verification
- Attempt to access the allowlisted site from a test account or device.
- Confirm there are no Google Safe Browsing warnings.
Additional Considerations
- Regularly review your allowlist policy to ensure only valid and approved sites remain.
- Monitor Google Safe Browsing updates and domain reputation to maintain security posture.