Allow Listing CyberHoot in Sophos EndPoint Protection

1st May 2025 | HowTo, MSP, Technology

When Phish testing environments where Sophos EDR is present, you will need to enable allow listing and add the CyberHoot addresses. Otherwise the Website Management defenses will intercept any attempt to click on a link taking you to a nefarious phish testing website.

There are three steps to accomplish this as shown in the graphic above.

From Sophos Central, click on “Global Settings”
From Global Settings, click on “Website Management”
From Website Management, click on “Add” and then define the domains, individual IP addresses, or CIDR for CyberHoot as outlined in the article below.

CyberHoot Mail Relays to Add to your Allow-Lists

Latest Blogs

Stay sharp with the latest security insights

Discover and share the latest cybersecurity trends, tips and best practices – alongside new threats to watch out for.

24th March 2026 | Blog

When the Attack Looks Just Like You

Artificial Intelligence (or AI) is making phishing emails smarter, malware sneakier, and credential theft easier...

10th March 2026 | Blog

Cybercriminals Are Exploiting DocuSign with Customizable Phishing Templates

DocuSign has become one of the most trusted tools in modern business. Contracts, HR paperwork, NDAs, vendor...

3rd March 2026 | Blog

PromptSpy: The Android Malware That Hired an AI Assistant

And yes, Google's Gemini AI had no idea it was working for the bad guys. Malware has always followed a script....

Get Started All Posts

Get Started

Ready to soar above security threats?

Get sharper eyes on human risks, with the positive approach that beats traditional phish testing.

Get Started Book a Demo