Allow Listing CyberHoot in Sophos EndPoint Protection

1st May 2025 | HowTo, MSP, Technology

When Phish testing environments where Sophos EDR is present, you will need to enable allow listing and add the CyberHoot addresses. Otherwise the Website Management defenses will intercept any attempt to click on a link taking you to a nefarious phish testing website.

There are three steps to accomplish this as shown in the graphic above.

From Sophos Central, click on “Global Settings”
From Global Settings, click on “Website Management”
From Website Management, click on “Add” and then define the domains, individual IP addresses, or CIDR for CyberHoot as outlined in the article below.

CyberHoot Mail Relays to Add to your Allow-Lists

Latest Blogs

Stay sharp with the latest security insights

Discover and share the latest cybersecurity trends, tips and best practices – alongside new threats to watch out for.

5th May 2026 | Blog

Attackers Don’t Need a Key. They Already Have Yours.

Most breaches don't start with a hacker in a hoodie cracking code at 3am. They start with your username and a...

10th April 2026 | Blog

Claude Mythos Opened Pandora’s Box. Project Glasswing Is Racing to Close It.

Article Updates: As of May 6th 2026, every major U.S. AI lab, including Google DeepMind, Microsoft, xAI,...

31st March 2026 | Blog

When the “CEO” Calls and Asks You to Move Money Fast

A guide to spotting senior executive impersonation scams before the fake CEO gets a real wire transfer. It...

Get Started All Posts

Get Started

Ready to soar above security threats?

Get sharper eyes on human risks, with the positive approach that beats traditional phish testing.

Get Started Book a Demo