Terms & Acceptable Use

Phish Flash is a free, educational security-awareness tool. By using it, you agree to the following — written plainly on purpose.

Educational purpose only

Everything here exists to help people learn to recognize phishing and social engineering. Every scenario is fictional and inert — there are no working links, forms, or files. Nothing on the site is professional, legal, financial, or security advice, and none of it directs any real-world action.

Acceptable use

• Don’t use anything here to deceive, phish, or harm real people.
• Don’t present these fictional examples as genuine messages from any real company.
• Don’t attack, overload, scrape abusively, or otherwise misuse the site.

No warranty; limitation of liability

The site and its content are provided “as is,” without warranties of any kind. You use it at your own discretion and remain responsible for your own decisions — follow your organization’s policies and consult a qualified professional where appropriate. To the fullest extent permitted by law, Phish Flash and its operator are not liable for any loss or damage arising from use of the site.

Content & brands

Real company and brand names may appear only as the impersonated target of a fictional attacker, for education. We don’t imply that any real company, brand, or domain is malicious. See the Disclaimer.

Licensing

The site’s code is open-source under the MIT License. The training content (cards and guides) is licensed under CC BY-NC-SA 4.0 — share and adapt for non-commercial use, with credit, under the same terms.

Changes

We may update these terms or the content at any time, and may change or remove material at our discretion. Questions? Email info@phish-flash.com.