What HailBytes is building next. We list items by track without committing to calendar dates — the page updates as work lands. Items already shipping are on the SAT product page.
If a feature you need isn't listed, tell us. Our roadmap is shaped by enterprise and MSP feedback, not analyst reports.
Per-user module recommendations driven by click history, time-to-report, and repeat-clicker patterns. Replaces the one-size-fits-all training cadence with a per-user track that focuses on the lures and topics each employee actually misses.
Export quizzes, tracks, and completions in SCORM and xAPI so customers can host HailBytes training inside their existing LMS (Cornerstone, Workday Learning, Moodle, SAP Litmos).
Pulls from PhishTank, OpenPhish, and MISP into a curated template gallery. Run simulations off lures that hit the wild this week, not last quarter's archive.
VirusTotal, urlscan, and AbuseIPDB lookups on URLs and senders in the Reported Inbox. Analysts triage real phish faster; simulated and benign collapse out of the queue automatically.
CNAME-routed admin and phish hostnames per MSP tenant, with automatic TLS issuance and renewal. Today the platform supports per-tenant logos, colors, and support email; custom domains are the last brand surface to land.
Cross-tenant rollups for MSP analysts: aggregated risk scores, repeat-clicker watchlists, and renewal-risk indicators across the whole client portfolio — without leaving the parent tenant.
Native allowlist push and quarantine-skip for simulation domains, replacing the manual Advanced Delivery Policy step.
API-driven allowlisting for the Google admin console so simulation mail clears Gmail's spam pipeline without per-domain manual rules.
Direct integrations with the secure email gateways that strip simulation lures today. Targets the largest single source of "campaign sent, nobody got it" support tickets.
Auto-create tickets from the Reported Inbox triage flow with full message context, assigned to the right SOC queue.
Native incident creation against ServiceNow Security Incident Response with bidirectional status sync.
Ticket-creation + status sync for MSP teams running Zendesk as their client-facing helpdesk.
Direct Query connector for SAT campaign and training datasets. Build dashboards on top without a CSV pipeline.
JDBC and Looker-block options for customers standardized on those BI stacks.
Push-based evidence exports on a schedule, signed and time-stamped — useful for auditors, GRC ingest, and offline retention.
A short list to anchor the page; the SAT product page is the canonical inventory.
Auto-provisioning from Entra, Okta, JumpCloud, OneLogin. Per-tenant identity boundary on MSP deployments.
TutorialNative Block Kit / Adaptive Card notifications for campaign and Reported-Inbox events, per-channel routing, signed retries.
One-click reporting from the Outlook ribbon on M365, desktop, web, and mobile.
DetailsCustomer feedback drives the next quarter's priorities. If something on this page is blocking adoption for your team, tell us and we'll triage it.
Talk to Us