pip install -q -U google-generativeai <br>
pip install python-dotenv

In [2]:
# Import the Python SDK
import google.generativeai as genai  # type: ignore
from dotenv import load_dotenv
import os
import json
import random

# Load environment variables from the .env file
load_dotenv()

# Access the API key
GEMINI_API_KEY = os.getenv("GEMINI_API_KEY")

genai.configure(api_key=GEMINI_API_KEY)

## Initialize the Generative Model
model = genai.GenerativeModel('gemini-pro')

  from .autonotebook import tqdm as notebook_tqdm


In [3]:
# Load employees from a JSON file
employees_file = "assets/EmployeeInfo.json"
if os.path.exists(employees_file):
    with open(employees_file, "r") as file:
        employees = json.load(file)
else:
    raise FileNotFoundError(f"Employee file '{employees_file}' not found.")


In [4]:
# Example phishing parameters
phishing_examples = [
    {"Reason": "Account Suspicious Activity", "Fake Link": "https://example.com/secure-login", "Created By": "Sam Sussy"},
    {"Reason": "Password Expiry Notification", "Fake Link": "https://example.com/reset-password", "Created By": "Sally Sneaky"},
    {"Reason": "Exclusive Training Webinar", "Fake Link": "https://example.com/join-webinar", "Created By": "Richard Rascal"},
    {"Reason": "Email Storage Full", "Fake Link": "https://example.com/manage-storage", "Created By": "Bernard Bandit"}
]

In [97]:
# Function to generate a modular prompt
def generate_prompt(employee, random_pick):
    logo = "https://logos-world.net/wp-content/uploads/2023/04/Proximus-Logo.png"

    return f"""
    Write a concise and professional email in HTML format from {random_pick['Created By']} to {employee['FirstName']} {employee['LastName']} from the {employee['Role']} team.
    Focus on the theme of their role as a {employee['Role']}.
    Include this link: {random_pick['Fake Link']} for a specific call to action related to their role.
    Ensure the email includes:
    
    A professional tone and proper structure.
    A header with the {logo} company logo and title.
    A clearly defined body with personalized content.
    A call-to-action button for the provided link.
    A footer with a disclaimer and company information.
    Keep the email concise and visually appealing, adhering to a professional HTML email style like the following example: 
    <!DOCTYPE html>
    <html>
    <head>
        <meta charset="UTF-8">
    <style>
            body {{
                font-family: 'Arial', sans-serif;
                margin: 0;
                padding: 0;
                background-color: #eef1f5;
                color: #333;
                line-height: 1.6;
            }}
            .email-container {{
                width: 100%;
                max-width: 700px;
                margin: 40px auto;
                background-color: #fff;
                border-radius: 12px;
                overflow: hidden;
                box-shadow: 0 6px 20px rgba(0, 0, 0, 0.1);
                border: 1px solid #ddd;
            }}
            .header img {{
                max-width: 120px;
                display: block;
                 margin: 10px auto 10px auto;
                position: relative;
            }}
            .header h1 {{
                font-size: 24px;
                margin: 0;
                font-weight: bold;
            }}
            .header p {{
                margin: 5px 0 0;
                font-size: 16px;
                color: #e3e3e3;
            }}
            .body {{
                padding: 30px;
                font-size: 16px;
           }}
            .body h1 {{
                font-size: 22px;
                font-weight: bold;
                color: #0046a8;
                margin-bottom: 20px;
            }}
            .body p {{
                margin: 15px 0;
            }}
            .body ul {{
                margin: 15px 0;
                padding-left: 20px;
            }}
            .body ul li {{
                margin-bottom: 10px;
            }}
            .cta {{
                display: block;
                width: fit-content;
                margin: 25px auto;
                padding: 15px 30px;
                background-color: #0046a8;
                color: #fff;
                font-size: 16px;
                text-decoration: none;
                border-radius: 6px;
                font-weight: bold;
                text-align: center;
                box-shadow: 0 4px 10px rgba(0, 0, 0, 0.2);
                transition: all 0.3s ease-in-out;
            }}
            .cta:hover {{
                background-color: #003580;
                box-shadow: 0 6px 14px rgba(0, 0, 0, 0.3);
            }}
            .footer {{
                background-color: #f9f9f9;
                text-align: center;
                padding: 20px;
                font-size: 14px;
                color: #666;
                border-top: 1px solid #ddd;
            }}
            .footer p {{
                margin: 5px 0;
            }}
            .footer a {{
                color: #0046a8;
                text-decoration: none;
            }}
            .footer a:hover {{
                text-decoration: underline;
            }}
        </style>
    </head>
    <body>
        <div class="email-container">
            <div class="header">
                <img src="{logo}" alt="Company Logo">
            </div>
            <div class="body">
                <!-- Email content will go here -->
            </div>
            <div class="footer">
                <!-- Footer content will go here -->
            </div>
        </div>
    </body>
    </html>
    """

# Generate a phishing email for a randomly selected employee
random_employee = random.choice(employees)
random_pick = random.choice(phishing_examples)
prompt = generate_prompt(random_employee, random_pick)

# API call to generate the email body
body_response = model.generate_content(prompt)  # Ensure `model` is properly initialized

email_body = body_response.text

# Generate the email subject line
subject_prompt = f"Write a compelling, realistic email subject line for the following email:\n{email_body}"
subject_response = model.generate_content(subject_prompt)
email_subject = subject_response.text.strip()  # Remove unnecessary whitespace


# Output the email details
print("Subject:", email_subject)
print("\nHTML Email Template:\n", email_body)


Subject: Optimize Your Storage Management: A Guide for Software Engineers

HTML Email Template:
 ```html
<!DOCTYPE html>
<html>

<head>
    <meta charset="UTF-8" />
    <style>
        body {
            font-family: 'Arial', sans-serif;
            margin: 0;
            padding: 0;
            background-color: #eef1f5;
            color: #333;
            line-height: 1.6;
        }

        .email-container {
            width: 100%;
            max-width: 700px;
            margin: 40px auto;
            background-color: #fff;
            border-radius: 12px;
            overflow: hidden;
            box-shadow: 0 6px 20px rgba(0, 0, 0, 0.1);
            border: 1px solid #ddd;
        }

        .header img {
            max-width: 120px;
            display: block;
            margin: 10px auto 10px auto;
            position: relative;
        }

        .header h1 {
            font-size: 24px;
            margin: 0;
            font-weight: bold;
        }

        .header p

In [98]:
output_file_path = "email_template.html"  # Specify the file path
with open(output_file_path, "w", encoding="utf-8") as file:
    file.write(email_body)


In [13]:
# Dynamic explanation generator
def generate_explanation(employee, random_pick):
    explanation = (
        f"* **Generic Greeting:** The email uses 'Hi {employee['FirstName']}' instead of a more formal address with a last name, "
        "which is common in phishing emails.\n"
        "* **Unsolicited Contact:** Claims to address the recipient about a topic ({random_pick['Reason']}) without prior interaction.\n"
        f"* **Unverified Company Name:** The sender, {random_pick['Created By']}, is not recognizable, raising suspicions.\n"
        f"* **Suspicious Link:** The link ({random_pick['Fake Link']}) does not correspond to a trusted company domain and could lead to a phishing site.\n"
        "* **Pressure to Act:** Encourages the recipient to review or act quickly, creating subtle urgency.\n"
        "* **Vague Context:** Does not provide specific, verifiable details about the supposed issue or request."
    )
    return explanation

# Function to generate phishing email JSON data for employees
def generate_phishing_emails(employees, model, num_examples=5):
 
    phishing_emails = []
    for employee in employees:
        for _ in range(num_examples):
           
            random_pick = random.choice(phishing_examples)
            prompt = generate_prompt(employee, random_pick)

            # Generate email body using the model
            body_response = model.generate_content(prompt)
            email_body = body_response.text

            # Generate email subject using the model
            subject_prompt = f"Write a compelling, realistic email subject line for the following email:\n{email_body}"
            subject_response = model.generate_content(subject_prompt)
            email_subject = subject_response.text

            explanation = generate_explanation(employee, random_pick)

            phishing_email = {
                "FirstName": employee["FirstName"],
                "LastName": employee["LastName"],
                "Role": employee["Role"],
                "Email": employee["Email"],
                "body": email_body,
                "subject": email_subject,
                "explanation": explanation
            }

            phishing_emails.append(phishing_email)

    return phishing_emails

In [None]:

phishing_emails = generate_phishing_emails(employees, model, num_examples=1)

# Save the generated emails to a JSON file
output_file = "phishing_emails.json"
with open(output_file, "w") as file:
    json.dump(phishing_emails, file, indent=4)

print(f"Phishing emails saved to {output_file}")

Phishing emails saved to phishing_emails.json
