403 Forbidden
Video · Light
Design System Inspiration
Phishfirewall — extracted via DESIGN.md
Security · Phishing prevention
Typography
Montserrat
Heading
ui-monospace
Body
Color palette
TL;DR
Phishfirewall utilizes a high-contrast "Dark Mode" aesthetic even on light canvases, leaning heavily on a deep primary red (#ac2024) for critical actions and brand markers. The system is built on a geometric foundation of Montserrat, favoring bold weights (700) for display and medium weights (500) for UI labels. Surfaces alternate between pure white (#ffffff), soft gray (#f3f4f6), and deep slate (#111827) to create a rhythmic, section-based narrative. Components are defined by generous radii (12px to 16px) and a distinct "pill" geometry for badges and secondary buttons, while primary CTAs often use a softer 12px rounded corner with a deep, multi-layered drop shadow.
Target audience
The target audience is any user who encounters an access restriction, requiring clear and immediate notification of the forbidden status.
Brand Voice
Empowering, modern, and highly efficient: the voice of a tireless AI partner that replaces manual drudgery with positive reinforcement.
Positioning
PhishFirewall is an autonomous human risk management platform that uses AI to replace manual security awareness programs. It is designed for IT and security leaders who are tired of ineffective, "check-the-box" training and want to build subconscious security reflexes across their workforce.
Voice principles
- —Agentic and Autonomous: Uses active verbs to position the AI (Lora) as a teammate who "handles everything" rather than just a tool.
- —Empathetic to the User: Acknowledges the frustration of "boring, generic" training and the "manual overhead" of traditional IT management.
- —Scientifically Confident: References behavioral science and "smart reflexes" to move the conversation from simple education to habit formation.
- —Positive and Gamified: Focuses on "celebrating success" and "positive reinforcement" rather than the punitive "gotcha" culture of legacy phishing tests.
