Managed EDR

We're using 3/4 of the "Huntress Stack", it would be really appreciated if there is some kind of "loyality program" or reward system for customers commited to you as vendor :)

Want to be able to set a start date for expected rules so that when a client gives us the start and end date of a trip we can add the schedule in when they tell us instead of having to schedule in to do it on the day they leave.

Currently when logging in the user is presented an email field, and a button that says sign in with SSO If the user fills in their email, then hits this SSO button, they are redirected to another email field where they have to fill this in again and hit another button. Allowing the email value from the previous box to carry over would be awesome and remove the additional button click(s). Ideally filling in your email and selecting SSO on the first screen should take you directly to your SSO provider!

It would be great if we could customize the message on the splashscreen shown, when a device is isolated. custom text, phone number and multiple languages would be grand :)

Allow specific IP-ranges not only countries in whitelists. Both for organization and per user. Have certain applications in a country I don't want to allow.

Adding additional telemetry streams and views to be able to better identify lateral movement, increasing our overall efficacy and being able to better pinpoint specific attack types.

Case: Exclude specific filenames regarding the stored passwords scan. Not all files with 'password' in the path- or filename hold actual credentials. Example: Some of our customers are working with 1Password. Every time documention on how to use 1Password or how to implement SSO is opened, we get an Alert because the filename "1Password SSO Configuration" has 'password' in the title. Solution: Please make it possible to exclude certain specific filenames or pathnames from the automated stored credential scan so we can filter out that particular filename over 1 tenant or account-wide.

-Batch add and remove exclusions At the very least do this in a table where the dashboard does not have to reload.

I'd love it if Huntress could provide information or an alert if an organisation uses MDE across the board but only default Defender is running on a given agent.

It would be great to be able to manually blacklist applications from running, either by name, path, hash or certificate. We are currently investigating ways to do this and had to resort to a custom C# application that we install as service. Threatlocker, AutoElevate and now Blackpoint cyber all have this feature as part of their services. It would be a huge value add and I would hate to have to sign up for another service from yet another vendor.