Managed EDR

The ability to export data to various 3rd parties like sharepoint or powerbi. This would be very helpful in being able to analyse data over time independently of Huntress to allow full control and functionality that a specific user would need.

We'd like to be able to add all countries and VPNs, apart from the ones specified as "expected", to the "unauthorised" category. Meaning that any sign in from outside of the country or on a personal VPN would result in the account being automatically blocked.

When creating an expected rule for a country or VPN, you can schedule an expiry date, however you can't schedule a start date. It would be good to have the functionality to schedule a start date, as it would help with holiday requests etc.

Send alerts to email/PSA when a new Agent is installed and when an Agent is uninstalled.

Most of our devices are windows but having coverage on linux would be nice.

Please give us the ability to resend invitations to admin users that haven't accepted the invite yet. It's faster than what we have to do now which is to delete and re-invite the users.

Able to kill huntress agent, rio, and updater processes even though tamper protection otherwise working to prevent changing the service. Can take 5+ minutes to respawn. Prevent ending processes.

It would be good to display which tenants have had the Huntess CSS footer added and which ones haven't on the dashboard if possible. It would also be good to have a way to push the CSS footer post onboarding in the cases where Huntress couldnt add it due to custom branding being already present. This is a nice feature but there isnt any visibility on it in the huntress portal.

A column in the incidents table that indicated which users marked an incident as resolved.

When an incident is closed by the Huntress SOC, no details are given about what was investigated. For example, show the mailbox rule that was evaluated.