allow muting or exclusion of a host from password file alerts | Voters

allow muting or exclusion of a host from password file alerts

Andy Suarez

If a client/customer wishes to keep a file on their machine that has the name "passwords" on it that's up to them. We should be able to mark somewhere that we've followed up about that file and would like to mute or white-list or exclude future alerts about it. I can't imagine having hundreds or thousands of machines what kind of noise this would be creating weekly.

November 10, 2023

Jason Barrett

Agreed. I have a "password" file on a client's network drive. I know what it is and they know what it is, but multiple endpoints trip the trigger. I need to be able to exclude certain drives, folders and files from the scan from time to time.

Patrick Sofo [Security Product Manager]

Merged in a post:

Credential Report Exclusion By File Or Folder

Jon Penner

We need the option to create Credential Report Exclusion by file or folder and apply it to the entire organization and not just one device.

January 18, 2024

Deon Marshall

Surprisingly, not a lot of noise.
However, exclusions are already possible at a host or organisation level. 
The documentation is on their KB page: https://support.huntress.io/hc/en-us/articles/21966460493331-Potentially-Unsecured-Credentials

Andy Suarez

Deon Marshall: was told that this is not possible by huntress support, thanks for pointing that out. for others you can get to this by clicking hamburger menu in top right, then settings, then scroll down to "exclusions" section and add a new exclusion there.