Reporting & Dashboards

It would be helpful if we could customize the sender email for the monthly and quarterly threat reports, so they come from our email. Currently, we are sending these to ourselves, and then manually emailing them to clients so they come from a known sender. Having the ability to customize the sender would save us time each month.

For compliance reasons we need to prove that we train our staff on the tools we use. Right now, what I've been able to find is from the Hub, in the link below. This is a good starting point, but we have to take this and make custom training with it. Other tools we are using have learning paths, universities, etc. I think with the Huntress platform, this could be pretty simple, and should be different based on Roles. https://hub.huntress.com/#/page/Product-Training

Starting with Ransomware detections, correlate signals between different Huntress products to uncover suspicious activity, tying compromised identities and endpoints together.

Currently, escalations do not auto-generate service tickets, and many involve known recurring issues. When these are resolved, the automated notification lacks essential context, such as the resolution details or the individual responsible. I recommend enhancing this process by allowing users to attach a brief note to the resolution email or, at a minimum, including the name of the person who handled the escalation to provide a point of contact for follow-up questions.

I am the admin for an organization (AWRG) under the account for CoOpLink. I would like to receive either an e-mail and/or a text message (preferably both) whenever there is an incident recorded in my organization. Currently there is no known way to filter the communications to just my organization. I would prefer to receive these notifications directly from the Huntress system instead of having to be notified by the CoOpLink tech team. I am sure that I am not the only organization admin that would like this feature.

I would like the ability to have email escalations set at the organization level rather than just the account level. This would ensure that subtenant administrators receive necessary notifications directly, improving communication and response times.

When getting an escalation for Windows Defender "System Health - Hosts not being properly protected". Once the escalation is resolved, there is no way to view what hosts were affected. This would allow us to follow up and see if there is a bigger issue.

While assisting with a HITRUST audit, I found that the current Incident report page cannot be easily printed to PDF. It would be beneficial to have a feature that allows printing a comprehensive PDF of all tabs for presentation to auditors. This would streamline the audit process and ensure all necessary information is easily accessible in a single document.

Can the default view for the Organizations dashboard please be set to Show 500 per page by default, instead of 10? I would like to be able to view all my organizations without having to adjust the drop down every time. See attached photo

It would be great to be able to sort users by the permission level that they have. We have a number of users with varying permissions from read only to admin and being able to have the list sorted for easy checks of who's got what permissions would help with ensuring all the access is up to date.