Boards

Managed EDR

Integrations

Security Awareness Training

ITDR (MDR for Microsoft 365)

Reporting

macOS

UI/UX

MAV (Managed AV - Microsoft Defender)

Ransomware Canaries

Managed SIEM

API

SOC/Incident/Investigations/Escalations

Account/Organization/User Management

Powered by Canny

Managed SIEM

Ingest Windows DNS logs

If a server is configured as DNS server ingest the logs for the service. This is listed in CIS v8.1, Safeguard 8.6.

in progress

Ingest access logs from things like Screenconnect, Kaseya, Nable, Auvik, Datto RMM etc etc that MSP's use to admin their clients.

in progress

Ingest PowerShell logs

Ingest powershell data for auditing and detection purposes. Malicious PowerShell scripts are commonly used by threat actors to run silent actions in the background.

in progress

Ninja RMM Monitoring

I would sleep better at night if you guys watched my RMM logs from Ninja.

in progress

Reporting on Log Sources not Sending Data

Adding in reporting on configured data sources that stop sending data to Huntress

in progress

PowerShell Integration

Track PowerShell modules and scripts to identify anomalous/malicious activity

in progress

DattoRMM Activity Logs

Collect, parse, and store activity logs from DattoRMM.

in progress

Powered by Canny