Huntress Managed EDR Reviews

We are using it as an MDR, EDR, antivirus product. We are also utilizing their Microsoft 365 ITDR, which is the new name, and their security awareness training platform. The only product they offer that we do not use currently is their SIM tool. It is on our radar and our roadmap, but we are not using it.

Their SOC is super responsive and does a great job of catching incidences and being on top of any issues that arise. They have an automated remediation tool that works well for both ITDR and EDR. It allows approval of remediations, performs all the necessary steps, verifies them, and resolves issues efficiently.

The ITDR product is coming along great, however, we are still getting many false positives. A lot of user accounts get locked out over nonissues, and while they are easy to resolve, someone still needs to take action. It is time spent by a technician.

I have been using it for a little over two and a half years, coming up on three years.

I have never had a problem that was Huntress's fault.

It is pretty scalable. I am currently running a little over twenty-five hundred endpoints without any problems or concerns about managing that number of computers.

If I contact support, it is almost immediate. They respond quickly and work with me until the problem is fully resolved. They are thorough and ensure the problem is addressed without pushing responsibilities onto me unnecessarily.

Neutral

Previously, we used SentinelOne, Webroot, and BlackPoint. I switched since I have tested SentinelOne multiple times and could bypass it. BlackPoint generates many false positives, taking more time to manage than Huntress.

The initial setup process was smooth. We were provided with an engineer who wrote a script based on our current structure and remote management software. This script allowed easy deployment, and Huntress's support ensured everything went smoothly.

We were given an engineer who sat down with us, understood our current setup, wrote a script for deployment, and did all the backend work necessary for a smooth deployment.

The pricing is piecemeal, per agent on EDR, MDR, and per user on ITDR. It can get expensive for small to medium businesses if large license quantities are not purchased. However, given Huntress's success rate, I am willing to pay for a product that performs well.

The alternatives I have used include SentinelOne, Webroot, and BlackPoint.

I rate Huntress an eight out of ten. I prefer using it over other security tools because it has been reliable and efficient in catching incidents and isolating threats quickly.

My main use case for Huntress Managed EDR is having a 24/7 backed SOC to protect all our clients. Huntress Managed EDR is configured with Defender for 100% of our client base as a specific example of how I use it with my clients.

The best feature Huntress Managed EDR offers is EDR. The integration with Microsoft stands out to me in the features of Huntress Managed EDR, not referring to BDR.

The integration with Microsoft benefits my organization and workflow because, with Evolve IT being a Microsoft partner, having an EDR product that integrates seamlessly with Microsoft is hugely beneficial. The remediation is visible through logs within Microsoft.

Huntress Managed EDR has positively impacted my organization. The positive impact looks like improvements in security; having the backing of a 24/7 SOC for a small team at Evolve IT was the reason why we went with the partnership with Huntress initially.

I cannot say anything, even something small, that could make Huntress Managed EDR even better for my organization, as not having any experience with other products like CrowdStrike or SentinelOne MDR makes it hard to determine what could be improved. We are very happy with the features it provides and the security and the partnership in general.

I have been using Huntress Managed EDR for two years.

Huntress Managed EDR is stable.

Huntress Managed EDR is very scalable.

The customer support is excellent. I would rate the customer support on a scale of one to ten as a ten.

Positive

I did not previously use a different solution.

Huntress Managed EDR is very easy to use from the portal; the various portals, the EDR, the ThreatOps, the SOC, they are all very easy to navigate on the main portal page.

I have seen a return on investment in terms of time saved, definitely. I do not have metrics around it, but we did not have the ability to offer a 24/7 SOC prior to Huntress Managed EDR.

My experience with pricing, setup cost, and licensing shows that pricing is competitive, the setup cost was minimal, and the licensing model is good, with the account manager that we have being very proactive in pushing us onto the greater discount tiers when available to us.

I evaluated other similar solutions before choosing Huntress Managed EDR, specifically CrowdStrike and Arctic Wolf. The partnership and the community aspect of Huntress was a draw early on when comparing Huntress with CrowdStrike and Arctic Wolf regarding providing proactive protection against threats.

I rate Huntress Managed EDR overall as a nine out of ten because nothing is 100% perfect. Huntress Managed EDR is a solution specifically for the SMB market as 100% of our clients have Huntress Managed EDR deployed. The fact that Huntress Managed EDR is fully managed 24/7 has affected my workload positively when it comes to triaging and managing alerts, allowing me the peace of mind knowing that whenever Huntress Managed EDR is deployed at one of our clients, that site is backed by the SOC, which is invaluable for a small company at Evolve.

Using Huntress Managed EDR has not necessarily helped reduce the need for expensive security tools or hiring expensive security analysts, as we were always going to have a solution whether it was Huntress Managed EDR or CrowdStrike or SentinelOne MDR. My advice to others looking into using Huntress Managed EDR is to get on board as soon as possible. My company has a business relationship with this vendor beyond being a customer, as we are a reseller and partner. I rate Huntress Managed EDR overall as a nine out of ten.

Huntress Managed EDR is used for endpoint protection for our customer base, as we are a managed service provider.

Huntress Managed EDR performs well when it comes to SOC analysis.

Using Huntress Managed EDR has helped us reduce the need for expensive security tools or to hire expensive security analysts.

We are able to utilize additional tools that Huntress offers, which gives us better pricing and ensures that our technicians are not spending a lot of time looking at security logs and can focus on day-to-day service efforts.

The fact that Huntress Managed EDR is fully managed by Huntress 24/7 has made it easier for us and ensures that our technicians can have a normal workday when it comes to triaging and managing alerts.

We utilize the ability to automatically remediate low-severity threats.

The automatic remediation feature works well, and we have not run into any problems or issues with it.

Reporting for Huntress Managed EDR could be better.

There has been no instability such as downtime regarding Huntress Managed EDR.

Technical support and customer support have been contacted regarding Huntress Managed EDR.

They are very responsive and knowledgeable when it comes to support.

Positive

Huntress Managed EDR was easy to deploy.

We were able to deploy Huntress Managed EDR within a matter of minutes.

One person can deploy Huntress Managed EDR.

SentinelOne has been used as an alternative to Huntress Managed EDR.

Huntress Managed EDR has a more mature SOC compared to SentinelOne, so we prefer Huntress Managed EDR because of that maturity.

Huntress Managed EDR has improved our company's overall security.

The benefits of Huntress Managed EDR were seen almost immediately after deploying it.

Huntress Managed EDR is a good solution for SMBs.

The pricing for Huntress Managed EDR is reasonable.

Maintenance for Huntress Managed EDR would only be agent updates, but that is pretty much automated.

Huntress Managed EDR receives a rating of eight on a scale from one to ten.

My main use case for Huntress Managed EDR is endpoint protection for all of our clients. A specific example of how I use Huntress Managed EDR for endpoint protection with my clients is that it is a standard for all of our managed clients, and we deploy it on every endpoint.

The best feature Huntress Managed EDR offers is real-time response from the SOC. My experience with the SOC's response time has been impressive, as we had an incident on a Saturday, and the Huntress SOC team discovered it and alerted us of the incident, allowing us to quickly address it and remediate it.

Huntress Managed EDR has positively impacted my organization by protecting our clients from possible threats and users taking the wrong action, enabling us to mitigate against known threats that were stopped. One specific outcome where Huntress Managed EDR made a big difference is that we have definitely had fewer incidents of cyberattacks within the organization due to the implementation of Huntress Managed EDR.

The fact that Huntress Managed EDR is fully managed 24/7 has made a big impact on my workload when it comes to triaging and managing alerts, as it allows our engineers to focus on proactive work and client satisfaction. We make use of Huntress Managed EDR's ability to automatically remediate low-severity threats, and the impact on the workforce has been significant because it allows our engineers to focus on client-specific needs.

Using Huntress Managed EDR has helped reduce the need for expensive security tools and to hire expensive security analysts, which is important for our organization because it keeps the level of security heightened and across the top of all of our clients' minds.

I have been using Huntress Managed EDR for about five years.

Huntress Managed EDR is stable.

There have been no issues with Huntress Managed EDR's scalability as we have increased in user count.

The customer support for Huntress Managed EDR is excellent.

We have used other EDR solutions, and Huntress Managed EDR compares really well with those; in some instances, it has discovered threats that other EDR tools have not.

My experience with pricing, setup cost, and licensing is that I was told it was straightforward as that was before my time, with my company having already implemented Huntress Managed EDR before my arrival.

I would rate Huntress Managed EDR a ten out of ten. I chose this rating because it has really intervened when other security tools have failed and saved us from possible breaches and long weekends of hard work from our engineers.

Using Huntress Managed EDR is fairly easy once it is configured and you have all your baseline configurations tested; after that, it requires very minimal involvement. I evaluate Huntress Managed EDR as a great fit for the SMB market, especially where there is little IT personnel within the business, as the solution complements the security stack.

I would definitely give Huntress Managed EDR a try and test it in your environments to see the benefit.

My main use case for Huntress Managed EDR is to provide a secondary look for our platform usage. I use Huntress Managed EDR as a second set of eyes on our current SOC that we have in place right now.

Huntress Managed EDR's best features are active alerts and a honeypot for ransomware detection. The active alerts and honeypot for ransomware detection have helped us by preventing file maintenance and review.

Huntress Managed EDR positively impacts our organization as it gives us a clear advantage in selling ourselves as a 24/7 SOC versus having to manually keep on-call staff. Having 24/7 SOC coverage has improved our response time and lessened our employee load on the call schedule.

Huntress Managed EDR can be improved with better integration with ARM products for daily alerts. Additionally, integration with RMM products would also be beneficial.

I have been using Huntress Managed EDR for one year.

Huntress Managed EDR is stable.

Huntress Managed EDR meets scalability requirements.

Customer support from Huntress is great, and I have no complaints regarding their support.

Positive

I previously used SentinelOne, but I switched due to the complicated onboarding of clients and billing.

Huntress Managed EDR is easy to use because deployment is straightforward. It can be deployed by our RMM software or by Group Policy, and the IT team finds it an easy integration.

My experience with pricing, setup cost, and licensing has been all great, and I have no complaints.

I have used or evaluated other similar solutions and find that Huntress Managed EDR overall works better for easy onboarding and customer billing integration versus Blackpoint or S1. Before choosing Huntress Managed EDR, I evaluated other options such as CrowdStrike, S1, and Bitdefender.

When comparing the cost-effectiveness of Huntress Managed EDR with the other solutions I used or evaluated, it is half the cost versus the competitors.

Huntress Managed EDR is a great product that continues to improve every quarter, and I have no complaints about Huntress. I give this product a rating of 10.

We use it for our clients and ourselves. Huntress is a pretty comprehensive platform. Recently, they acquired the security awareness training platform, which helps us to fulfill our clients' needs regarding security. It has been pretty good. A lot of our clients are growing in this area. Traditionally, we have been using it for endpoint protection, which has been effective in many situations.

It is positioned very well for the SMB market. The most recent understanding that I have is that they are providing more visibility in the market. People are now seeing it as a product for security for many different reasons. The program is easy to use and easy for administrators as well. When it comes to security, it is similar to all the other players in town. Everybody says that they are an all-in-one sort of solution. From my perspective, Huntress is in the MSP space more than some of the bigger players such as CrowdStrike, and they are more successful because it is more MSP friendly. There is a lot of uptake on the growth of the product in general. CrowdStrike, for example, is a very mature product in the security marketplace, so they may or may not need to engage as closely as Huntress. Huntress also educates the group of people who use their product more than others, and that helps to deliver value through all the partners who are selling their product.

The endpoint protection is solid. One of the easiest things for us to do is to deploy the agent. It does not matter whether the client is infected or not infected. As soon as Huntress is deployed, it is good. It is easy for us to manage from our end. It tells us exactly what we need to see. It caught things that we could not catch with the traditional antivirus program. We have a way to tell clients that we have given them the greatest endpoint protection ever made, and it caught a few more virus programs. Would they like the deployment for the rest of their company? Most of the time, that is an easy sell on our end.

It has been making our lives so much easier. In the past, we had to spend hours and hours trying to look for the threat, whereas now, we can just put Huntress to immediately find out the threat and what needs to be done. Sometimes, some of the automatic remediations just happen without us even knowing, and we learn about it afterward. We also needed it because of the growing need for cybersecurity insurance compliance in Canada.

We use Huntress' ability to automatically remediate low-severity threats. 

It is integrated with Microsoft Defender. Once we have sold the Defender suite to a client, we integrate that with Huntress. Huntress is the EDR and also the MDR portion to manage any sort of alerts that arise.

Huntress has helped reduce the need for expensive security tools or to hire expensive security analysts. Our techs may or may not need to have a very high level of skills. We are also using Huntress as a tool to help us to answer some of the questions. It empowers the techs, and at the same time, we are spending less money.

Huntress has improved our security dramatically. Especially seeing that there is a growing need in the security space, we wanted to make sure that we have a good partner to work with.

The endpoint protection is definitely the most impactful feature for clients.

It just works. It is a set-it-and-forget-it type of solution.

There should be more engagement with the MSP group or their largest clients. They should have focus group discussions on what they can do to improve the product. A more transparent way for the support team at Huntress and our IT team to collaborate to make it faster and easier would be beneficial. It does not mean that the current support team is not doing its job, but if you look at the marketplace, the selling point of one of the competitors Blackpoint Cyber is a more cohesive work-as-a-team approach when it comes to support. I have heard that other MSP businesses using Blackpoint find it to be a much better experience in comparison to Huntress. While we are happy with Huntress, that is one area that everybody is saying can be improved.

I have used the solution for about a good four years.

I have not experienced any lagging, crashing, or downtime. Adding the load on the endpoints, like any security solution, makes the system slower, but we explain that to the client beforehand.

It is pretty easy to use.

We did not use any solution previously. 

It is working for us, so we do not want to change.

It is a cloud solution. The initial setup is relatively easy. It probably took a couple of hours per client, and all deployments were done.

The implementation is a one-person effort.

I would advise talking to them and engaging with the team. Figure out what is needed to support clients. Huntress is not for everyone. Understand different clients' requirements, and do not be thrown off by regulatory changes. We are a Canadian MSP business, specifically legal. We know the business needs well. You need to know what you need. Hunt for it. Huntress works for us but may not for everyone. 

Overall, I would rate it a nine out of ten.

We use Huntress' EDR tools, security operation center back end, security awareness training, and Microsoft Defender. 

It's a small installation that doesn't require a high-powered desktop, laptop, or server. It can be put on anything, and within a few minutes, they get a notification that the software has been installed on that machine. Huntress will immediately set up what they set up on their back end to watch that 24/7.

The benefits of Huntress are the resources that we have within the team. They're responsive. We have a dedicated customer rep with whom we work. He calls us consistently with new business they have going on within the company. Their communication level is second to none. It's important that they're within the same state, so it's like a local thing for us because we cover the tristate areas.

It has helped us eliminate more expensive security tools and take care of our whole security department. We only need to implement that resource, so we've reduced our security stack. They're in the top 10 percent of their area of expertise, and we've had zero concerns with that.

The EDR tools are the most beneficial. We protect all our clients' endpoints through their security operation center, which runs through the EDR. We like that it's a small installation that doesn't take up much processing space, and we can quickly install it on our machines. We push out the agents automatically and get everybody up and running quickly.

We go into the portal and see all our endpoints. We can see the alerts and events in real time. If anything major comes up, they email us a rundown of the issue, where it exists, where the file is, and what the file structure looks like. We can do a one-button remediation so they can take care of it.

They just released a new feature called unwanted access that we have taken advantage of. We've encountered a few issues with outside hackers and scammers trying to get into certain clients' emails and workstations. These issues were immediately remediated and resolved before they became a problem for the customer. We were also able to identify a VPN connecting from outside once we put the source on their computer, and we were able to shut that down within five minutes.

The existing features are perfect. However, I think they could add a more robust set of security features like dark web scanning, penetration testing, and risk assessment for clients. We would have one tool for everything. We wouldn't have to go to multiple vendors to pull something together. That would be more beneficial for us.

We have used Huntress since November 2023.

We haven't had any crashes with Huntress. Bitdefender crashed two of our networks, and contacting support to know what ports to open was difficult. With this, it's installed, and it's good. I've never had a problem with performance issues or their Defender crashing.

Huntress' ability to scale is fantastic. We have an opportunity with a major company with 20,000 endpoints that will possibly be finalized next year. They told us they're more than willing to bring us on as a reseller so we can make some money from that and manage all those endpoints while reducing our price per endpoint so we can make some extra profit on that.

I rate Huntress support nine out of 10. We've had two breaches unrelated to Huntress, which wasn't watching those devices. Even though they weren't watching the device, they were very responsive and helped us get a list of things to start checking off. They could get back access to everything they needed on their side. That was with both cases that we've seen.

Positive

We were using ConnectWise, Bitdefender EDR, and SentinelOne. After working with Huntress for a while, we could see the benefit of human-managed resources versus AI algorithms running everything on the security side. 

We still take advantage of proactive solutions like AI, but not on the security side. Too many obstacles can get in the way of human interaction, which can catch stuff that machines or AI will not see. We dropped their contracts back in May. They were very unresponsive. We had a lot of issues across several months. They're no longer in our stack.

We have automations that we run within our agent that can push out Huntress automatically, or we have it on a flash drive that we install on a computer if we need it for clients that aren't fully managed services with us.

It's incredibly easy because it's a small download. You only need to input your account key and name it something that shows up in the portal under a certain name. It's installed in under 10 seconds.

We haven't had any problems with Huntress' pricing. We're at 250 workstations, and we've grown considerably this year. They've been able to handle everything that we've thrown at them within that time frame. They're also  reducing the price based on how many endpoints we add.

We looked at a couple of other things. They weren't what we sought, and the price was too high. A few different distributors were trying to push some different solutions on us. Still, I had researched enough to feel that a call with Huntress would be beneficial. They called me immediately, which I had not gotten from some of the other people. We looked at SilverSky and Arctic Wolf. Both sales teams were unresponsive. It made the decision to go with Huntress easier.

We tried combining SentinelOne with Huntress. One of the reps at Huntress told us they have Defender, which Microsoft constantly updates, so they can manage everything on the back end, open ports and know what to watch. SentinelOne provides an extra level of security, but it doesn't accomplish beyond what Huntress is doing. We could save several hundred dollars by not having that on there any longer.

I rate Huntress 10 out of 10. Do your homework and make sure you understand exactly what you're getting into with any solution. Huntress' staff is incredibly friendly and supportive. They will make the transition easy for you. You have to price accordingly to profit from what you're marketing to your customer base

We roll Huntress out across the board. It's in our base security shield, so we use it everywhere. We also use ThreatLocker. It's an application for allowlisting and blocklisting. It blocks any software from running unless you approve it. Huntress is there in case we approve something that we shouldn't or if something that we already approved gets an update with something wrong.

When our partners rolled Huntress out, we discovered remnants of things that had already been taken care of, but it immediately showed me things that were a problem. Huntress has alerted us a few dozen times when a user did something silly, like clicking or downloading something. It would have been catastrophic had we not had Huntress there.

We advertise that it's the number one EDR we're using and actively ensure all our tools are the best in breed. We have a reputation for using the best-in-breed software, so Huntress has greatly helped.

It's fantastic for the SMB market. Their motto is something like "Cybersecurity for the Rest of Us." It's marketed to small mom-and-pop organizations, but we also use it for fairly large companies. Typically, an enterprise-grade tool isn't available for anybody under 50 users. Huntress makes it so that it can be deployed anywhere and everywhere. It's not bugging the client to tell them things they don't know how to do. It brings all of that back to us, and then we can take action on things that are a problem.

Huntress is effortless to use. It's one of the easiest products to deploy. Pushing out through our RMM is simple, and using it is straightforward once it's on a machine. The end user doesn't have to do anything. Everything comes back to us. I love that the alerts are human-curated. They take a look at alerts before we get them. Other products are very noisy. They'll send you an alert about anything. About 95 percent of those alerts go to Huntress first. They check to make sure that it's real and only alert us if it's actionable, something that requires our attention. When I get an alert from Huntress, it must be looked at. I love that. It saves a ton of time for my people.

It can fix low-severity threats. Their team is 24/7, whereas my team is not. We want them to take action on known bad things. Sometimes, that means fixing the problem or isolating the machine so multiple machines aren't getting hit. I love that they can address those issues within a very short time.

One issue is the managed antivirus. Huntress takes control of the antivirus built into Windows Defender, but it doesn't if, for some reason, Defender isn't working properly and doesn't attempt to fix it. We have to fix it with some scripts so that Defender reports correctly to Huntress. It would be nice if they took that action on our behalf. If they saw a problem with Defender, they should roll out a fix. 

I have used Huntress for four years.

Huntress is extremely well-written software. I used to be a developer, and I see how they've written it. It's excellent. I've never had an issue with it crashing a machine. It's small, tight code.

I rate Huntress support nine out of 10. It's excellent. I'm friends with many of the people at the top at Huntress so I can phone somebody quickly, and they'll escalate the ticket. If I go the usual route, somebody will call us back in an hour or two. Some of their competitors are a little quicker with a live answer, but Huntress is still better than 99 percent of their competitors.

Positive

We had another solution called enSilo that Fortinet purchased, and it became FortiEDR. EnSilo was an excellent tool, but it became noisy after Fortinet purchased it. We spent lots of time reviewing and approving things. Our people started getting alert fatigue where they were just accepting everything coming their way. it meant they weren't likely to find when there was a needle in the haystack.

Huntress is probably the easiest tool to deploy. We deploy many products through our RMM, and it's probably the simplest. It only takes less than 10 minutes. We have a policy that says if the machine doesn't have Huntress, it runs the script. We've deployed Huntress to thousands of machines immediately.

We had the script written. With others, you need to put in a license key per client and create documentation for which client uses a license key. Huntress doesn't have that. They have a site license, and they pull the client's name from our RMM. We can just run the same script for every client. It doesn't matter whether we have hundreds of clients or thousands of clients. You can choose all of them and run the script. 

Huntress requires a little maintenance. The big thing is managed antivirus. We have to ensure it's working and have a recurring monthly ticket where somebody goes in and looks at those things.

Huntress is an easy sell to clients because it does all the heavy lifting. Sometimes, they will buck a little at the price because they want a free antivirus or EDR. We tell them that we use Huntress on all our machines. That is our standard process for all the machines we roll out. When we give that advice, people are pretty willing to say okay. 

We looked at SentinelOne and several others, including DeepArmor and Blackberry Cylance. 

I rate Huntress 10 out of 10. They're one of my favorites. I call Huntress a partner, which isn't something I say about every vendor we deal with.