Huntress Managed EDR Reviews

We utilize Huntress for endpoint protection across the accounts we manage. When requiring endpoint detection and response capabilities, we leverage Huntress for that functionality as well.

Instead of relying solely on basic antivirus software, we implemented Huntress to elevate our security posture. This empowered us not only to proactively track down threats but also to collaborate with experts in identifying and remediating them.

Huntress is extremely easy to use.

Huntress is a great solution for the SMB market.

By minimizing the time we spend identifying risks, Huntress helps us reduce the overall risk landscape for our clients. They are also great partners to work with, and we saw the benefits almost immediately.

Huntress's 24/7 managed service significantly improved our overall workflow and empowered our employees to focus on tasks aligned with their skill sets. This has enabled them to develop their expertise and take on greater responsibilities.

The ability to automatically remediate the low severity threats is great.

Huntress has improved our overall security posture. We were able to start improving our security within the first three months of deployment.

While threat hunting is undoubtedly the most valuable feature, the combination of IP scanning, foothold identification, and canary monitoring has also proven to be incredibly beneficial.

The application control system could benefit from improvements in identifying and managing both whitelisted and blacklisted applications. Additionally, it would be valuable to have the ability to automatically lock down applications identified as potential threats.

I have been using Huntress for five years.

Huntress has been reliable with no stability issues.

Huntress is a scalable solution.

The technical support is knowledgeable and helpful.

Positive

Previously, we used Kaspersky for our security needs. However, by combining Huntress with SentinelOne, we were able to successfully transition away from it.

The initial deployment is straightforward. The deployment took 30 days and required two people to complete.

The implementation was completed in-house.

We have seen a 20 to 30 percent return on investment.

The pricing is competitive, in line with Huntress's offerings, and aligns well with our business model.

I rate Huntress a nine out of ten.

Organizations are comfortable taking on certain calculated risks. However, I believe we need to employ specific types of staff to align our service delivery with our resource allocation. The Huntress platform has facilitated this crucial realignment.

The tool itself does not require maintenance but there is ongoing management.

Users should ensure they have an accurate inventory of the assets they need to protect, the chosen protection methods, and any additional relevant details. Assigning one or two dedicated individuals as "Champions" of the tool will help them fully leverage its benefits.

We are a Managed Service Provider. We use the solution to offer extra protection to customer machines. 

Huntress helps us replace traditional antivirus solutions with an EDR. I like how easy it is to use and deploy. Support is good- they've responded quickly when I've had issues. I like it a lot so far. It reports valuable information and filters out things I don't need to know.

The solution is easy to learn. I like the scanning it does for M365. We use Datto RMM for remote machine support. Huntress has a built-in component for Datto RMM that we can deploy immediately. I can push Huntress out to machines in about eight minutes. It does what it's supposed to do, which is amazing.

The tool is suitable for small to medium businesses. It monitors everything going on with their machines and their Microsoft 365 tenant if they have one. Even if they don't have their IT department, it can help flag issues.

The main benefit our customers see is the additional security Huntress provides. We've found that it reports many password files people save on their machines. For example, it might find a Word document full of passwords on someone's desktop. Just highlighting that this is happening is a valuable part of the service.

Previously, I had to go through all the alerts myself and figure out what was important and what wasn't. Now, my time is freed up to deal with the important alerts. I don't have to spend time finding what's important - it's already right before me.

It highlights when new mailbox rules are created in Microsoft 365, which helps us spot breached accounts. It also finds valuable password files on machines. This is one of the biggest security risks—if someone gets into a machine and finds a password file on the desktop, they can easily access things they shouldn't.

We could see the solution's benefits from the very first minute of its deployment. 

I'd like it if Huntress could scan for software that's out of date or has open vulnerabilities. That would be useful for us. Scanning for vulnerable software would be helpful. Also, we've set it up to create a ticket in our ticketing system when there's an alert. It would be nice if closing that ticket would also close the Huntress alert. It doesn't do that right now, but they're working on adding that feature.

I have been working with the product for a few months. We are a new customer. 

I haven't experienced any downtime. 

My company has around 1300 endpoints. The solution is scalable. 

We previously used SonicWall Capture Client for EDR. But it's not the same thing as Huntress. I don't think I could compare them. I'd say that Huntress is completely new in how we use it.

Since we use Datto RMM, we just had to add their components and a secret key from our Huntress site. Then, when we deploy the agent, it communicates with the Huntress site, and all endpoints appear there. The whole process takes around 15 minutes.

It's not difficult to maintain. I've set it up so that if a machine hasn't reported to Huntress in 30 days, it automatically removes itself from our site. So, it maintains itself. I've also set up a recurring job to check that it's installed on all the machines it should be on.

We did the deployment in-house. 

The solution is cheap compared to other alternatives. It offers good value for money. For the whole solution, it's up to about five pounds per device per month. Considering what it does, I think that's very good value.

We evaluated Seceon and eSentire. We chose Huntress because it was easy to deploy and does what we need it to do. eSentire seemed more hands-off, but with Huntress, we can handle the problems it flags ourselves. Seceon was hard to set up. 

If you are unsure about the solution, try to get a trial and see what it does. I rate it a ten out of ten. 

It integrates seamlessly with RMM, making it easy to roll out and use. Many fixes are automated, so you can approve them and let the system handle them, avoiding the need to go through individual steps. If something serious comes up, they proactively make phone calls and lock things down in advance. It simplifies my job rather than adding it.

It has improved my organization by making things easier.

After deployment, it takes some time to scan and process everything. Huntress has effectively flagged issues such as password files on desktops, which it identifies as low-level alerts. It also handles more significant threats effectively. The system runs in the background and uses sample files to detect ransomware attacks quickly. If an attack occurs, Huntress can isolate the affected machine promptly. We noticed benefits and problem-solving capabilities within the first week.

I had been requesting Huntress support for macOS for a while, and they recently rolled it out, making it generally available within two months. Having a regular support line would be good.

I have been using Huntress for a year and a half or two.

There are no issues with stability.

This solution is used by 400 machines. It scales independently. When we add clients to our RMM, the script runs every night and automatically adds Huntress to the new clients and their machines.

Support was quick. They made it easy for us to get assistance when needed. They responded promptly to our inquiries about upcoming products and provided timely support to get things rolling. We were tweaking our scripts, and they directed us to their repository of scripts and resources. When I encountered an issue, they suggested hopping on a call to walk me through it rather than just relying on chat. They resolved the issue relatively quickly.

Positive

Huntress provided ease of use and a lower spend. The sales team was supportive throughout the process, not just during the initial setup. They helped with scripting and ensured we were fully operational before stepping back, which made things much easier for me.

The pricing is great.

Their minimum spend is quite low, unlike some vendors that require $500 or $1,000 a month. It's around $50, so you can start with just a few clients if you're new or scale up if you're larger. Their products integrate well with our existing systems and perform effectively.

I’ve worked with some vendors whose implementations were so complex that managing the solution required almost a full-time person. In contrast, Huntress was straightforward to deploy. You set a few permissions, and then it just runs in the background. This simplified things and made managing the software much easier.

Huntress is largely set-it-and-forget-it. The only real maintenance involves handling remediation for attacked machines rather than ongoing upkeep. The recent addition of Mac support required a new script.

Overall, I rate the solution a ten out of ten.

I use Huntress as an EDR tool to detect, prevent, and block any attacks.

Huntress offers a lot more of a proactive approach, being an EDR tool. The tool is eligible to be an ISO 27001 product. Huntress streamlines our organization's processes.

The solution's most valuable feature stems from the tool providing alerts, which is a very good attribute. The fact that the solution operates proactively for our company is because Huntress has one of the best AIs apart from CrowdStrike.

As the CEO of my company, I am not involved in the technical part of the solution on a daily basis, making it difficult for me to comment on the best features of Huntress.

The solution's UI is an area with certain shortcomings that need improvement.

I have been using Huntress for two and a half years. I use the solution's latest version. My company is a customer of the solution.

Stability-wise, I rate the solution a nine out of ten.

Scalability-wise, I rate the solution a ten out of ten.

My company has around 200 users of the solution.

I rate the technical support a ten out of ten.

Positive

My company operates as an MSSP. I have experience with other solutions in the past. I haven't switched to Huntress from some other product since I still deal with products that were used in the past since my company has to cater to the needs of multiple customers.

I rate the initial setup phase an eight on a scale of one to ten, where one is difficult and ten is easy. In general, the solution's initial setup is pretty straightforward.

The solution is deployed on a public cloud.

The time taken to deploy the solution depends on the size of my company's customers, but I can say that it does not take too long. The deployment process is simple, but it’s time-consuming part stems from the need to put the policy in place, considering which I can say that it takes around four hours presently.

One person was required for the deployment process.

I have seen a return on investment in my company with the use of Huntress.

I rate the product's price a five or six on a scale of one to ten, where one is cheap, and ten is expensive since it is a fairly priced product.

There are no costs in addition to the standard licensing fees that I know about for the solution.

SentinelOne and CrowdStrike were the two solutions we had evaluated in our company before opting for Huntress owing to the preference of our customers, who had just discovered that they had detected 3CX exploit.

I recommend the solution to those planning to use it since I believe they should try it.

I rate the overall solution a nine out of ten.

Our primary use case for the Huntress solution is cybersecurity.

I couldn't say specifically how it's helped our organization, but it did alert me to some possible issues that needed double-checking. 

I have found it valuable that this solution is always there and always armed.

In the next release, I'd like to see more intuitive dashboards.

I have been using the Huntress solution for about a week now.

I would rate the stability of this solution a 10, on a scale from one to 10, with one being the worst and 10 being the best.

I would rate the scalability of this solution a nine, on a scale from one to 10, with one being the worst and 10 being the best.

Regarding the pricing of this solution, I would rate it a nine, on a scale from one to 10, with one being very expensive and 10 being a great price.

We have a hybrid model deployed for this solution where the dashboards are on the cloud, but the agents are on the machines.

Overall, I would rate this solution a nine, on a scale from one to 10, with one being the worst and 10 being the best.

We use Huntress with other antivirus solutions like Microsoft Defender to ascertain the issues that happen at the endpoints which antivirus solutions may not always pick up.

We don’t have the required staff to watch the issues that are happening. It is good to have a team from Huntress who can watch the logs 24/7. The tool’s automatic remediation is also fantastic. The solution’s interface is also nice and easy to use. The Huntress team saves us time by going through the issues.

The Huntress is not a standalone solution. It really needs to be used with something else such as Microsoft Defender or another antivirus solution. It would be nice to see the product fleshed out by the Huntress team and include the antivirus solution part as well. I want it to be a full-fledged XDR product. It would push the tool to a higher price range but it would be nice to see the fleshed out features. I want them to integrate more features from the XDR realm.

I have been using the product for a year.

The tool is stable. We haven’t had any issues with respect to stability.

The tool is scalable. Our company has seven users for the solution.

We have received quick responses from tech support.

The solution is managed on the cloud, and the software is installed directly onto the endpoint. The tool’s deployment is easy. You can download, install and run the solution. It is as simple as that. The tool also has deployment scripts in case you need them. The installation is pretty quick and you don’t need many resources to accomplish it. If you are planning a large deployment, then you can get scripts for the management tool.

I think there is ROI with the use of the solution. It doesn't take very long to get train someone to use the solution. Therefore, you can save on training costs. It has also stopped quite a few issues that could have turned worse.

The tool’s price is very good. You just need to pay for the standard license. However, you need to pay the additional cost for Microsoft Defender.

I would rate the solution an eight out of ten. The solution is extremely easy to use compared to other products. There are many other products with cumbersome portals that are difficult to use. It can be very difficult to teach new engineers how to use those platforms well.

I deploy Huntress to my mid-tier clients to leverage 24/7, 365 threat-hunting capabilities.

Huntress monitors for anomalous behaviors and detections that would otherwise be perceived as just noise and filters through that noise to pull out the important bits. It then alerts me with the remediation steps needed to fix those problems and offers to automatically deploy those fixes if I wish. This enables me to manage and monitor way more endpoints than I would normally be able to.

Huntress' best feature is the threat-hunting expertise that is part of their 24/7 SOC. They investigate anything they don't know about, and I've had things that look like benign detections returned to me as serious threats with advice on how to fix them.

Some of Huntress' reporting could be improved. Specifically, when we get a notification that something has been investigated and found benign, we don't get any information about which devices the issue was on. It's not until we get an actual action plan for a threat above a certain threshold or representing a certain compromise that we know exactly what device is involved. In the next release, Huntress should include better integration with AV or endpoint detection and other response solutions than Windows Defender.

I've been using Huntress for close to a year.

I would give Huntress a rating of nine out of ten. The only thing that rivals it is SentinelOne Complete when it's managed and monitored by a security operations center like the offering by OverWatch.