Huntress Managed EDR Reviews

Huntress is a product that we automatically deploy to all our clients. It functions as a basic antivirus solution for most of them. We roll out Huntress immediately after deploying our Kaseya agent to conduct a quick sanity check on the network endpoints and ensure no hidden threats are lurking. It's one of the first tools we use and is included as part of our standard package. By providing a baseline assessment, Huntress gives us peace of mind that no unexpected issues are lurking in the network.

Security stacks weren't a common thing in the past, but they've grown dramatically in popularity. Today, we rely on a mature and robust security stack, with Huntress as the first line of defense. This represents a significant shift from our previous reliance on antivirus software, which only reacted to known threats. Unlike antivirus, Huntress proactively investigates potential threats and identifies hidden risks.

Huntress offers two solutions: an on-premises agent and a cloud platform. We manage the cloud platform and deploy their agent to our client systems.

Using Huntress is simple. Whenever an agent is deployed, Huntress automatically rolls out, seamlessly integrating with our infrastructure. This eliminates the need for manual intervention from our technical team. Once alerts are triggered, our trained team readily identifies and addresses the flagged events, making the entire process highly efficient.

Every small and medium-sized business should consider implementing a solution like Huntress. Its importance cannot be overstated. We adopted Huntress as the cornerstone of our security stack years ago, and it remains our go-to solution. Although we've enhanced our security measures over time, Huntress remains the first line of defense we deploy.

We have our own Security Operations Center. While Huntress provides invaluable backend monitoring, our dedicated SOC team is responsible for handling alerts triggered by Centrus. Having Huntress' 24/7 monitoring significantly lightens the workload. It ensures I don't have to jump up in the middle of the night or take on the additional role of resolving issues as the CTO. My team handles day-to-day operations, while a select group receives filtered alerts from Huntress. These alerts only include high-priority items requiring immediate attention, eliminating the time spent chasing false positives. This makes us more responsive and focused on resolving critical threats efficiently.

Huntress can remediate low-severity threats automatically. Our team uses this ability all the time.

It hasn't increased our workload. Huntress has narrowed our focus by handling routine tasks and allowing us to prioritize the truly important items. We have a high level of confidence in the product, which means I don't have to constantly second-guess it. While it's not completely "set and forget" since we don't ignore it entirely, it's something we trust. By automating tedious tasks and providing relevant alerts, it frees up our team's time to focus on other critical areas.

We saw a fairly immediate improvement in our security upon deployment. Within the first few days, we identified three or four client-related issues that would have remained hidden without Huntress. This early success demonstrated the platform's effectiveness in revealing previously unseen security concerns. The impact was both immediate and positive, allowing us to quickly address the problems and move forward.

We've been very impressed with the features Huntress has added. We particularly value Recon and Windows Defender Management, and we leverage much of the platform's functionality.

From a CTO's perspective, I'm focused on identifying potential security vulnerabilities and ensuring our SOC team has the tools to address them effectively. Huntress helps by highlighting potential issues, allowing us to take proactive measures. We actively utilize Managed Antivirus, Ransomware Canaries, and External Recon for this purpose. While features like Persistent Footholds and Process Insights operate silently in the background, alerting us upon detection, we primarily rely on the aforementioned features for our day-to-day operations.

We need an API to automatically retrieve metrics and data about backend activity so we can generate client reports. We believe in comprehensive reporting and actively inform our clients about our efforts. Our daily, weekly, and monthly activity reports demonstrate our proactive approach. Currently, Huntress lacks an API to pull this data, hindering our ability to efficiently convey what happened in the past week, month, or quarter, and how it was addressed. An API solution would streamline reporting and enhance client transparency.

In addition, we require an external recon report generation system. Ideally, we should be able to select a client and instantly generate a report with a single click. I expressed this need to one of Huntress' developers, emphasizing the importance of user-friendly report access. Such a system would significantly improve our workflow and communication with clients.

I have been using Huntress for five years.

Our clients have not experienced any stability issues with the deployed Huntress agent. Due to its low-impact nature, they wouldn't likely notice its presence even if we informed them of its integration.

We have not encountered any scalability issues thus far. Huntress has successfully handled everything we have thrown at it.

The technical support team is fantastic. While I haven't needed their assistance in a while, every time we've interacted, they have been incredibly responsive. They've even gone above and beyond by calling me directly to address urgent issues. For example, on a weekend or after hours, they've proactively contacted me to inform me of a potential device problem and offered to isolate it until a resolution could be found. They even asked me to let them know when I was available for a fix. In short, their proactiveness has even helped me avoid problems before they arise.

Positive

We already had antivirus options like Defender and Symantec, but Huntress offered something different. It wasn't just another antivirus; it provided a new perspective on potential threats lurking in our systems, beyond what traditional antivirus could detect.

I deployed Huntress myself and found it to be a straightforward process. Huntress provided excellent documentation that made the rollout easy to follow. This has allowed us to automate future deployments, further simplifying the process.

The deployment only took a day or two, despite requiring several manual steps. I had to install the software, configure it, and then initiate the scans. While these steps might sound time-consuming, they were quite quick due to automation scripts. The entire process was straightforward and required minimal time investment from me. 

The implementation was completed in-house.

Huntress remains our go-to tool. We never even considered replacing it. I think that's the highest form of flattery: it's the first thing we deploy and the only one we never question.

The pricing model for Huntress is similar to competitors and is charged per endpoint. While they have raised prices over the years, they've also invested significantly in development, which justifies the cost. Additionally, the tool itself is valuable, and we've never complained about the pricing.

I would rate Huntress ten out of ten. They are a partner and the first thing we roll out. 

Currently, we're not utilizing the EDR component, not because we believe it's not valuable, but simply because we already have an existing EDR solution in place. Redundancy doesn't make sense at this stage.

When I first adopted Huntress, I lacked a dedicated SOC team and a comprehensive security stack. Since then, we've built a security stack with roughly twelve tools encompassing various areas, from basic spam filtering to advanced threat detection covered by Huntress, Microsoft 365 security, domain DNS filtering, and more. We established a dedicated SOC team. However, expanding our security stack does introduce the challenge of requiring additional personnel to manage and monitor these systems effectively. My intention isn't to diminish the value Huntress provides or imply it solely created an additional workload. Instead, I want to emphasize its significant role as one crucial piece within our broader security ecosystem.

Being a long-standing client of Huntress provides us with significant advantages. We consider them a true partner, not just a vendor. If I need anything, whether it's a tabletop exercise or additional information, I can simply contact a few key people at Huntress, and they always go above and beyond to assist. Similarly, if I need data or someone from Huntress to present alongside me, they readily oblige. This level of support solidifies their status as a partner invested in our success and the value we bring to our clients. In essence, they offer more than just a product; they provide ongoing support and collaboration to help us improve.

Huntress updates automatically. The only maintenance required is a periodic check to ensure no pending actions need our attention. It runs silently in the background.

I recommend seeing Huntress in action by checking out a demo. While it's valuable to talk to a Huntress partner and do your due diligence, make sure to also engage directly with Huntress by participating in a demo, attending a webinar, or trying their product. We evaluated Huntress on our network and gained valuable insights by talking directly to a Huntress partner.

The client had likely experienced ransomware attacks and wanted to adopt a more proactive approach to address such threats. They needed a solution that would minimize downtime and avoid disruptive incidents. 

Testing Huntress improved our organization by enhancing service offerings. It gave us the confidence to approach clients and present a solution well-suited for those seeking basic and advanced options. It positioned Huntress as an ideal, lightweight MDR solution. Additionally, we generated a decent amount of income from it.

First and foremost, I appreciate the team's expertise in finding the solution. For example, one of the lead researchers, has a public presence and a YouTube channel, demonstrating a high competence level within the research team. It instilled confidence that they would effectively detect and address threats.

Second, Huntress responded very quickly during testing—within about ten minutes. While this speed might not always be guaranteed, the prompt response during my mock tests, where they successfully locked down the machine, showcased their efficiency and accuracy.

Additionally, we are an MSP, and the pricing model Huntress offers works very well for us.

Finally, the reports provided after an incident are very thorough. They offer a clear and detailed description of the attack, which reassured me of its effectiveness.

The product could be improved in terms of customization options available for reports. Specifically, there should be more granular control over report scheduling and the ability to include more specific information.

I have used Huntress for six to seven months.

The product is stable.

Our clients have 150 Huntress users in the entire organization. Regarding the number of users I could serve, I rate the scalability a ten out of ten.

The technical support services are good.

Positive

The initial setup was straightforward. It took a few minutes to complete the process.

I implemented the product for the client's entire organization.

We received around 200% return on investment using Huntress.

For example, if the platform's price was $1 per annum, we charged $3. However, that includes all the reporting, account management, and other services.

While the product did not directly reduce costs, as there was already an existing solution, it did help by eliminating the need to hire a dedicated security analyst. It meant we could avoid adding that headcount to our business, saving on potential additional expenses.

It may have reduced costs by approximately 50 % compared to our previous solution. The one we were using involved paying a company based in Malaysia that utilized a specific piece of software to deliver their service. Switching to Huntress brought our costs down by 50%.

It has saved us a significant amount of time in terms of reporting. The reports generated were already comprehensive, so we only needed to configure them to be sent to the account manager and the company's resident IT staff.

Another significant time saver was the ease of installation. We could effortlessly integrate it into our existing remote monitoring and management (RMM) system and deploy it to the machines. This contrasted with our previous solution, which did not support unattended installations. We had to arrange for someone to install it on each machine, even if it was remote, requiring scheduling and user notifications. The client had around 100 to 150 machines, so this process was very tedious.

I rate the product pricing six out of ten for the Malaysian market. However, I would rate it a three out of ten for the Australian, New Zealand, or Singapore markets.

Huntress is easy to use. It immediately improved visibility and understanding of our security posture.

It is a good solution for small and medium-sized businesses (SMBs). It is quite effective in the context of the SMB market and for managed service providers (MSPs) deploying the solution. It is easy to install on machines and fits well within the price range for companies that might be using Microsoft 365 but have yet to be ready to move to Business Premium.

It also manages standalone Microsoft Defenders, which adds a unique advantage. It provides a holistic approach, helping us tap into the telemetry from the existing antivirus on Windows machines, providing a more comprehensive solution.

We had to use some other solution alongside Huntress. This client was using Bitdefender as a standard antivirus. If a client wants to stop using Bitdefender, we recommend using Microsoft Defender.

Our team uses some degree of AI to help them work through the telemetry they collect.

I recommend the product to others and rate it a ten.

We use it for our clients and ourselves. Huntress is a pretty comprehensive platform. Recently, they acquired the security awareness training platform, which helps us to fulfill our clients' needs regarding security. It has been pretty good. A lot of our clients are growing in this area. Traditionally, we have been using it for endpoint protection, which has been effective in many situations.

It is positioned very well for the SMB market. The most recent understanding that I have is that they are providing more visibility in the market. People are now seeing it as a product for security for many different reasons. The program is easy to use and easy for administrators as well. When it comes to security, it is similar to all the other players in town. Everybody says that they are an all-in-one sort of solution. From my perspective, Huntress is in the MSP space more than some of the bigger players such as CrowdStrike, and they are more successful because it is more MSP friendly. There is a lot of uptake on the growth of the product in general. CrowdStrike, for example, is a very mature product in the security marketplace, so they may or may not need to engage as closely as Huntress. Huntress also educates the group of people who use their product more than others, and that helps to deliver value through all the partners who are selling their product.

The endpoint protection is solid. One of the easiest things for us to do is to deploy the agent. It does not matter whether the client is infected or not infected. As soon as Huntress is deployed, it is good. It is easy for us to manage from our end. It tells us exactly what we need to see. It caught things that we could not catch with the traditional antivirus program. We have a way to tell clients that we have given them the greatest endpoint protection ever made, and it caught a few more virus programs. Would they like the deployment for the rest of their company? Most of the time, that is an easy sell on our end.

It has been making our lives so much easier. In the past, we had to spend hours and hours trying to look for the threat, whereas now, we can just put Huntress to immediately find out the threat and what needs to be done. Sometimes, some of the automatic remediations just happen without us even knowing, and we learn about it afterward. We also needed it because of the growing need for cybersecurity insurance compliance in Canada.

We use Huntress' ability to automatically remediate low-severity threats. 

It is integrated with Microsoft Defender. Once we have sold the Defender suite to a client, we integrate that with Huntress. Huntress is the EDR and also the MDR portion to manage any sort of alerts that arise.

Huntress has helped reduce the need for expensive security tools or to hire expensive security analysts. Our techs may or may not need to have a very high level of skills. We are also using Huntress as a tool to help us to answer some of the questions. It empowers the techs, and at the same time, we are spending less money.

Huntress has improved our security dramatically. Especially seeing that there is a growing need in the security space, we wanted to make sure that we have a good partner to work with.

The endpoint protection is definitely the most impactful feature for clients.

It just works. It is a set-it-and-forget-it type of solution.

There should be more engagement with the MSP group or their largest clients. They should have focus group discussions on what they can do to improve the product. A more transparent way for the support team at Huntress and our IT team to collaborate to make it faster and easier would be beneficial. It does not mean that the current support team is not doing its job, but if you look at the marketplace, the selling point of one of the competitors Blackpoint Cyber is a more cohesive work-as-a-team approach when it comes to support. I have heard that other MSP businesses using Blackpoint find it to be a much better experience in comparison to Huntress. While we are happy with Huntress, that is one area that everybody is saying can be improved.

I have used the solution for about a good four years.

I have not experienced any lagging, crashing, or downtime. Adding the load on the endpoints, like any security solution, makes the system slower, but we explain that to the client beforehand.

It is pretty easy to use.

We did not use any solution previously. 

It is working for us, so we do not want to change.

It is a cloud solution. The initial setup is relatively easy. It probably took a couple of hours per client, and all deployments were done.

The implementation is a one-person effort.

I would advise talking to them and engaging with the team. Figure out what is needed to support clients. Huntress is not for everyone. Understand different clients' requirements, and do not be thrown off by regulatory changes. We are a Canadian MSP business, specifically legal. We know the business needs well. You need to know what you need. Hunt for it. Huntress works for us but may not for everyone. 

Overall, I would rate it a nine out of ten.

We are a Managed Service Provider. We use the solution to offer extra protection to customer machines. 

Huntress helps us replace traditional antivirus solutions with an EDR. I like how easy it is to use and deploy. Support is good- they've responded quickly when I've had issues. I like it a lot so far. It reports valuable information and filters out things I don't need to know.

The solution is easy to learn. I like the scanning it does for M365. We use Datto RMM for remote machine support. Huntress has a built-in component for Datto RMM that we can deploy immediately. I can push Huntress out to machines in about eight minutes. It does what it's supposed to do, which is amazing.

The tool is suitable for small to medium businesses. It monitors everything going on with their machines and their Microsoft 365 tenant if they have one. Even if they don't have their IT department, it can help flag issues.

The main benefit our customers see is the additional security Huntress provides. We've found that it reports many password files people save on their machines. For example, it might find a Word document full of passwords on someone's desktop. Just highlighting that this is happening is a valuable part of the service.

Previously, I had to go through all the alerts myself and figure out what was important and what wasn't. Now, my time is freed up to deal with the important alerts. I don't have to spend time finding what's important - it's already right before me.

It highlights when new mailbox rules are created in Microsoft 365, which helps us spot breached accounts. It also finds valuable password files on machines. This is one of the biggest security risks—if someone gets into a machine and finds a password file on the desktop, they can easily access things they shouldn't.

We could see the solution's benefits from the very first minute of its deployment. 

I'd like it if Huntress could scan for software that's out of date or has open vulnerabilities. That would be useful for us. Scanning for vulnerable software would be helpful. Also, we've set it up to create a ticket in our ticketing system when there's an alert. It would be nice if closing that ticket would also close the Huntress alert. It doesn't do that right now, but they're working on adding that feature.

I have been working with the product for a few months. We are a new customer. 

I haven't experienced any downtime. 

My company has around 1300 endpoints. The solution is scalable. 

We previously used SonicWall Capture Client for EDR. But it's not the same thing as Huntress. I don't think I could compare them. I'd say that Huntress is completely new in how we use it.

Since we use Datto RMM, we just had to add their components and a secret key from our Huntress site. Then, when we deploy the agent, it communicates with the Huntress site, and all endpoints appear there. The whole process takes around 15 minutes.

It's not difficult to maintain. I've set it up so that if a machine hasn't reported to Huntress in 30 days, it automatically removes itself from our site. So, it maintains itself. I've also set up a recurring job to check that it's installed on all the machines it should be on.

We did the deployment in-house. 

The solution is cheap compared to other alternatives. It offers good value for money. For the whole solution, it's up to about five pounds per device per month. Considering what it does, I think that's very good value.

We evaluated Seceon and eSentire. We chose Huntress because it was easy to deploy and does what we need it to do. eSentire seemed more hands-off, but with Huntress, we can handle the problems it flags ourselves. Seceon was hard to set up. 

If you are unsure about the solution, try to get a trial and see what it does. I rate it a ten out of ten. 

We use Huntress for both endpoint threat hunting and as an EDR solution. It helps us manage Microsoft Defender.

We realized the benefits of Huntress almost immediately after deployment. It became evident during the Exchange zero-day incident when Huntress promptly alerted us about affected customers still using on-premise Exchange, allowing us to respond swiftly.

What I like most about Huntress isn't just a specific feature, but how the company operates. It is incredibly efficient for our engineering team because it provides all the information needed to fix issues, not just flag them. It gives me peace of mind knowing our systems are in good hands.

One area for improvement in Huntress would be to allow for PSA integration from a specific IP address or hostname for better security measures.

I have been using Huntress for about two years.

I have not had any stability issues with Huntress.

We haven't faced any scalability issues with Huntress. We have deployed it across thousands of endpoints for all of our customers without any problems, and the platform remains usable and responsive.

Before Huntress, we relied solely on traditional antivirus software without threat-hunting capabilities. 

Huntress is one of the easiest solutions we have ever deployed. The improvement in our organization's security was immediate after deployment. It is a cloud platform deployed on-premises or in our private cloud. The deployment process was straightforward and could have been completed for our entire customer base in about 60 minutes if done all at once.

Huntress is very self-sufficient and requires minimal maintenance after deployment. It automatically upgrades itself and is well-designed to handle any issues without needing manual intervention.

We handled the deployment in-house with just one person.

The pricing and licensing model for Huntress is very reasonable and offers great value.

We explored other alternatives before choosing Huntress, but none in the SMB space offered what Huntress did, especially in terms of threat hunting and persistent foothold detection. None came close in terms of cost-effective value either.

When we first adopted Huntress, our main goal was to enhance security for our client banks in the financial services sector. We were attracted to their innovative approach to threat research and detection, and we appreciated the values the company stands for.

Huntress offers exceptional value for SMBs. I can't think of another company that provides such comprehensive cybersecurity solutions for the SMB market.

Having Huntress fully managed 24/7 has been fantastic because every alert comes with useful information, which significantly reduces the workload for our technicians when triaging and managing alerts.

Using Huntress has reduced the need for extensive security tools and expensive security analysts. This was very important to us.

Huntress has significantly improved our overall security. Their approach to making security accessible and affordable for SMBs, like MSPs, has made it easy and inexpensive for us to implement effective security measures internally.

For new users, I would advise understanding the potential output of Huntress so that you can interpret the reports effectively. Be mindful of all the information it provides, including unexpected findings like exposed passwords, and be prepared to address them appropriately.

Overall, I would rate Huntress as a nine out of ten.

This is the tool that we use to keep our devices, the endpoints, protected.

In the beginning, we were using two antiviruses. The first one was Webroot, and the other was Huntress. At that time, we noticed that Huntress was not compatible with iOS devices, with Macs, so we used both services - Webroot for Macs and Huntress for Windows. 

I feel very protected. I feel really good having Huntress on my computers. There are certain antiviruses we installed before that basically would never detect anything. I also had a ransomware case when a client used a different antivirus. With Huntress, I've never suffered any attacks. 

The antivirus protection is very good. With other antiviruses, when you scan the computer, it shows you what was found. However, for Huntress, they don't just show you the threats—they also give you recommendations. There's a simple button you can click to apply the remediation. You don't need to go and do it manually for the most part. 

It's pretty straightforward to use. You don't need to spend a lot of time troubleshooting the alerts, and its ease of use is great. I'd rate usability nine out of ten.

Huntress is a really good choice for small and medium-sized businesses since it's pretty easy to use and doesn't consume too many resources. In the past, we had some issues, for example, with Webroot. There were certain situations when, for some reason, WebRTC consumed a lot of resources, and that was a pain for the clients. We never had this kind of issue with Huntress. 

It's pretty easy to install and deploy. It has a lot of reports. The way they show the reports is pretty good and easy to understand for the client. In the past, when clients received reports, they did not understand. We don't have to explain Huntress reporting. 

We saw the benefits of Huntress pretty quickly. Once it started detecting threats, it was great. When I first started using Huntress, I started comparing it to other solutions were using, and I could see how beneficial Huntress was. For example, you can see what it's doing, and also you can see when it's complete in real-time. 

The solution is fully managed by Huntress 24/7, which reduces our workload when managing and triaging alerts. It's a great feature. 

Huntress can remediate low-severity threats automatically and take certain actions automatically. For example, if the antivirus detects ransomware, it isolates the computer automatically. I don't need to do anything. I received only the alert that said the computer was isolated. Then, I usually need to check the logs and see if I need to do something manually or something similar.

Huntress helped to reduce the need for expensive security tools or higher expensive security analysts. In fact, we had conversations on how to reduce costs as an MSP. They reviewed the number of seats we have, and they offered us a new plan with better with less cost.

Not every time, but sometimes when we click on the remediation, the auto-resolution of the alert, the screen gets stuck, and I need to contact support so they can confirm the remediation was applied, and they have to close the ticket.

Maybe they can add a way to remove unresponsive agents. For example, if I have a client with ten devices, and I deploy Huntress in those ten devices, and for some reason, one device has maybe two or three months offline or not running, maybe they can add automation to remove the agent after a certain amount of time. That way, I will not be paying for a device that has been offline. We do have audits to avoid this. However, it would be useful if the process was automated. 

In the beginning, we used other antiviruses. If you install SentinelOne or WebRoot, if you check the device, you will see Huntress is installed, however, you will see it is not doing anything since he other antivirus is installed.

I know that Huntress has a beta version for Macs, so it is not fully deployed or released. We're waiting for the final version to use it on our Macs. 

I've used the solution for four years. 

I'd rate the stability eight out of ten. Most of the time, it's working fine. I'd just like it to be fully compatible with all of our OS. For example, we've had clients that use a special version of Windows for a POS, and Huntress isn't fully compatible. 

I've never had issues with the scalability. 

Not all antiviruses have 24/7 support or management. There are some cases where I read the logs, and I have to contact Huntress support, and they are always available. I never wait more than maybe ten minutes to get support. They always help me with the issue without problems. They are always giving me solutions.

This is the best support I have used. 

Positive

We have also used WebRoot. Huntress is better as the support team is great and I have less issues with the solution. I've had trouble installing and uninstalling WebRoot.

We always install Datto RMM first manually. Then, we share the link with the client. They install Datto RMM, and then we use that to deploy Hunteress. It's pretty simple. It only takes a few minutes to install. A single technician can deploy the solution. 

The pricing is a little bit high. However, I understand the service is better. They offer different plans according to tiers. If you have more devices, you get better pricing. 

We're an MSP and have a lot of relationships with many vendors. 

I'd rate Huntress nine out of ten.

I'd recommend users give Huntress a chance. The MSP portal is free to use and it has a lot of integrations.

We utilize Huntress for endpoint protection across the accounts we manage. When requiring endpoint detection and response capabilities, we leverage Huntress for that functionality as well.

Instead of relying solely on basic antivirus software, we implemented Huntress to elevate our security posture. This empowered us not only to proactively track down threats but also to collaborate with experts in identifying and remediating them.

Huntress is extremely easy to use.

Huntress is a great solution for the SMB market.

By minimizing the time we spend identifying risks, Huntress helps us reduce the overall risk landscape for our clients. They are also great partners to work with, and we saw the benefits almost immediately.

Huntress's 24/7 managed service significantly improved our overall workflow and empowered our employees to focus on tasks aligned with their skill sets. This has enabled them to develop their expertise and take on greater responsibilities.

The ability to automatically remediate the low severity threats is great.

Huntress has improved our overall security posture. We were able to start improving our security within the first three months of deployment.

While threat hunting is undoubtedly the most valuable feature, the combination of IP scanning, foothold identification, and canary monitoring has also proven to be incredibly beneficial.

The application control system could benefit from improvements in identifying and managing both whitelisted and blacklisted applications. Additionally, it would be valuable to have the ability to automatically lock down applications identified as potential threats.

I have been using Huntress for five years.

Huntress has been reliable with no stability issues.

Huntress is a scalable solution.

The technical support is knowledgeable and helpful.

Positive

Previously, we used Kaspersky for our security needs. However, by combining Huntress with SentinelOne, we were able to successfully transition away from it.

The initial deployment is straightforward. The deployment took 30 days and required two people to complete.

The implementation was completed in-house.

We have seen a 20 to 30 percent return on investment.

The pricing is competitive, in line with Huntress's offerings, and aligns well with our business model.

I rate Huntress a nine out of ten.

Organizations are comfortable taking on certain calculated risks. However, I believe we need to employ specific types of staff to align our service delivery with our resource allocation. The Huntress platform has facilitated this crucial realignment.

The tool itself does not require maintenance but there is ongoing management.

Users should ensure they have an accurate inventory of the assets they need to protect, the chosen protection methods, and any additional relevant details. Assigning one or two dedicated individuals as "Champions" of the tool will help them fully leverage its benefits.

We started out using their PC agent, their EDR product, and we deployed that at our office and for all of our customers. We also use their analyst team to keep an eye on things.

Last year in November, we started using their security awareness training product, and I am in the process of trialing their new MDR for the Office 365 product.

The agent deployment process is simple. You can do it manually. They pre-write scripts for various tools to install. You can install them with RMM or via PowerShell. They give you lots of ways to get their agent installed. You can even do it manually, which is very quick. We have it automated, so it just gets pushed out to every new PC we deploy. It works on almost everything that we need it to work on.

Their SAT product is simple. They have a great way of connecting you to Office 365. In most of our cases, they can automatically pick the phishing type email for the month. The security awareness training they provide is based on what they are seeing out in the real world. They call those Huntress Managed, and their security analysts decide what threats they are seeing this month and make a phishing test or an SAT course based on what they are seeing, which is great. With a lot of other security awareness training products, it takes a considerable amount of time to go in and design the email, pick the course, follow it through, and make sure that people are doing it. Huntress has a lot of that dialed in where we just set it and start it. If somebody fails the phishing test, they automatically get follow-up training. We get a report at the end of the month saying who has completed it and who has not. For the ones who did, we got to know how they did. It cuts a lot of manual time to keep those going month after month.

Huntress is great for small and medium businesses. It is a great tool just about anywhere. We have got it deployed for large organizations and small customers. Insurance requirements are asking for this kind of solution, and Huntress is a great, competitively-priced, feature-rich, and live-human-backed product. When you look at other things and try to put all those pieces into one, it is considerably more expensive, and you do not necessarily get all those things from a single vendor. There is an added headache that goes with that.

In terms of its time to value, I have secondhand knowledge of some of the benefits. We ran it internally, and we used it in point-by-point situations. We were not quite at the point in the early days to just roll it out on all the endpoints we managed, so when there was suspicious activity or something not quite right, we used it to see if it could find something. It did find them in some cases, and in some cases, nothing was found. There were other issues causing performance or other problems with that computer.

We got to a point where they were very active, and they are still very active, in the community. They were very vocal and open about sharing what they saw regarding exploits and breaches. Listening to them talk and seeing how involved they were in trying to raise the entire MSP community, I was sold on their culture. It did not take a lot to go from there to deploying agents on all the machines that we manage.

Our workload has gotten better because they are handling things that my people do not have to handle. Some of what they are doing now, we were not doing before, so I cannot look and say that I flipped the switch and my labor went down by this much. However, we got a lot of benefits that we did not have before. We also have peace of mind.

Huntress has the ability to remediate low-severity threats automatically. It is cool. When they started out and were growing the product and figuring out who and what they wanted to be, they would give a good list of remediation steps. That was another big benefit. When they found something, they gave us the steps to get rid of it on that machine, which was a time saver. Traditionally, when something was found, we had to spend 30 minutes on Google searching how to get rid of it, whereas Huntress gave out the list. Over time, they got more comfortable and decided that they could do this as an opt-in, and now, they can do it automatically. Watching that evolution and being able to say that if something shows up in there, they will remove it is great. We get a report, and we can go to the end user and say, "You had software that should not be there, and we took it off. Do not put it back on because it will be taken off again."

Using Huntress has not reduced the need for security tools, but that is only because I believe in a multi-layered approach and am a security-minded MSP. Huntress, for sure, fills a gap between other products. Even they would not tell you that they are an end-to-end or be-all solution. They are working their way towards it. I will bet you that. What they do and what they handle with their team of security analysts, we were not doing that on our own. The assisted remediation and the fully automated remediation definitely save time.

The EDR product is simple to install. It is low maintenance. All the alerts go to Huntress first, and their analyst team reviews them and sends actionable things our way.

They are very good at keeping an eye on persistent threats and pointing out misconfigurations. In some cases, if they get wind of some exploit, they typically use their agent to see if they can identify partners that are at risk. A couple of times, we had an agent on a machine somewhere, and they told us that they saw a new exploit and a specific machine might be vulnerable, and we probably want to check that. We have had cases where the users downloaded something or got an email attachment, and Huntress flagged it and isolated the device before it could spread. It is a handy product. They are a great company to work with.

I have not got anything as such. They have already added an agent for Mac. I am anxiously watching to see how they evolve their MDR for Office 365. If anything, I would like more automated remediation capabilities in their MDR for Office 365.

I have been using this solution for three and a half years.

I have never seen any issues.

If you ask me to deploy another 100 agents, I can do it in five minutes. From my perspective, I can put as many agents out there as I need to because it is all cloud-based, and they do a good job of maintaining their environment. When I add an agent and do an install, I can look in their portal, and within a couple of minutes, I see the agent check-in. 

Their support is of very good quality. We talk to security analysts most of the time. When we ask questions, there are times when they have to research. We do not ask simple questions, so sometimes, they do need to research what is going on with that particular machine or that particular incident, but they are responsive. They give intelligent answers. They are always good and friendly people to talk to. I would rate their support a 10 out of 10.

Positive

We did not use a similar solution. We still use traditional AV with Huntress. It is filling in a gap that we did not know was a gap before. We did not replace them with anything. We layered them into our stack.

It is all cloud. Its initial deployment was very easy.

We did not try to do them all at once. We scaled up, and we did a bunch here and there as we were growing it out because we could not take on all the costs without getting some of our clients to buy off on it and pay us for it. It was not an all-at-once. 

The way it works is that if you already have an RMM agent on all the machines, after you have it set up initially, it takes 20 to 30 minutes to do the install script and push it out to the first handful of machines. After that, it is just a matter of checking some boxes and hitting install. The installer itself is very fast. It goes and downloads itself, configures itself, and names the locations. They did a great job building this script for installation. If you tell me that I need to put this on a new company with another hundred systems, it would take me five minutes.

In terms of maintenance, you do not have to manually update an agent. Most of the time, they update themselves. We have to keep an eye out to make sure that they do not get uninstalled, but that is there with any software. Overall, there is not much in the way of maintenance. We just need to check everything and make sure it is doing what we think it is doing.

We did it internally. We are an MSP. We are the IT consultants, and there was nothing needed to bridge the gap between Huntress and us. They did a great job of onboarding. 

One person was required for its deployment.

It is simple. It is reasonable. They raised my prices this year. We never like price increases, but they continue to add value, so we just keep adding agents as we grow and as our clients grow.

We were always evaluating our endpoint security solutions, but there was nothing like this out there.

Stop waiting and just do it. 

I would rate Huntress a 10 out of 10.