.png){kind=logo}
FAQ
- How do I determine which host an investigation applies to?
- How do I rename/delete an Organization?
- I Don't See The Foothold That Was Reported?
- Why Has An Agent Not Checked In?
- What files does Huntress collect?
- Why is an incident still active if I remediated? How do I verify the footholds have been removed?
- Does Huntress work with Deep Packet Inspection (TLS/SSL Interception)?
- Why didn't Huntress detect/block a malicious file/activity/ransomware?
- How do I remove an agent so that I am no longer billed for it?
- Does Huntress Integrate with SIEM Solutions?
- What are Malware Artifacts?
- Do I really need to wipe the host?
- Can you provide the IP addresses/ranges that should be whitelisted to allow hosts to communicate with huntress.io?
- How Much Bandwidth Does the Huntress Agent Use?
- Why Has A New Agent Not Checked In?
- What Data Does Huntress Collect?
- What does "cert does not match pinned fingerprint" mean?
- What is a Foothold?
- When will the agent uninstall occur?
- How do I configure per organization notifications?