Tyler Benson

Fixing Graph API: unknown - subscription_error: M365::ManagementClient - 400 Bad Request

1. Huntress Managed Detection and Response for Microsoft 365
2. Troubleshooting

For manually mapped tenants  Please approve the app using; https://login.microsoftonline.com/common/adminconsent?client_id=3a8b631c-cbce-4c51-a5af-1d3bc0a14d69 with a different global admin other t...

• Tyler Benson
• August 05, 2023 16:05
• Updated
• 1 follower
• 0 comments
• 0 votes

Fixing Audit Log Enablement: Cmdlet needs proxy

1. Huntress Managed Detection and Response for Microsoft 365
2. Troubleshooting

If you see a red error banner that contains one of the following:  “Audit Log Enablement: Cmdlet needs proxy. Current Server FQDN :..." "WindowsDefenderATP: Application <> doesnt exist in customer...

• Tyler Benson
• August 05, 2023 15:58
• Updated
• 1 follower
• 0 comments
• 0 votes

Fixing AADSTS65001

1. Huntress Managed Detection and Response for Microsoft 365
2. AADSTS Errors

Sign into your Azure Portal. Locate your Huntress Admin Account. Navigate to the "Groups" section. Then hit the “+ Add memberships” at the top. Select "AdminAgents" from the options. C...

• Tyler Benson
• August 25, 2023 16:38
• Updated
• 2 followers
• 0 comments
• 0 votes

Huntress Vaccine Files

1. FAQ / Knowledge Base / Troubleshooting
2. FAQ

Team: Huntress EDRProduct: Ransomware CanariesEnvironment: Windows The File You may have discovered a new file on your host (C:\INTERNAL\__EMPTY) that contains the following text from Huntress:  Th...

• Tyler Benson
• February 09, 2023 21:33
• Updated
• 2 followers
• 0 comments
• 0 votes

Disabling Mounting of Disk Image Files

1. Introduction to Huntress
2. Remediation

Team: Huntress EDRProduct: Disk Image File (ISO, IMG, VHD, VHDX)Environment: WindowsSummary: Huntress suggests modifying the default option for accessing disk image files from "mount" to "burn disc...

• Tyler Benson
• February 08, 2023 13:18
• Updated
• 3 followers
• 2 comments
• 1 vote

Remediating Qakbot

1. Introduction to Huntress
2. Remediation

Team: Huntress EDRProduct: QakbotEnvironment: WindowsSummary: Qakbot is a rapid-spreading malware often used to implement additional malware across networks. Remediation steps include quarantining,...

• Tyler Benson
• January 12, 2023 18:07
• Updated
• 1 follower
• 0 comments
• 1 vote

Curricula to HSAT account migration

1. FAQ / Knowledge Base / Troubleshooting
2. Troubleshooting

We currently do not have the ability to move existing Curricula accounts into the Huntress dashboard at this time; however, it is on our roadmap. We will update this article once we have finished a...

• Tyler Benson
• May 09, 2023 18:25
• Updated
• 1 follower
• 0 comments
• 0 votes

SAML SSO Setup for Jump Cloud

1. Huntress for Admins
2. SAML/SSO

This guide is for setting up SAML SSO with Jump Cloud and Huntress. For known limitations and caveats of our SAML, please see SAML SSO  Login to JumpCloud  Head over to the SSO section Hit the Gr...

• Tyler Benson
• March 22, 2023 18:09
• Updated
• 1 follower
• 0 comments
• 0 votes

Phishing Creator 101

1. Creator
2. Phishing Creator

Team: Huntress SATProduct: Phishing scenario "Create something new"Summary: How to Create a Customized Scenario Using Phishing Creator To create your own custom phishing scenario, select the ‘Libr...

• Tyler Benson
• April 28, 2023 22:59
• Updated
• 1 follower
• 0 comments
• 0 votes

Report Types

1. Features
2. Security Awareness Training Reports

Team: Huntress SATProduct: Account phishing settings Summary: This article details the numerous different report types  SAT offers a variety of reports to help admins gain key insight into thei...

• Tyler Benson
• May 09, 2023 17:49
• Updated
• 0 followers
• 0 comments
• 0 votes