Incident Reports and Remediations
Managing incident reports and remediations on hosts and in the portal
- Active Remediation of Incident Reports
- EDR / ITDR Incident Simulation
- Chromeloader Detections FAQ
- Using Assisted Remediation
- Bulk Resolve Incident Reports
- Reject Incident Report Remediations
- Automatic Closure of Incident Reports
- Close Incidents After Wiping or Decommissioning Hosts
- Manually Remediate Active Incidents
- Manually Remediate User Registry Keys
- Manually Remediate by Auditing the Directory
- Manually Remediate Kovter Hidden Registry Values
- Terminate Processes Before Remediation
- Remediate Malicious Processes
- Reported Foothold Not Present on Endpoint
- Incident Report Suggests to Wipe an Endpoint
- Huntress did not detect or block a malicious file, activity, or ransomware
- Incident Report Generated for Offline or Decommissioned Endpoints
- Incident Report Generated When VirusTotal Shows 0/0 Detections
- WinExeSvc is Flagged by AV, but not Huntress