Incident Reports and Remediations
Managing incident reports and remediations on hosts and in the portal
- Using Assisted Remediation
- Automatic Closure of Incident Reports
- Bulk Resolve Incident Reports
- Auto Remediation of Incident Reports
- Manually Remediate Active Incidents
- Manually Remediate User Registry Keys
- Remediate Malicious Processes
- Reject Incident Report Remediations
- Reported Foothold Not Present on Host
- Terminate Processes Before Remediation
- Close Incidents After Wiping or Decommissioning Hosts
- Do I really need to wipe the host?
- Why didn't Huntress detect/block a malicious file/activity/ransomware?
- Why are Incident Reports Generated for Offline or Decommissioned Hosts?
- Incident Reports When VirusTotal Shows 0/0 Detections
- WinExeSvc is Flagged by AV, but not Huntress
- Manually Remediate by Auditing the Directory
- Manually Remediate Kovter Hidden Registry Values