Jump to content
ShaunB

Feature Requests - Endpoint Protection

Recommended Posts

 

We started using Endpoint Protection. (migrated from Kaspersky) It is amazing how much malware we had that Kaspersky just flat out didn’t catch or care about. And we got hit with Emotet because of it.

 

We got a trial set up last Thursday and it now seems like we are all good. However after using it for the last week. We have some feature requests (I am sure some of these are already in the works)

 

 

 

Make the agent check in more and let us know what is happening. We have noticed with scheduled scans, they don't show up until finished. It would be nice to see what endpoints are doing at all times, rather than when something completes.

We have had users say their computer is slow (And the endpoint overview shows nothing)... only to find out a scan from the night before is still running. Perhaps a current status field. Also, if a user starts a scan themselves... we also want to see that.

 

We have also had an endpoint that installed the agent. But the MBAMservice was broken. Have the agent check in and report if it is working/not installed/etc. Again.... this could be in a status field.

 

 

 

 

Endpoint Overview  - Ability to see the IP an endpoint is connecting from - this would help us figure out if someone is at home, on the road, or in one of our branches.

 

Endpoint Overview  - The Endpoint boot up time

 

Endpoints view - Ability to add/remove any of the data from the endpoint overview as a column - we can then hide or add depending on what we are looking for

 

Endpoints view  - Ability to see the amount of files in quarantine for the endpoint on the endpoint view (and sortable)

 

Endpoints view  - The currently logged on user in endpoint view (maybe even a list of last logged on users if you drill into overview?)

 

Endpoint Overview - Ability to see the scheduled scans in the endpoint overview. (not history, just a list of all the schedules) We have had endpoints that didn't seems to run the scheduled scan. This would just give us confidence they are receiving the schedules. Perhaps even have a last run date next to it also.

 

Quarantine view, Event View, etc. Ability to click on the Endpoint name and be taken to the endpoint overview page. Saves us having to copy paste the computer name into endpoints. (we have random computer names)

 

Emails – Instead of the subject “Malwarebytes: A new event occurred” have it say the type of event… that way we don’t have to always look at the email body to see what is going on… for example… “Malwarebytes: New machine registered” or “Malwarebytes: Threat Detected”, etc. 

 

 

Thanks!

Shaun

 

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.