Customer Requests

It would be very beneficial to add dark web monitoring.

When trying to patch vulnerabilities based on their CVE, there is no way to check on the status of the patch job after you select the Vulnerability Name and then click on install patch.

The disadvantage of blocking software by vendor, is that this option can only be configured locally and cannot be managed from the EM portal. Please add the ability to manage software vendors using the EM portal. Thanks!

Add Category based Web filters and access to control Web filters through Xcitium platform

Currently, making changes to XCS settings on the agent requires direct intervention on the endpoint, which is both inconvenient and disruptive to the user. Essential tasks such as adding applications to the Virtual Desktop, resetting containment, launching a Virtual Desktop session, and creating application shortcuts can only be performed locally. To streamline management and enhance security, there needs to be an option to modify all XCS settings directly through the portal, including but not limited to: - Adding/removing applications in the Virtual Desktop - Resetting containment without requiring user interaction - Launching Virtual Desktop sessions remotely - Creating and deploying application shortcuts for the Virtual Desktop - Adjusting other agent settings such as those found in the advanced tasks, DLP tasks, firewall tasks, and containment tasks tabs without manual endpoint access Currently, some changes require modifying profile settings to allow user overrides, which contradicts security best practices. Enabling full administrative control via the portal would eliminate the need for user intervention while maintaining security and operational efficiency. Implementing these capabilities would significantly improve the management experience and reduce disruption for both administrators and end users.

Good Morning: Dear technical support friends, here are some details that our customers with the Xcitium console have been asking for so you can manage them with your development and programming department. Perhaps it can be included in the next console updates. Customers mention that other antivirus brands have these features and that they help with their functions. Customers request that the Xcitium console include: 1) Website blocking. They note that other antivirus brands can block websites in their profile or policy from their web console through a content control module (internally, they add a certificate to the website in their programming and can block it, either by category (social networks, games, gambling, online dating, etc.) or by specific pages entered in the filters). This could be added to the Xcitium policy profile and applied to a computer or group of computers. 2) Integration with Active Directory, performing a scan similar to the one performed with the Xcitium mass installation tool. The Active Directory tree would be displayed in the Xcitium console in the device list section. This would show which computers have our Xcitium solution installed and which do not. From the central Xcitium console in the cloud, a remote installation could be sent to computers that do not have it installed, as another installation option. 3) In the EDR section, a more dynamic and detailed graph of the timelines of any detections could be displayed, perhaps in a tree that correlates to the computers on the client's company network. The MITRE ATT&CK techniques used could also be shown. 4) Could you provide a page where all the monthly updates to the console are visible and keep us up to date? I'm passing these suggestions on to you as inquiries from end customers. They may serve as improvements to the Xcitium console (which is already quite good with its features). However, the idea is to continue improving based on customer feedback and perhaps incorporate some of the features you see in other antivirus consoles. Sincerely,

We would like the platform to include industry-standard security compliance templates that can be used to assess and verify whether a client is complying with common security standards such as: HIPAA (Health Insurance Portability and Accountability Act) GDPR (General Data Protection Regulation) SOC 2 (System and Organization Controls) PCI-DSS (Payment Card Industry Data Security Standard) ISO 27001 (Information Security Management System) NIST CSF (National Institute of Standards and Technology Cybersecurity Framework) CIS Controls (Center for Internet Security) These templates should allow for a checklist-style audit or compliance assessment where the platform can automatically compare a client’s environment against the necessary security requirements for each framework. We also need a feature that allows us to check and monitor compliance in real-time or through periodic assessments. This should involve: An easy-to-read dashboard or portal view where we can quickly see if a client is in compliance or if there are any gaps. The ability to track and alert when a client falls out of compliance or needs an update (e.g., outdated encryption, insufficient data protection measures, etc.). Automated reminders and alerts for upcoming compliance deadlines, audits, or renewals. It would also be incredibly helpful to generate a professional, high-level executive report on a client’s security compliance status. This report should include: An overview of compliance with industry standards. A summary of security gaps or issues preventing full compliance. Risk assessment and priority actions required to close any gaps. Visual elements (e.g., graphs, risk heatmaps, compliance scores) to make the report more digestible for business decision-makers. A clear executive summary with high-level insights that are suitable for stakeholders without technical expertise. We would greatly appreciate the ability to generate these reports at the click of a button and have them available in a polished, client-friendly format (PDF or similar).

Please add a way to create a monitor to trigger tickets in SDv2/SDv1 for blocked DLLs just there are for Containment Events.

It would be very beneficial to have file path exclusions for DLLs. As there is already an option to block unknown DLLs there should be an option for adding file path exclusions.

We don't need control just view at the moment. Just deployed yesterday shocked the remote view has not been setup in the product yet.