Take AssessmentBook a Briefing

Direct MDR

Enterprise-grade protection. Personal pricing.

The same 24×7 managed detection and response we deliver to businesses, available directly to individuals and families starting at $15 per device per month. No enterprise sales process. No setup session. No contract. Cancel any time.

Start at $15/monthFree 20-min triage

TL;DR

What you're actually buying for $15/month

Direct MDR puts the Huntress endpoint agent on your computer and connects it to a 24×7 Security Operations Center. When something acts like an attacker, the agent isolates the machine within minutes and a real analyst reviews what happened. You hear from us only when there's something real to tell you. No false-positive spam, no chatbot, no upsell loop.

Pricing

Pick your device count. The more you cover, the less per device.

1 device

$15/month

$15 per device

Your primary computer, monitored 24×7 by the Huntress SOC. No setup session. No advisory wrap. Just the protection.

Start with 1 device

Best for families

5 devices

$60/month

$12 per device — save $15/mo

Cover your laptop, your kid's laptop, your parent's laptop, the home office machine, the family iMac. Same Huntress SOC on every one.

Cover 5 devices

10 devices

$100/month

$10 per device — save $50/mo

Extended family or small home-office. Same managed protection on every machine. Add and remove devices any time.

Cover 10 devices

Need more than 10 devices? Talk to us about bulk pricing. Above 25 devices, custom rates apply.

What you get

Six things every plan includes

24×7 SOC monitoring

A real Security Operations Center watches your computer continuously. Not a chatbot, not an automated response — actual analysts, awake at 3 a.m. on a Sunday.

Active threat isolation

When something acts like an attacker, your computer is automatically disconnected from threats within minutes. The malware does not get to do its job.

Ransomware canaries

Hidden file traps detect ransomware encryption attempts before your real files are touched. We see ransomware before you do.

Human review of every alert

Software flags, humans decide. You don't get false-positive spam — you only hear from us when something is actually worth telling you.

Windows & macOS

Light agent (under 50 MB memory). No browser slowdowns, no fan noise, no popups. Once installed, you forget it's there.

Cancel any time

Month-to-month. No contract, no minimum. If something changes, uninstall the agent — billing stops at the end of the month.

How it fits

Direct MDR is additive — keep what you already have

Antivirus, backups, and being a careful clicker are all real layers of defense. They do jobs MDR doesn't. MDR does jobs they don't. Below is what each layer is good at and what Direct MDR adds on top.

What you already haveWhat it's good atWhat Direct MDR adds
Built-in OS protection (Windows Defender, macOS XProtect)Catches known malware by signature.24×7 SOC analysts watching for behavior that signatures don't catch — fileless malware, living-off-the-land techniques, suspicious PowerShell.
Consumer antivirus (Norton, McAfee, Bitdefender, etc.)Catches known threats, scans for identity exposure, blocks bad URLs.Active threat isolation in minutes, not just an alert pop-up. Real-time response by a SOC, not a chatbot.
Backups (Time Machine, OneDrive, Backblaze, etc.)Lets you recover after ransomware encrypts your files.Ransomware canary detection that stops the attack before encryption starts. Recovery is good; not needing recovery is better.
You — careful about what you clickReduces the chance of you being the entry point.A team awake at 3 a.m. on a Sunday when you're asleep. Most modern attacks bypass signatures and human caution alike — that's where managed detection fits.

Most modern attacks — ransomware, credential theft, session hijacking, business email compromise — rarely trip antivirus signatures because they look like normal programs doing slightly-weird things. That's the gap a 24×7 SOC fills. Direct MDR is the thing you used to need to be a Fortune 500 to afford.

Setup

From sign-up to protected, in 10 minutes

01

Free 20-minute call

Optional but recommended. We confirm fit, walk through what you'd get, and answer questions. If Direct MDR isn't the right fit, we tell you.

02

Sign-up + agent installer

You receive a one-line installer (or .msi / .pkg file) by email. Run it once. Monitoring is active within minutes.

03

Confirmation email

We send a confirmation when the SOC sees your device check in. From that point forward, you only hear from us when something matters.

04

You forget about it

Which is the goal. Real protection should be invisible until it's needed.

FAQ

Questions before signing up

Is this for personal use, or just for businesses?

Both. Direct MDR is designed for individuals, families, and sole proprietors who want enterprise-grade protection without an enterprise sales process. The same Huntress agent businesses pay $25+/month for is $15 here, billed directly to you.

How does this work alongside Norton, McAfee, or Windows Defender?

Direct MDR is complementary, not a replacement. Consumer antivirus products (Norton, McAfee, Bitdefender, Windows Defender, etc.) catch known malware by signature and that's a real layer of defense — keep what you already have. Direct MDR adds a 24×7 Security Operations Center watching for the patterns AV doesn't catch: ransomware behavior before encryption starts, credential theft, session hijacking, and slow-rolling attacks that don't trip a signature. Most clients keep their existing AV and add Direct MDR on top.

How do I install it?

We send you a one-line installer or a packaged .msi/.pkg file. Most people are protected within 10 minutes of clicking Run. We confirm by email when monitoring is active.

Will it slow down my computer?

No. The Huntress agent uses under 50 MB of memory, has no kernel hooks, and is signed by Microsoft. You will not notice it running.

What if I have more than 10 devices?

Talk to us about bulk pricing. The economics get better at higher volumes. Some clients cover 25+ devices across an extended family or small office at custom rates.

Can I add devices later?

Yes — month-to-month means you can scale up or down whenever. Add a kid's laptop next semester, drop one when someone moves out. We bill based on the count at the end of each month.

What happens if something does happen?

The SOC isolates the threat immediately and a real practitioner reaches out within hours. You get a written summary of what happened and what to do next. Single-incident response sessions run $250 if you don't have an ongoing relationship — but with Direct MDR, threat isolation is included.

Need more than just MDR?

Other ways to work with us

Ready to start

Stop watching your devices alone.

Sign up takes 5 minutes. The agent installs in another 5. You're protected within 10 minutes of saying yes.

Start at $15/month