Lavawall® Features

More details. More depth. More features.

General Features

Learn more about Lavawall®'s features:
  • Automatic report generation
  • Domain Scanner
  • Data Retention
  • AV, EDR, MDR, Malware, Antivirus
  • M365, Azure, Entra, and Purview breach detection and assessment
  • M365, Entra ID & Azure configuration backup, change monitoring & rollback
  • AD & M365 user reporting — unified Active Directory, Microsoft 365 / Entra ID, and Google Workspace user reporting. Inactive users, disabled-but-licensed users, privilege creep on security-significant groups, MFA gaps, sign-in anomalies, password-policy violations, and licence-cost recovery. One report set across every client tenant.
  • SharePoint & OneDrive file-change monitoring — M365 SharePoint Online and OneDrive for Business activity monitoring with actor and external-share visibility, mass-download and ransomware-pattern detection.
  • Google Drive & Shared Drive change monitoring — Drive and Shared Drive file activity with external-share visibility, mass-download and departing-employee detection.
  • Google Workspace breach detection and configuration vulnerabilities
  • MSP-focused GRC (Governance Risk and Compliance)
  • Multi-tenant mobile and desktop remote support and backstage shell
  • Data Governance & SAAS Detection for MSPs
  • Persistently block attackers in Cloudflare

    • Email & Domain Security

  • DMARC monitoring & report analyzer — a managed DMARC aggregate (rua) report receiver that parses the XML for you, identifies every sending source by reverse DNS and provider, lets analysts mark each source authorized or malicious with an audit trail, and walks each domain safely from p=none to quarantine to reject with percentage stepping. Auto-discovers your domains from connected Microsoft 365 and Google Workspace. Multi-tenant for MSPs.
  • Outlook phishing reporter with per-email SPF/DKIM/DMARC analysis
  • What are SPF, DKIM, and DMARC? (explainer)
  • Free Scout domain & DMARC posture scan

    • Security Awareness Training

  • Computer-based training catalog
  • Outlook phishing and email security awareness
  • Phishing simulation
  • Canadian cybersecurtiy awareness training
  • American IT security awareness training
  • Australian computer security training
  • UK security awareness training
  • EU privacy and cybersecurity training
  • Mexican critical infrastructure security awareness training
  • Latvian IT security awareness training
  • GRC and compliance framework training
  • Security awareness training
  • LLM AI security training training
  • PCI compliance training
  • Health privacy compliance training
  • Developer security training
  • Regulatory compliance training
  • Regional HR compliance training
  • Secure vibe coding training

    • Patching

  • Application Patching
  • Mac Patching
  • Windows Patching
  • Linux Patching

    • Tech Support Efficiency

  • Smart Helpdesk Ticketing
  • Processes & Performance
  • Instant Intelligent Event Log Viewer for MSPs
  • Lavawall® multi-tenant user management for MSPs
  • Quick Network Diagram, consumables, and vulnerabilities
  • Free Web Chat Widget with Knowledge Base
  • Enriched Remote Desktop for MSPs

    • Automation

  • Scripting
  • Application Deployment
  • Risk-Based Notifications & Alerts — five severity bands (Critical / Server outage / High / Moderate / Low) with per-recipient rate limits and per-recipient daily digest schedules. Two digest slots per band with editable day-of-week selection (defaults: Mon–Fri + Sat–Sun). Digests follow a “this band and above” rule, so one digest can carry the whole day. Per-subscriber timezone with DST-correct delivery. “Do not send” toggle per band. Inactive-user alerts for Active Directory, Microsoft 365, and Google Workspace. Empty digests are suppressed automatically. Built for MSPs — one subscription can cover every client company or each contact can be scoped to just their own.
  • LLM Prompts for Cybersecurity Report Generation
  • Phishing reporting and analysis

    • Vulnerability & Threat Hunting

  • Akira Ransomware Hunter & Indicators of Compromise
  • Configuration Vulnerabilities
  • On-premises file change monitoring (FIM) — cross-platform file integrity monitoring on Windows, macOS, and Linux endpoints and file servers. Creates, writes, deletes, renames, and ACL changes with actor attribution. Audit-ready evidence for SOC 2, HIPAA, NIST SP 800-171, CMMC 2.0, PCI DSS v4, ISO 27001:2022, and CIS Controls v8.
  • M365 / Entra / Azure configuration change monitoring & rollback (privilege escalation, OAuth-grant abuse, transport-rule attacks, NSG opening)
  • Microsoft 365, Azure, Entra, and Purview breach detection and configuration vulnerabilities
  • Google Workspace breach detection and configuration vulnerabilities
  • Nessus Professional Integration
  • Safe & Persistent Cloudflare Blocking

    • Summaries & Reports

  • Dashboard
  • Replacement Prioritization
  • Battery Health Monitoring

    • Integrations

  • Huntress
  • Connectwise
  • Datto RMM
  • Panorama9
  • RMM integration
  • ZenDesk
  • HubSpot

    • White Labelling

  • Domain Scanner