Sandfly Blog

Detect Linux Loadable Kernel Module Stealth Rootkits Agentlessly with Sandfly

Watch Sandfly’s agentless intrusion detection and threat hunting technology detect a Linux stealth rootkit. Sandfly automates the investigation and alerting of Linux rootkit compromises so you can respond quickly to threats. Hunt for rootkits. Don’t …

READ MOREDetect Linux Loadable Kernel Module Stealth Rootkits Agentlessly with Sandfly

Sandfly 1.1.4 Updates

Sandfly 1.1.4 is available. Includes 10 new sandflies to expand Linux stealth rootkit detection, process anti-forensics, log file tampering, suspicious user activity, and process masquerading attacks.