Sandfly 1.1.4 Updates
Sandfly 1.1.4 is available. Includes 10 new sandflies to expand Linux stealth rootkit detection, process anti-forensics, log file tampering, suspicious user activity, and process masquerading attacks.
Sandfly 1.1.4 is available. Includes 10 new sandflies to expand Linux stealth rootkit detection, process anti-forensics, log file tampering, suspicious user activity, and process masquerading attacks.
The video of Craig’s talk at the Christchurch Hacker Con has been posted to YouTube. This video covers the slides posted here on the blog which includes using basic Linux command line tools for intrusion detection …
READ MOREChristchurch Hacker Con Linux Digital Forensics Video
After much time coding and testing, we are pleased to announce that Sandfly 1.1 is now released. Sandfly is an agentless security investigator and compromise detection system for Linux. With Sandfly you can have an …