Blog
Sandfly 4.2.3 - OpenSSL CVE-2022-3602 and CVE-2022-3786 Update
Sandfly 4.2.3 has been released and contains fixes for the OpenSSL CVEs announced on November 1, 2022: CVE-2022-3602 and CVE-2022-3786 . Sandfly's core server and API is written in Go and the TLS…
Sandfly Security Code Audit and Continuous Monitoring
Sandfly is proactive about protecting the security of our customers and has recently completed an external code audit of our on-host forensic engines with no significant security issues. Further, all…
Sandfly 4.2 - Automatic Host Discovery and Faster Than Ever
Sandfly 4.2 has been released and features a new automatic host discovery for cloud and DHCP environments. Plus, it has been significantly optimized to be more than twice as fast with lower CPU…
Sandfly 4.0 - SSH Credential Auditing and eBPF Rootkit Detection
Sandfly 4.0 has been released and includes our powerful new SSH key and credential auditing feature: SSH Hunter. This new feature allows you to track SSH key usage across your Linux fleet…
Sandfly Linux File Entropy Scanner Updated
Our entropy scanner sandfly-filescan has been updated and renamed to sandfly-entropyscan and now features Linux process scanning to help quickly spot packed and encrypted malware. You can get it…
BPFDoor Coverage in Bleeping Computer
Bleeping Computer wrote an extensive article covering the evasive BPFDoor malware found on many Linux systems globally: BPFDoor: Stealthy Linux malware bypasses firewalls for remote access The…