Linux Forensics

Sandfly 5.4 - Cisco and Juniper Network Device Support

Product Update
Linux Forensics
Rootkits
Malware
April 22, 2025

Sandfly 5.4 is introducing an industry-first new feature: Agentless EDR support for Cisco and Juniper networking gear. This new feature gives customers full Linux EDR coverage of these critical…

Detecting Bincrypter Linux Malware Obfuscation

Malware
Linux Security
Linux Forensics
March 27, 2025

A new Linux script from THC will encrypt and obfuscate any executable or script to hide from on-disk detection. It then launches the code in a way to not leave traces on the disk as a fileless…

Linux Password Hash Risks and Security Overview

Linux Security
Linux Forensics
Education
White Paper
Videos
March 03, 2025

Linux systems face growing threats, making password security critical. Our white paper and video below on Linux password hashes exposes the risks of outdated hashing algorithms and provides practical…

Sandfly 5.3.1 - Video Overview

Linux Forensics
Rootkits
Malware
March 02, 2025

Sandfly 5.3.1 features new licensing tier options, including an affordable Home User Edition. We've also added SELinux tamper detection and more stealth rootkit decloaking. Please watch the video…

SSH Lateral Movement Risks on Linux Webinar and White Paper

Linux Security
Linux Forensics
Education
White Paper
Videos
February 27, 2025

Secure Shell (SSH) is a cornerstone of Linux system administration, enabling secure remote access to servers through encrypted communication. However, SSH keys, if not properly managed, can expose…

Sandfly 5.3.1 - New License Tiers and SELinux Support

Product Update
Linux Forensics
Rootkits
Malware
February 23, 2025

Sandfly 5.3.1 features new licensing tier options, including an affordable Home User Edition. We've also added SELinux support and more stealth rootkit detection. New features include just some of…