Latest Version 4.6.2
August 28, 2025
Sandfly is an agentless intrusion detection and incident response platform for Linux. Sandfly automatically analyzes Linux hosts for intruders 24 hours a day without loading any software on your endpoints. Additionally, Sandfly can retrieve hardware, operating system and related data for analysis in Splunk. Sandfly works across virtually all Linux distributions immediately without risk to stability or performance.
(0)
Categories
Created By
Type
Downloads
Licensing
Splunk Answers
Resources