This section covers the general operation and use of Sandfly.

Quick Start Overview
Getting Started Quickly Sandfly Dashboard Sandfly is easy to setup. Once you have installed the Server and Node, perform the following steps outli...
Tue, 4 Oct, 2022 at 4:09 PM
Interpreting Results
How to Interpret Any Alarms Sandfly is written very carefully to not have false alarms. Many of the threats Sandfly detects are so specific to a comprom...
Tue, 9 Aug, 2022 at 6:01 PM
Custom Sandfly Operation
How to create custom Sandflies for Linux intrusion detection and incident response Custom sandflies are small JSON modules that are passed to the Sandfl...
Wed, 27 Jul, 2022 at 6:34 PM
Sandfly API
The Sandfly server provides a REST API to further expand its functionality. The full list of calls for the Sandfly API are available at: https://api.s...
Wed, 27 Jul, 2022 at 6:35 PM