User Interface

This section provides details about the Sandfly UI.

Sandfly Types
Sandfly uses high level types to categorize the types of threats that can be seen on a host. These categories are: File Process User Directory Log Po...
Thu, 23 Dec, 2021 at 12:31 PM
Viewing Sandflies
You can view all the sandflies present in the system by clicking on the Sandflies menu option. This will give a listing of all available sandflies along wit...
Thu, 23 Dec, 2021 at 2:04 PM
Activating and Deactivating Sandflies
A sandfly can be deactivated if you never want it to run. This is a valid option if it is causing a false alarm in your environment and whitelisting the ale...
Wed, 5 Jan, 2022 at 4:50 PM
Sandfly Active Response
Sandfly has the ability to actively respond to detected threats. The current version supports killing or suspending process activity that a user wants targe...
Thu, 23 Dec, 2021 at 2:39 PM
Whitelisting
Sandfly is written to have an extremely low chance of false alarms. However, in some environments you may have a configuration that can cause a sandfly to a...
Tue, 4 Jan, 2022 at 3:40 PM
Whitelisting a Sandfly
Whitelisting a Sandfly Against a Host If you get a false alarm for a sandfly against a host, you can easily make that sandfly no longer run against it for ...
Tue, 4 Jan, 2022 at 3:51 PM
Viewing and Deleting Whitelist Entries
Viewing the Whitelist Selecting Whitelist from the sidebar menu shows all hosts and what sandflies they have whitelisted. Whitelist View Clicking on...
Wed, 4 May, 2022 at 4:09 PM
Reports
The reports page contains a list of all available reports which provide various views into important data produced by Sandfly. The page is accessed by selec...
Wed, 4 May, 2022 at 3:44 PM
Settings
System settings allow you to manage users, update the licensing, view audit logs, set alert notifications, and change server configurations. Settings Pa...
Wed, 4 May, 2022 at 4:11 PM
User Profile and Password
User Profile Sandfly generates a very long random password when you install it. We recommend you use a suitable password manager to either save this passwo...
Thu, 23 Dec, 2021 at 2:56 PM