Absolutely. Sandfly is unique in the industry because incident responders can use Sandfly to instantly scan and detect compromises even if no prior secu...

Yes. We have built in connectors that can send data directly to Splunk and Elasticsearch. We also have the ability to send structured syslog directly to...

No. Sandfly is completely self-contained. It sends no data back to us and does not ship potentially confidential data from your systems off-site for anal...

Sandfly easily has the lowest CPU impact of any Linux EDR product on the market. In fact,  Sandfly was designed from the beginning to run without making...

Sandfly connects to the remote Linux systems to be secured using the industry standard SSH protocol. Sandfly supports authentication mechanisms allowed with...

SSH keys are handled very carefully by the Sandfly platform. When you add SSH keys to Sandfly to gain access to your Linux systems, they are immediat...

Yes. Sandfly supports key vault integration with various vendors such as Hashicorp, Cyberark, Thycotic and more. We can customize these integrations based o...

No. The forensic engines used by Sandfly are carefully designed to not allow any external commands to be run. This is part of our security model. The engine...

Yes.  And: You can chain together multiple jump hosts to access restricted segments.  Incident responders can chain together disposable hosts to ac...

No. Sandfly does not tie into kernel or core system libraries. You can update your systems as often as you'd like and it won't bother Sandfly. Furth...