Skip to content

Releases: splunk-soar-connectors/sandflysecurity

1.4.1

28 Apr 20:38

Choose a tag to compare

1.4.1 (2025-04-28)

Bug Fixes

  • ci: Update Python dependencies for vulnerabilties, platform built-in removal, and Python 3.13 support. Update NOTICE file with updated dependencies. Apply pre-commit fixes. (361300e)

1.4.0

17 Jul 16:06
2d197f5

Choose a tag to compare

  • Added two new actions to get information from the Sandfly Server
    • list users - List all the user accounts on the specified system
    • list processes - List all the processes running on the specified system

1.3.0

22 May 06:58
1d88046

Choose a tag to compare

  • Added two new actions to get information from the Sandfly Server
    • get system info - Get information about an endpoint
    • list endpoints - List all the endpoints/sensors configured on the device

1.2.0

30 Mar 10:31
f5686cb

Choose a tag to compare

  • Added several new actions to run a specific subset of Sandfly types:
    • sandfly full investigation - run a full Sandfly investigation scan for all process, file, directory, log, user, incident, policy and recon types.
    • sandfly process investigation - run an investigation scan for the Sandfly process type.
    • sandfly file investigation - run an investigation scan for the Sandfly file type.
    • sandfly directory investigation - run an investigation scan for the Sandfly directory type.
    • sandfly log tamper investigation - run an investigation scan for the Sandfly log type.
    • sandfly user investigation - run an investigation scan for the Sandfly user type.
    • sandfly recon investigation - run an invesgitation scan for the Sandfly recon type.

1.0.1

01 Feb 07:07
6bbee80

Choose a tag to compare

  • Initial Release
  • Added support for 'scan host' action