# MongoDB Logs

## Overview

**Evidence:** MongoDB Logs\
**Description:** Collect MongoDB Logs\
**Category:** Applications\
**Platform:** windows\
**Short Name:** mngl\
**Is Parsed:** No\
**Sent to Investigation Hub:** No\
**Collect File(s):** Yes

## Background

MongoDB logs contain database operations, connection events, queries, and error messages. These logs are essential for monitoring database activity and identifying unauthorized access or data manipulation.

## Data Collected

This collector gathers structured data about mongodb logs.

## Collection Method

This collector gathers MongoDB log files from the standard MongoDB Server installation directory, collecting operational logs and diagnostic information.

## Forensic Value

MongoDB logs help identify unauthorized database access, data exfiltration, injection attacks, and suspicious query patterns. They reveal authentication attempts, executed queries, and database configuration changes.