MongoDB Logs

Overview

Evidence: MongoDB Logs Description: Collect MongoDB Logs Category: Applications Platform: windows Short Name: mngl Is Parsed: No Sent to Investigation Hub: No Collect File(s): Yes

Background

MongoDB logs contain database operations, connection events, queries, and error messages. These logs are essential for monitoring database activity and identifying unauthorized access or data manipulation.

Data Collected

This collector gathers structured data about mongodb logs.

Collection Method

This collector gathers MongoDB log files from the standard MongoDB Server installation directory, collecting operational logs and diagnostic information.

Forensic Value

MongoDB logs help identify unauthorized database access, data exfiltration, injection attacks, and suspicious query patterns. They reveal authentication attempts, executed queries, and database configuration changes.