Detects the deletion of Web Server access logs.
Source table → box.unix
box.unix
Detects the deletion of sensitive Linux system logs
Detects modification to the sudoers file. The sudoers file determines which users have the ability to run with superuser permission.
Detects potential Linux binary SSH abuse to break out from restricted environments by spawning an interactive system shell.
Detects the maximum number of failed login attempts for a user on a Linux host.
