Using auditd to monitor execution of scripts in Linux [closed]
I’m trying to log execution of scripts (bash, python, perl, php) with command line params using auditd. I don’t want to add execve to my config as it brings too much noise. In my audit.rules I have the following
-w /usr/bin/python -p x -k … Continue reading Using auditd to monitor execution of scripts in Linux [closed]