TOC & Recently Viewed

Recently Viewed Topics

MongoDB Syntax

The syntax for this plugin and an audit are as follows:


description: "MongoDB - single_user_in_any_database"

mongo_function: "single_user_in_any_database"

known_good: "no single-user databases"




description: "MongoDB - matching_hashes"

mongo_function: "matching_hashes"

known_good: "no matching hashes"




description: "MongoDB - user_can_eval"

mongo_function: "user_can_eval"

known_good: "no user can run eval commands"


MongoDB audit can also support custom checks:


description: "Require Authentication - DB Users - 'User authenticated by MONGODB-CR'"

collection: "admin.system.users"

query: '{"credentials.MONGODB-CR": {"$exists": 1}}'

fieldsSelector: '{"_id": 0, "user" : 1}'

regex: "user"



Copyright © 2019 Tenable, Inc. All rights reserved. Tenable,, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc.., Lumin, Assure, and the Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.