Untitled
unknown
plain_text
2 months ago
398 B
1
Indexable
-a always,exit -F arch=b64 -S execve -F euid=0 -F auid>=1000 -F auid!=4294967295 -k sudo_commands -a always,exit -F arch=b32 -S execve -F euid=0 -F auid>=1000 -F auid!=4294967295 -k sudo_commands -a always,exit -F arch=b64 -S execve -F exe=/bin/su -F auid>=1000 -F auid!=4294967295 -k su_commands -a always,exit -F arch=b32 -S execve -F exe=/bin/su -F auid>=1000 -F auid!=4294967295 -k su_commands
Editor is loading...
Leave a Comment