Item Search

Name	Audit Name	Plugin	Category
1.1.5 (L1) Ensure 'Password must meet complexity requirements' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
1.1.17 Ensure that the --audit-log-maxbackup argument is set to 10 or as appropriate	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	AUDIT AND ACCOUNTABILITY
1.1.17 Ensure that the --audit-log-maxbackup argument is set to 10 or as appropriate	CIS Kubernetes 1.11 Benchmark v1.3.0 L1	Unix	AUDIT AND ACCOUNTABILITY
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.4 Ensure that the MIN_DATA_RETENTION_TIME_IN_DAYS account parameter is set to 7 or higher	CIS Snowflake Foundations v1.0.0 L2	Snowflake	AUDIT AND ACCOUNTABILITY, CONTINGENCY PLANNING, SYSTEM AND INFORMATION INTEGRITY
4.07 init.ora - 'os_authent_prefix = NULL String'	CIS v1.1.0 Oracle 11g OS L1	Unix	ACCESS CONTROL
5.1.2.1 Ensure 'EXECUTE' is not granted to 'PUBLIC' on 'Non-default' Packages - Non-default Packages	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
49.22 (L1) Ensure 'Network Security: Allow PKU2U authentication requests' is set to 'Block'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
BIND-9X-001057 - The master servers in a BIND 9.x implementation must notify authorized secondary name servers when zone files are updated.	DISA BIND 9.x STIG v2r3	Unix	CONFIGURATION MANAGEMENT
BIND-9X-001060 - A BIND 9.x caching name server must implement DNSSEC validation to check all DNS queries for invalid input.	DISA BIND 9.x STIG v2r3	Unix	SYSTEM AND INFORMATION INTEGRITY
BIND-9X-001070 - A BIND 9.x master name server must limit the number of concurrent zone transfers between authorized secondary name servers.	DISA BIND 9.x STIG v2r3	Unix	ACCESS CONTROL
CIS AIX 5.3 and 6.1 v1.1.0 Level 1	CIS AIX 5.3/6.1 L1 v1.1.0	Unix
CIS AIX 5.3 and 6.1 v1.1.0 Level 2	CIS AIX 5.3/6.1 L2 v1.1.0	Unix
CIS Control 6 (6.2(b)) Activate Audit Logging	CAS Implementation Group 1 Audit File	Unix	AUDIT AND ACCOUNTABILITY
CIS Control 13 (13.6) Encrypt Mobile Device Data	CAS Implementation Group 1 Audit File	Unix	ACCESS CONTROL
CIS_Apache_Cassandra_3.11_v1.0.0_L1_OS_Unix.audit from CIS Apache Cassandra 3.11 Benchmark v1.0.0	CIS Apache Cassandra 3.11 L1 Unix Audit v1.0.0	Unix
CIS_CentOS_Linux_7_v4.0.0_L1_Workstation.audit from CIS CentOS Linux 7 Benchmark v4.0.0	CIS CentOS Linux 7 v4.0.0 L2 Workstation	Unix
CIS_CentOS_Linux_7_v4.0.0_L1_Workstation.audit from CIS CentOS Linux 7 Benchmark v4.0.0	CIS CentOS Linux 7 v4.0.0 L1 Workstation	Unix
CIS_CentOS_Linux_7_v4.0.0_L2_Server.audit from CIS CentOS Linux 7 Benchmark v4.0.0	CIS CentOS Linux 7 v4.0.0 L2 Server	Unix
CIS_Cisco_IOS_15_v4.1.1_Level_1.audit from CIS Cisco IOS 15 Benchmark	CIS Cisco IOS 15 L1 v4.1.1	Cisco
CIS_Cisco_IOS_15_v4.1.1_Level_2.audit from CIS Cisco IOS 15 Benchmark	CIS Cisco IOS 15 L2 v4.1.1	Cisco
CIS_Debian_Linux_11_v2.0.0_L1_Server.audit from CIS Debian Linux 11 Benchmark v2.0.0	CIS Debian Linux 11 v2.0.0 L1 Server	Unix
CIS_Debian_Linux_11_v2.0.0_L2_Server.audit from CIS Debian Linux 11 Benchmark v2.0.0	CIS Debian Linux 11 v2.0.0 L2 Server	Unix
CIS_Debian_Linux_12_v1.1.0_L1_Workstation.audit from CIS Debian Linux 12 Benchmark v1.1.0	CIS Debian Linux 12 v1.1.0 L1 Workstation	Unix
CIS_Google_Chrome_L1_v3.0.0.audit from CIS Google Chrome Benchmark v3.0.0	CIS Google Chrome L1 v3.0.0	Windows
CIS_Google_Chrome_L2_v3.0.0.audit from CIS Google Chrome Benchmark v3.0.0	CIS Google Chrome L2 v3.0.0	Windows
CIS_IBM_DB2_11_v1.1.0_Level_1_OS_Windows.audit from CIS IBM DB2 11 v1.1.0 Benchmark	CIS IBM DB2 11 v1.1.0 Windows OS Level 1	Windows
CIS_MacOS_Safari_Benchmark_v2.0.0_L1.audit from CIS MacOS Safari Benchmark v2.0.0	CIS MacOS Safari v2.0.0 L1	Unix
CIS_Microsoft_Edge_v3.0.0_L1.audit from CIS Microsoft Edge Benchmark v3.0.0	CIS Microsoft Edge v3.0.0 L1	Windows
CIS_Microsoft_Edge_v3.0.0_L2.audit from CIS Microsoft Edge Benchmark v3.0.0	CIS Microsoft Edge v3.0.0 L2	Windows
CIS_MongoDB_3.2_Benchmark_Level_1_OS_Windows_v1.0.0.audit from CIS MongoDB 3.2 Benchmark v1.0.0	CIS MongoDB 3.2 L1 Windows Audit v1.0.0	Windows
CIS_MongoDB_3.2_Benchmark_Level_2_OS_Windows_v1.0.0.audit from CIS MongoDB 3.2 Benchmark v1.0.0	CIS MongoDB 3.2 L2 Windows Audit v1.0.0	Windows
CIS_MongoDB_3.4_Benchmark_Level_2_OS_Windows_v1.0.0.audit from CIS MongoDB 3.4 Benchmark v1.0.0	CIS MongoDB 3.4 L2 Windows Audit v1.0.0	Windows
CIS_Rocky_Linux_8_v2.0.0_L2_Server.audit from CIS Rocky Linux 8 Benchmark v2.0.0	CIS Rocky Linux 8 Server L2 v2.0.0	Unix
CIS_Ubuntu_20.04_LTS_v2.0.1_L1_Workstation.audit from CIS Ubuntu Linux 20.04 LTS Benchmark	CIS Ubuntu Linux 20.04 LTS Workstation L1 v2.0.1	Unix
CIS_VMware_ESXi_6.5_v1.0.0_L1_Bare_Metal.audit from CIS VMware ESXi 6.5 v1.0.0 benchmark	CIS VMware ESXi 6.5 v1.0.0 Level 1 Bare Metal	Unix
CIS_VMware_ESXi_6.7_v1.3.0_L1_Bare_Metal.audit from CIS VMware ESXi 6.7 Benchmark v1.3.0	CIS VMware ESXi 6.7 v1.3.0 Level 1 Bare Metal	Unix
CIS_VMware_ESXi_6.7_v1.3.0_L2_Bare_Metal.audit from CIS VMware ESXi 6.7 Benchmark v1.3.0	CIS VMware ESXi 6.7 v1.3.0 Level 2 Bare Metal	Unix
GEN001680 - All system start-up files must be group-owned by root, sys, bin, other, or system.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL
RHEL-09-253025 - RHEL 9 must log IPv4 packets with impossible addresses.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
SYMP-AG-000040 - Symantec ProxySG providing reverse proxy intermediary services for TLS must be configured to version 1.1 or higher with an approved cipher suite.	DISA Symantec ProxySG Benchmark ALG v1r3	BlueCoat	ACCESS CONTROL
SYMP-AG-000480 - Symantec ProxySG providing reverse proxy encryption intermediary services must use NIST FIPS-validated cryptography to implement encryption services.	DISA Symantec ProxySG Benchmark ALG v1r3	BlueCoat	SYSTEM AND COMMUNICATIONS PROTECTION
WBLC-01-000011 - Oracle WebLogic must employ automated mechanisms to facilitate the monitoring and control of remote access methods.	Oracle WebLogic Server 12c Linux v2r2	Unix	ACCESS CONTROL
WBLC-01-000011 - Oracle WebLogic must employ automated mechanisms to facilitate the monitoring and control of remote access methods.	Oracle WebLogic Server 12c Linux v2r2 Middleware	Unix	ACCESS CONTROL
WBLC-02-000065 - Oracle WebLogic must compile audit records from multiple components within the system into a system-wide (logical or physical) audit trail that is time-correlated to within an organization-defined level of tolerance.	Oracle WebLogic Server 12c Windows v2r2	Windows	AUDIT AND ACCOUNTABILITY
WBLC-02-000065 - Oracle WebLogic must compile audit records from multiple components within the system into a system-wide (logical or physical) audit trail that is time-correlated to within an organization-defined level of tolerance.	Oracle WebLogic Server 12c Linux v2r2	Unix	AUDIT AND ACCOUNTABILITY
WBLC-02-000081 - Oracle WebLogic must provide the ability to write specified audit record content to an audit log server.	Oracle WebLogic Server 12c Linux v2r2	Unix	AUDIT AND ACCOUNTABILITY
WBLC-02-000081 - Oracle WebLogic must provide the ability to write specified audit record content to an audit log server.	Oracle WebLogic Server 12c Windows v2r2	Windows	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search