Item Search

Name	Audit Name	Plugin	Category
1.58 WN22-AU-000020	CIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT II	Windows	AUDIT AND ACCOUNTABILITY
1.62 WN10-AU-000060	CIS Microsoft Windows 10 STIG v1.0.0 CAT II	Windows	AUDIT AND ACCOUNTABILITY
1.169 WN16-DC-000240	CIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT II	Windows	AUDIT AND ACCOUNTABILITY
1.170 WN19-DC-000240	CIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT II	Windows	AUDIT AND ACCOUNTABILITY
1.170 WN22-DC-000240	CIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT II	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
1.171 WN22-DC-000250	CIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT II	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
1.172 WN19-DC-000260	CIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT II	Windows	AUDIT AND ACCOUNTABILITY
1.172 WN22-DC-000260	CIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT II	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.10.4.1 (L1) Ensure 'Include command line in process creation events' is set to 'Enabled'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
18.9.3.1 (L1) Ensure 'Include command line in process creation events' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.9.3.1 (L1) Ensure 'Include command line in process creation events' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.9.3.1 (L1) Ensure 'Include command line in process creation events' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.9.3.1 (L1) Ensure 'Include command line in process creation events' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
18.9.3.1 (L1) Ensure 'Include command line in process creation events' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
18.9.3.1 Ensure 'Include command line in process creation events' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
WN10-AU-000060 - The system must be configured to audit Logon/Logoff - Group Membership successes.	DISA Microsoft Windows 10 STIG v3r6	Windows	AUDIT AND ACCOUNTABILITY
WN10-AU-000581 - Windows 10 must be configured to audit file system failures.	DISA Microsoft Windows 10 STIG v3r6	Windows	AUDIT AND ACCOUNTABILITY
WN10-AU-000582 - Windows 10 must be configured to audit file system successes.	DISA Microsoft Windows 10 STIG v3r6	Windows	AUDIT AND ACCOUNTABILITY
WN10-AU-000583 - Windows 10 must be configured to audit handle manipulation failures.	DISA Microsoft Windows 10 STIG v3r6	Windows	AUDIT AND ACCOUNTABILITY
WN10-AU-000584 - Windows 10 must be configured to audit handle manipulation successes.	DISA Microsoft Windows 10 STIG v3r6	Windows	AUDIT AND ACCOUNTABILITY
WN10-AU-000585 - Windows 10 must have command line process auditing events enabled for failures.	DISA Microsoft Windows 10 STIG v3r6	Windows	ACCESS CONTROL
WN11-AU-000060 - The system must be configured to audit Logon/Logoff - Group Membership successes.	DISA Microsoft Windows 11 STIG v2r7	Windows	AUDIT AND ACCOUNTABILITY
WN11-AU-000065 - The system must be configured to audit Logon/Logoff - Logoff successes.	DISA Microsoft Windows 11 STIG v2r7	Windows	ACCESS CONTROL
WN11-AU-000582 - Windows 11 must be configured to audit file system successes.	DISA Microsoft Windows 11 STIG v2r7	Windows	AUDIT AND ACCOUNTABILITY
WN11-AU-000584 - Windows 11 must be configured to audit handle manipulation successes.	DISA Microsoft Windows 11 STIG v2r7	Windows	AUDIT AND ACCOUNTABILITY
WN16-AU-000160 - Windows Server 2016 must be configured to audit Detailed Tracking - Plug and Play Events successes.	DISA Microsoft Windows Server 2016 STIG v2r10	Windows	AUDIT AND ACCOUNTABILITY
WN16-AU-000240 - Windows Server 2016 must be configured to audit Logon/Logoff - Group Membership successes.	DISA Microsoft Windows Server 2016 STIG v2r10	Windows	AUDIT AND ACCOUNTABILITY
WN19-AU-000130 - Windows Server 2019 must be configured to audit Detailed Tracking - Plug and Play Events successes.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	AUDIT AND ACCOUNTABILITY
WN19-AU-000170 - Windows Server 2019 must be configured to audit Logon/Logoff - Group Membership successes.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	AUDIT AND ACCOUNTABILITY
WN19-AU-000180 - Windows Server 2019 must be configured to audit logoff successes.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
WN19-AU-000190 - Windows Server 2019 must be configured to audit logon successes.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN19-AU-000200 - Windows Server 2019 must be configured to audit logon failures.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN19-AU-000585 - Windows Server 2019 must be configured to audit registry failures.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	AUDIT AND ACCOUNTABILITY
WN19-AU-000586 - Windows Server 2019 must be configured to audit registry successes.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	AUDIT AND ACCOUNTABILITY
WN22-AU-000130 - Windows Server 2022 must be configured to audit Detailed Tracking - Plug and Play Events successes.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	AUDIT AND ACCOUNTABILITY
WN22-AU-000170 - Windows Server 2022 must be configured to audit Logon/Logoff - Group Membership successes.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	AUDIT AND ACCOUNTABILITY
WN22-AU-000180 - Windows Server 2022 must be configured to audit logoff successes.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	AUDIT AND ACCOUNTABILITY
WN22-AU-000200 - Windows Server 2022 must be configured to audit logon failures.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN22-AU-000585 - Windows Server 2022 must be configured to audit registry failures.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	AUDIT AND ACCOUNTABILITY
WN22-AU-000586 - Windows Server 2022 must be configured to audit registry successes.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	AUDIT AND ACCOUNTABILITY
WN25-AU-000130 - Windows Server 2025 must be configured to audit Detailed Tracking - Plug and Play Events successes.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	AUDIT AND ACCOUNTABILITY
WN25-AU-000170 - Windows Server 2025 must be configured to audit Logon/Logoff - Group Membership successes.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	AUDIT AND ACCOUNTABILITY
WN25-AU-000180 - Windows Server 2025 must be configured to audit logoff successes.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	AUDIT AND ACCOUNTABILITY
WN25-AU-000190 - Windows Server 2025 must be configured to audit logon successes.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN25-AU-000200 - Windows Server 2025 must be configured to audit logon failures.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN25-AU-000585 - Windows Server 2025 must be configured to audit registry failures.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	AUDIT AND ACCOUNTABILITY
WN25-AU-000586 - Windows Server 2025 must be configured to audit registry successes.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search