Item Search

Name	Audit Name	Plugin	Category
APPL-13-001002 - The macOS system must monitor remote access methods and generate audit records when successful/unsuccessful attempts to access/modify privileges occur.	DISA STIG Apple macOS 13 v1r5	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
CISC-ND-001250 - The Cisco switch must be configured to generate log records when administrator privileges are deleted.	DISA Cisco IOS XE Switch NDM STIG v3r4	Cisco	AUDIT AND ACCOUNTABILITY
CISC-ND-001260 - The Cisco router must be configured to generate audit records when successful/unsuccessful logon attempts occur.	DISA Cisco IOS XE Router NDM STIG v3r4	Cisco	AUDIT AND ACCOUNTABILITY
CISC-ND-001270 - The Cisco router must be configured to generate log records for privileged activities.	DISA Cisco IOS Router NDM STIG v3r4	Cisco	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSMODULEAUTH	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSPASSTHRUAUTH	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSROLEAUTH	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSROUTINEAUTH	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-000800 - DB2 must generate audit records when privileges/permissions are retrieved - table SYSIBM.SYSUSERAUTH	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - database policies	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSCOLAUTH	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSLIBRARYAUTH	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSSECURITYPOLICYEXEMPTIONS	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-000900 - DB2 must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur - SYSIBM.SYSWORKLOADAUTH	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-009700 - DB2 must generate audit records when unsuccessful attempts to access security objects occur	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-009800 - DB2 must generate audit records when categorized information (e.g., classification levels/security levels) are accessed	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-010100 - DB2 must generate audit records when unsuccessful attempts to add privileges/permissions occur	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-010200 - DB2 must generate audit records when privileges/permissions are modified	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-010500 - DB2 must generate audit records when unsuccessful attempts to modify security objects occur	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-010900 - DB2 must generate audit records when unsuccessful attempts to delete privileges/permissions occur	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-011300 - DB2 must generate audit records when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occur	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-011900 - DB2 must generate audit records when concurrent logons/connections by the same user from different workstations occur	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DB2X-00-012200 - DB2 must generate audit records for all direct access to the database(s)	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
JUSX-DM-000044 - The Juniper SRX Services Gateway must generate log records when privileged commands are executed.	DISA Juniper SRX Services Gateway NDM v3r3	Juniper	AUDIT AND ACCOUNTABILITY
OL07-00-030819 - The Oracle Linux operating system must audit all uses of the create_module syscall.	DISA Oracle Linux 7 STIG v3r3	Unix	AUDIT AND ACCOUNTABILITY
OL07-00-030840 - The Oracle Linux operating system must audit all uses of the kmod command.	DISA Oracle Linux 7 STIG v3r3	Unix	AUDIT AND ACCOUNTABILITY
SQL4-00-035900 - Trace or Audit records must be generated when unsuccessful attempts to access categorized information (e.g., classification levels/security levels) occur.	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 42	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 82	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 85	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - Event ID 90	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects - SCHEMA_OBJECT_ACCESS_GROUP	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036200 - SQL Server must generate Trace or Audit records when privileges/permissions are modified via locally-defined security objects.	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL6-D0-013200 - SQL Server must generate audit records when successful and unsuccessful attempts to access categorized information (e.g., classification levels/security levels) occur.	DISA STIG SQL Server 2016 Instance DB Audit v3r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL6-D0-014800 - SQL Server must generate audit records when successful and unsuccessful logons or connection attempts occur.	DISA STIG SQL Server 2016 Instance DB Audit v3r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL6-D0-014900 - SQL Server must generate audit records for all privileged activities or other system-level access.	DISA STIG SQL Server 2016 Instance DB Audit v3r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL6-D0-015200 - SQL Server must generate audit records when concurrent logons/connections by the same user from different workstations occur.	DISA STIG SQL Server 2016 Instance DB Audit v3r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
WBLC-01-000030 - Oracle WebLogic must provide access logging that ensures users who are granted a privileged role (or roles) have their privileged activity logged.	Oracle WebLogic Server 12c Linux v2r2	Unix	AUDIT AND ACCOUNTABILITY
WBLC-02-000069 - Oracle WebLogic must generate audit records for the DoD-selected list of auditable events - HTTP Access Log	Oracle WebLogic Server 12c Linux v2r2	Unix	AUDIT AND ACCOUNTABILITY
WN10-AU-000005 - The system must be configured to audit Account Logon - Credential Validation failures.	DISA Microsoft Windows 10 STIG v3r4	Windows	AUDIT AND ACCOUNTABILITY
WN10-AU-000084 - Windows 10 must be configured to audit Object Access - Other Object Access Events failures.	DISA Microsoft Windows 10 STIG v3r4	Windows	AUDIT AND ACCOUNTABILITY
WN10-AU-000107 - The system must be configured to audit Policy Change - Authorization Policy Change successes.	DISA Microsoft Windows 10 STIG v3r4	Windows	AUDIT AND ACCOUNTABILITY
WN22-AU-000260 - Windows Server 2022 must be configured to audit Policy Change - Audit Policy Change successes.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN22-AU-000270 - Windows Server 2022 must be configured to audit Policy Change - Audit Policy Change failures.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN22-AU-000290 - Windows Server 2022 must be configured to audit Policy Change - Authorization Policy Change successes.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN22-AU-000330 - Windows Server 2022 must be configured to audit System - IPsec Driver failures.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN22-AU-000360 - Windows Server 2022 must be configured to audit System - Security State Change successes.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN22-DC-000190 - Windows Server 2022 Active Directory Infrastructure object must be configured with proper audit settings.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN22-DC-000200 - Windows Server 2022 Active Directory Domain Controllers Organizational Unit (OU) object must be configured with proper audit settings.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN22-DC-000260 - Windows Server 2022 must be configured to audit DS Access - Directory Service Changes successes.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search