Item Search

Name	Audit Name	Plugin	Category
2.11 Ensure SQL Server is configured to use non-standard ports	CIS SQL Server 2017 Database L1 DB v1.3.0	MS_SQLDB	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.11 Ensure SQL Server is configured to use non-standard ports	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	SYSTEM AND INFORMATION INTEGRITY
3.1.13 Ensure the correct SQL statements generating errors are recorded	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.14 Ensure the correct SQL statements generating errors are recorded	CIS PostgreSQL 9.5 DB v1.1.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2 Ensure CONNECT permissions on the 'guest' user is Revoked within all SQL Server databases	CIS SQL Server 2016 Database L1 DB v1.4.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.2 Ensure CONNECT permissions on the 'guest' user is Revoked within all SQL Server databases	CIS SQL Server 2017 Database L1 DB v1.3.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.4 Ensure SQL Authentication is not used in contained databases	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	IDENTIFICATION AND AUTHENTICATION
3.6 Ensure the SQL Server's SQLAgent Service Account is Not an Administrator	CIS Microsoft SQL Server 2022 v1.2.1 L1 AWS RDS	MS_SQLDB	ACCESS CONTROL
3.6 Ensure the SQL Server's SQLAgent Service Account is Not an Administrator	CIS Microsoft SQL Server 2022 v1.2.1 L1 Database Engine	MS_SQLDB	ACCESS CONTROL
4.3 Ensure 'CHECK_POLICY' Option is set to 'ON' for All SQL Authenticated Logins	CIS SQL Server 2017 Database L1 AWS RDS v1.3.0	MS_SQLDB	IDENTIFICATION AND AUTHENTICATION
4.3 Ensure 'CHECK_POLICY' Option is set to 'ON' for All SQL Authenticated Logins	CIS SQL Server 2016 Database L1 AWS RDS v1.4.0	MS_SQLDB	IDENTIFICATION AND AUTHENTICATION
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins'	CIS SQL Server 2016 Database L1 AWS RDS v1.4.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
6.2 Ensure 'CLR Assembly Permission Set' is set to 'SAFE_ACCESS' for All CLR Assemblies	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	CONFIGURATION MANAGEMENT
7.5 Ensure Databases are Encrypted with TDE	CIS SQL Server 2017 Database L2 DB v1.3.0	MS_SQLDB	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
CD12-00-001400 - PostgreSQL must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	DISA STIG Crunchy Data PostgreSQL OS v3r1	Unix	IDENTIFICATION AND AUTHENTICATION
SQL2-00-007400 - SQL Server must not grant users direct access to the Alter any server audit permission.	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - APPLICATION_ROLE_CHANGE_PASSWORD_GROUP	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_OBJECT_OWNERSHIP_CHANGE_GROUP	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - DATABASE_ROLE_MEMBER_CHANGE_GROUP	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 46	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 90	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 107	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 116	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 131	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 132	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 135	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 164	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 170	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 176	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - Event ID 178	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_OBJECT_CHANGE_GROUP	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_PRINCIPAL_CHANGE_GROUP	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - SERVER_PRINCIPAL_IMPERSONATION_GROUP	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-011200 - SQL Server must generate Trace or Audit records for organization-defined auditable events - TRACE_CHANGE_GROUP	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-015610 - In a database owned by [sa], or by any other login having administrative privileges at the instance level, the database property TRUSTWORTHY must be OFF.	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	CONFIGURATION MANAGEMENT
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - BACKUP_RESTORE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - DATABASE_PRINCIPAL_IMPERSONATION_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - Event ID 47	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - Event ID 83	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - Event ID 84	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - Event ID 164	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - Event ID 170	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - Event ID 173	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - LOGIN_CHANGE_PASSWORD_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - LOGOUT_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - SERVER_OBJECT_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - SERVER_OBJECT_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037700 - SQL Server must generate Trace or Audit records for all privileged activities or other system-level access - SERVER_PRINCIPAL_IMPERSONATION_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL6-D0-010000 - Access to database files must be limited to relevant processes and to authorized, administrative users.	DISA MS SQL Server 2016 Instance STIG v3r6 Windows	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
SQLI-22-009900 - SQL Server must prevent unauthorized and unintended information transfer via Instant File Initialization (IFI).	DISA Microsoft SQL Server 2022 Instance STIG v1r3 MS_SQLDB	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search