Item Search

Name	Audit Name	Plugin	Category
3.2 Ensure persistent logging is configured for all ESXi hosts	CIS VMware ESXi 6.5 v1.0.0 Level 1	VMware	AUDIT AND ACCOUNTABILITY
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - pgaudit installed	CIS PostgreSQL 9.5 DB v1.1.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - audit.log	CIS PostgreSQL 9.5 DB v1.1.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - audit.log	CIS PostgreSQL 11 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - pgaudit installed	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.3 Ensure remote logging is configured for ESXi hosts	CIS VMware ESXi 6.5 v1.0.0 Level 1	VMware	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.all.log_martians = 1'	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.default.log_martians = 1'	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.default.log_martians = 1'	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.default.log_martians' (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - 'sysctl net.ipv4.conf.default.log_martians'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - 'sysctl net.ipv4.conf.default.log_martians'	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - files net.ipv4.conf.default.log_martians = 1	CIS Debian Family Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - net.ipv4.conf.all.log_martians = 1	CIS Debian Family Workstation L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - net.ipv4.conf.default.log_martians = 1	CIS Debian Family Workstation L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - sysctl net.ipv4.conf.default.log_martians	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - sysctl net.ipv4.conf.default.log_martians	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.1 Ensure auditd is installed	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.1 Ensure auditd is installed	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.1 Ensure auditd is installed	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.1 Ensure auditd is installed - audit-libs	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.1 Ensure auditd is installed - audit-libs	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.1 Ensure auditd is installed - auditd	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.2 Ensure auditd service is enabled	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.2 Ensure auditd service is enabled	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.2 Ensure auditd service is enabled and running - running	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.2 Ensure auditd service is enabled and running - running	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.3 Ensure auditing for processes that start prior to auditd is enabled	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.3 Ensure auditing for processes that start prior to auditd is enabled	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.3 Ensure auditing for processes that start prior to auditd is enabled	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.4 Ensure audit_backlog_limit is sufficient	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.4 Ensure audit_backlog_limit is sufficient	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.4 Ensure audit_backlog_limit is sufficient	CIS CentOS 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.4 Ensure audit_backlog_limit is sufficient	CIS CentOS 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.3 Ensure auditing for processes that start prior to auditd is enabled	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.3 Ensure auditing for processes that start prior to auditd is enabled	CIS Debian 9 Server L2 v1.0.1	Unix	AUDIT AND ACCOUNTABILITY
4.1.3 Ensure auditing for processes that start prior to auditd is enabled	CIS Debian 9 Workstation L2 v1.0.1	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - '.=warning;.=err -/var/log/warn'	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - 'local0,local1.* -/var/log/localmessages'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - 'local2,local3.* -/var/log/localmessages'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.3 Ensure journald is configured to write logfiles to persistent disk	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.3 Ensure journald is configured to write logfiles to persistent disk	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.3 Ensure journald is configured to write logfiles to persistent disk	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.1 Ensure that system activity is audited	CIS MongoDB 5 L1 OS Windows v1.2.0	Windows	AUDIT AND ACCOUNTABILITY
5.2.5 Ensure SSH LogLevel is appropriate	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.3.3 Keep All Auditing Information	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
5.3.6 Ensure SSH LogLevel is appropriate - sshd	CIS CentOS 6 Server L1 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.3.6 Ensure SSH LogLevel is appropriate - sshd	CIS CentOS 6 Workstation L1 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.5 Ensure alerts are enabled for malicious files detected by WildFire	CIS Palo Alto Firewall 11 v1.1.0 L1	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
5.6 Ensure alerts are enabled for malicious files detected by WildFire - log-type 'wildfire'	CIS Palo Alto Firewall 9 v1.1.0 L1	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search