Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.5.3 Ensure the operating system enables Linux audit logging of the USBGuard daemonCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIGUnix

AUDIT AND ACCOUNTABILITY

4.1.1.3 Ensure auditing for processes that start prior to auditd is enabledCIS Amazon Linux 2 STIG v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

4.2.1.1 Ensure rsyslog is installedCIS Amazon Linux 2 STIG v2.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

4.2.2.3 Ensure journald is configured to write logfiles to persistent diskCIS Amazon Linux 2 STIG v2.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

5.1.1.2 Ensure rsyslog service is enabledCIS Amazon Linux 2023 v1.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

5.1.2.1.2 Ensure systemd-journal-remote is configuredCIS Amazon Linux 2023 v1.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

5.1.2.1.3 Ensure systemd-journal-remote is enabledCIS Amazon Linux 2023 v1.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

5.1.2.2 Ensure journald service is enabledCIS Amazon Linux 2023 v1.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

5.1.2.6 Ensure journald log rotation is configured per site policyCIS Amazon Linux 2023 v1.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.1.1.2.1 Ensure systemd-journal-remote is installedCIS Ubuntu Linux 22.04 LTS v3.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.1.1.2.3 Ensure systemd-journal-upload is enabled and activeCIS Ubuntu Linux 22.04 LTS v3.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.1.2.1.1 Ensure systemd-journal-remote is installedCIS Linux Mint 22 v1.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.1.1.3 Ensure journald log file rotation is configuredCIS Red Hat Enterprise Linux 8 v4.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.1.1.3 Ensure journald log file rotation is configuredCIS Oracle Linux 8 v4.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.1.1.3 Ensure journald log file rotation is configuredCIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.1.2.1 Ensure systemd-journal-remote is installedCIS Rocky Linux 8 v3.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.1.2.1 Ensure systemd-journal-remote is installedCIS Oracle Linux 8 v4.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.1.2.1 Ensure systemd-journal-remote is installedCIS Oracle Linux 8 v4.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.1.2.1 Ensure systemd-journal-remote is installedCIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.1.2.2 Ensure systemd-journal-remote authentication is configuredCIS AlmaLinux OS 8 v4.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.1.2.2 Ensure systemd-journal-remote authentication is configuredCIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.1.2.2 Ensure systemd-journal-remote authentication is configuredCIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.1.2.3 Ensure systemd-journal-upload is enabled and activeCIS Red Hat Enterprise Linux 8 v4.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.1.2.3 Ensure systemd-journal-upload is enabled and activeCIS Rocky Linux 8 v3.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.1.3 Ensure journald log file rotation is configuredCIS Rocky Linux 10 v1.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.1.3 Ensure journald log file rotation is configuredCIS Rocky Linux 10 v1.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.1.3 Ensure journald log file rotation is configuredCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.2.1.1 Ensure systemd-journal-remote is installedCIS AlmaLinux OS 9 v2.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.2.1.1 Ensure systemd-journal-remote is installedCIS Red Hat Enterprise Linux 10 v1.0.1 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.2.1.1 Ensure systemd-journal-remote is installedCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.2.1.2 Ensure systemd-journal-upload authentication is configuredCIS Red Hat Enterprise Linux 10 v1.0.1 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.2.1.2 Ensure systemd-journal-upload authentication is configuredCIS AlmaLinux OS 10 v1.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.2.1.3 Ensure systemd-journal-upload is enabled and activeCIS AlmaLinux OS 9 v2.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.2.1.3 Ensure systemd-journal-upload is enabled and activeCIS Red Hat Enterprise Linux 10 v1.0.1 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.2.1.3 Ensure systemd-journal-upload is enabled and activeCIS Rocky Linux 10 v1.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.2.5 Ensure rsyslog logging is configuredCIS Red Hat Enterprise Linux 8 v4.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.2.5 Ensure rsyslog logging is configuredCIS Oracle Linux 8 v4.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.2.5 Ensure rsyslog logging is configuredCIS AlmaLinux OS 8 v4.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.3.1 Ensure rsyslog is installedCIS Rocky Linux 10 v1.0.0 L1 WorkstationUnix

CONFIGURATION MANAGEMENT

6.2.3.5 Ensure rsyslog logging is configuredCIS AlmaLinux OS 9 v2.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.3.5 Ensure rsyslog logging is configuredCIS Red Hat Enterprise Linux 10 v1.0.1 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.3.5 Ensure rsyslog logging is configuredCIS Rocky Linux 10 v1.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.2.3.5 Ensure rsyslog logging is configuredCIS AlmaLinux OS 10 v1.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.3.5 Ensure rsyslog logging is configuredCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.3.3.13 Ensure file deletion events by users are collectedCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIGUnix

AUDIT AND ACCOUNTABILITY

6.3.3.15 Ensure successful and unsuccessful attempts to use the chcon command are collectedCIS Red Hat Enterprise Linux 8 STIG v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.3.3.27 Ensure successful and unsuccessful attempts to use the newgrp command are collectedCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIGUnix

AUDIT AND ACCOUNTABILITY

6.3.3.30 Ensure successful and unsuccessful attempts to use the unix_chkpwd command are collectedCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIGUnix

AUDIT AND ACCOUNTABILITY

6.3.3.34 Ensure successful and unsuccessful attempts to use the semanage command are collectedCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIGUnix

AUDIT AND ACCOUNTABILITY

6.3.3.41 Ensure successful and unsuccessful attempts to use the passwd command are collectedCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIGUnix

AUDIT AND ACCOUNTABILITY