Item Search

Name	Audit Name	Plugin	Category
2.3.11.12 (L1) Ensure 'Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers' is set to 'Audit all' or higher	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
4.1.3.10 Ensure successful file system mounts are collected	CIS Fedora 28 Family Linux Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.21 Ensure the running and on disk configuration is the same	CIS Fedora 28 Family Linux Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.10 Ensure successful file system mounts are collected	CIS Ubuntu Linux 20.04 LTS Server L2 v2.0.1	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.10 Ensure successful file system mounts are collected	CIS Rocky Linux 8 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.21 Ensure the running and on disk configuration is the same	CIS Red Hat Enterprise Linux 7 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.21 Ensure the running and on disk configuration is the same	CIS Rocky Linux 8 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.21 Ensure the running and on disk configuration is the same	CIS Rocky Linux 8 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.10 Ensure successful file system mounts are collected	CIS Red Hat Enterprise Linux 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.21 Ensure the running and on disk configuration is the same	CIS Red Hat Enterprise Linux 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.21 Ensure the running and on disk configuration is the same	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.21 Ensure the running and on disk configuration is the same	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.6 Ensure ALL Events are Audited	CIS Oracle MySQL Enterprise Edition 8.0 v1.4.0 L2 Database	MySQLDB	AUDIT AND ACCOUNTABILITY
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.2.3 (L1) Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.2.6 (L1) Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.2.7 Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	AUDIT AND ACCOUNTABILITY
17.2.7 Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit PNP Activity' is set to include 'Success'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 Ensure 'Audit PNP Activity' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 Ensure 'Audit PNP Activity' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.5.2 Ensure 'Audit Group Membership' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	AUDIT AND ACCOUNTABILITY
17.6.3 (L1) Ensure 'Audit Other Object Access Events' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.6.3 Ensure 'Audit Other Object Access Events' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	AUDIT AND ACCOUNTABILITY
17.6.3 Ensure 'Audit Other Object Access Events' is set to 'Success and Failure'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.6.4 (L1) Ensure 'Audit Removable Storage' is set to 'Success and Failure'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.6.4 (L1) Ensure 'Audit Removable Storage' is set to 'Success and Failure'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.7.5 Ensure 'Audit MPSSVC Rule-Level Policy Change' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	AUDIT AND ACCOUNTABILITY
17.7.6 Ensure 'Audit Other Policy Change Events' is set to include 'Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	AUDIT AND ACCOUNTABILITY
17.8.1 Ensure 'Audit Sensitive Privilege Use' is set to 'Success and Failure'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.9.1 (L1) Ensure 'Audit IPsec Driver' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.9.1 (L1) Ensure 'Audit IPsec Driver' is set to 'Success and Failure'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.9.1 Ensure 'Audit IPsec Driver' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.9.1 Ensure 'Audit IPsec Driver' is set to 'Success and Failure'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.9.2 (L1) Ensure 'Audit Other System Events' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.9.2 (L1) Ensure 'Audit Other System Events' is set to 'Success and Failure'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.9.2 (L1) Ensure 'Audit Other System Events' is set to 'Success and Failure'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.9.2 Ensure 'Audit Other System Events' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	AUDIT AND ACCOUNTABILITY
17.9.3 (L1) Ensure 'Audit Security State Change' is set to include 'Success'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
17.9.4 (L1) Ensure 'Audit Security System Extension' is set to include 'Success'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.9.4 (L1) Ensure 'Audit Security System Extension' is set to include 'Success'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.9.5 (L1) Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.9.5 (L1) Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.9.5 (L1) Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.9.5 Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	AUDIT AND ACCOUNTABILITY
18.6.7.1 (L1) Ensure 'Audit client does not support encryption' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search