Item Search

Name	Audit Name	Plugin	Category
2.1 Ensure 'Ad Hoc Distributed Queries' Server Configuration Option is set to '0'	CIS SQL Server 2008 R2 DB Engine L1 v1.7.0	MS_SQLDB	SYSTEM AND INFORMATION INTEGRITY
2.1 Ensure 'Ad Hoc Distributed Queries' Server Configuration Option is set to '0'	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	SYSTEM AND INFORMATION INTEGRITY
2.1 Ensure 'Ad Hoc Distributed Queries' Server Configuration Option is set to '0'	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	SYSTEM AND INFORMATION INTEGRITY
2.5 Ensure 'Ole Automation Procedures' Server Configuration Option is set to '0'	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	CONFIGURATION MANAGEMENT
3.3 Ensure 'Orphaned Users' are Dropped From SQL Server Databases	CIS Microsoft SQL Server 2019 v1.5.0 L1 AWS RDS	MS_SQLDB	ACCESS CONTROL
3.3 Ensure 'Orphaned Users' are Dropped from SQL Server Databases	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	ACCESS CONTROL
3.3 Ensure 'Orphaned Users' are Dropped From SQL Server Databases	CIS SQL Server 2016 Database L1 AWS RDS v1.4.0	MS_SQLDB	ACCESS CONTROL
3.3 Ensure 'Orphaned Users' are Dropped From SQL Server Databases	CIS SQL Server 2016 Database L1 DB v1.4.0	MS_SQLDB	ACCESS CONTROL
3.3 Ensure 'Orphaned Users' are Dropped From SQL Server Databases	CIS SQL Server 2017 Database L1 DB v1.3.0	MS_SQLDB	ACCESS CONTROL
3.3 Ensure 'Orphaned Users' are Dropped From SQL Server Databases	CIS SQL Server 2022 Database L1 AWS RDS v1.1.0	MS_SQLDB	ACCESS CONTROL
3.3 Ensure 'Orphaned Users' are Dropped From SQL Server Databases	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	ACCESS CONTROL
3.3 Ensure 'Orphaned Users' are Dropped From SQL Server Databases	CIS SQL Server 2022 Database L1 DB v1.1.0	MS_SQLDB	ACCESS CONTROL
3.4 Revoke default permissions for the public role	CIS Sybase 15.0 L1 DB v1.1.0	SybaseDB
3.5 Ensure the SQL Server's MSSQL Service Account is Not an Administrator	CIS SQL Server 2022 Database L1 OS v1.1.0	Windows	ACCESS CONTROL
3.5 Ensure the SQL Server's MSSQL Service Account is Not an Administrator	CIS SQL Server 2014 Database L1 OS v1.5.0	Windows	ACCESS CONTROL
3.6 Ensure the SQL Server's SQLAgent Service Account is Not an Administrator	CIS SQL Server 2016 Database L1 OS v1.4.0	Windows	ACCESS CONTROL
3.6 Ensure the SQL Server's SQLAgent Service Account is Not an Administrator	CIS SQL Server 2012 Database L1 OS v1.6.0	Windows	ACCESS CONTROL
3.6 Ensure the SQL Server's SQLAgent Service Account is Not an Administrator	CIS SQL Server 2014 Database L1 OS v1.5.0	Windows	ACCESS CONTROL
3.7 Ensure the SQL Server's Full-Text Service Account is Not an Administrator	CIS SQL Server 2016 Database L1 OS v1.4.0	Windows	ACCESS CONTROL
3.7 Ensure the SQL Server's Full-Text Service Account is Not an Administrator	CIS SQL Server 2017 Database L1 OS v1.3.0	Windows	ACCESS CONTROL
3.7 Ensure the SQL Server's Full-Text Service Account is Not an Administrator	CIS SQL Server 2012 Database L1 OS v1.6.0	Windows	ACCESS CONTROL
3.7 Ensure the SQL Server's Full-Text Service Account is Not an Administrator	CIS SQL Server 2014 Database L1 OS v1.5.0	Windows	ACCESS CONTROL
5.2.7 Ensure 'AUDIT SYSTEM' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.2.7 Ensure 'AUDIT SYSTEM' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.7 Ensure 'AUDIT SYSTEM' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.2.7 Ensure 'AUDIT SYSTEM' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins'	CIS Microsoft SQL Server 2019 v1.5.0 L1 AWS RDS	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins'	CIS Microsoft SQL Server 2019 v1.5.0 L1 Database Engine	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins'	CIS SQL Server 2022 Database L1 AWS RDS v1.1.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - SUCCESSFUL_LOGIN_GROUP	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - SUCCESSFUL_LOGIN_GROUP	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.9 Ensure DML/DDL Grants Are Limited to Specific Databases and Users	CIS MySQL 5.6 Community Database L1 v2.0.0	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION
5.9 Ensure DML/DDL Grants Are Limited to Specific Databases and Users	CIS MySQL 5.6 Enterprise Database L1 v2.0.0	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION
5.9 Ensure DML/DDL Grants are Limited to Specific Databases and Users	CIS MariaDB 10.6 Database L1 v1.1.0	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION
5.9 Ensure DML/DDL Grants are Limited to Specific Databases and Users	CIS MySQL 8.0 Community Database L1 v1.1.0	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION
5.9 Ensure DML/DDL Grants are Limited to Specific Databases and Users	CIS MySQL 8.4 Enterprise v1.0.0 L1 Database	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION
6.7 Ensure That Cloud SQL Database Instances Are Configured With Automated Backups	CIS Google Cloud Platform v3.0.0 L1	GCP	CONTINGENCY PLANNING
AIX7-00-002057 - AIX audit logs must be rotated daily.	DISA STIG AIX 7.x v3r1	Unix	CONFIGURATION MANAGEMENT
DB2X-00-001800 - DB2 must include additional, more detailed, organization-defined information in the audit records for audit events identified by type, location, or subject.	DISA STIG IBM DB2 v10.5 LUW v2r1 Database	IBM_DB2DB	AUDIT AND ACCOUNTABILITY
DISA_STIG_Crunchy_Data_PostgreSQL_v3r1_OS_Linux.audit from DISA Crunchy Data PostgreSQL v3r1 STIG	DISA STIG Crunchy Data PostgreSQL OS v3r1	Unix
DISA_STIG_Oracle_MySQL_8.0_v2r2_Database.audit from DISA Oracle MySQL 8.0 v2r2 STIG	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB
DISA_STIG_Oracle_MySQL_8.0_v2r2_OS_Linux.audit from DISA Oracle MySQL 8.0 v2r2 STIG	DISA Oracle MySQL 8.0 v2r2 OS Linux	Unix
Ensure that the 'local-infile' database flag for a Cloud Databases Mysql instance is set to '0'	Tenable Best Practices RackSpace v2.0.0	Rackspace	SYSTEM AND COMMUNICATIONS PROTECTION
GEN002860 - Audit logs must be rotated daily.	DISA STIG AIX 6.1 v1r14	Unix	CONFIGURATION MANAGEMENT
O112-C2-006900 - The DBMS must allow designated organizational personnel to select which auditable events are to be audited by the database.	DISA STIG Oracle 11.2g v2r5 Database	OracleDB	AUDIT AND ACCOUNTABILITY
O121-C2-008000 - The DBMS must include organization-defined additional, more detailed information in the audit records for audit events identified by type, location, or subject.	DISA STIG Oracle 12c v3r2 Database	OracleDB	AUDIT AND ACCOUNTABILITY
SQL2-00-010400 - SQL Server auditing configuration maximum file size must be configured to reduce the likelihood of storage capacity being exceeded, while meeting organization-defined auditing requirements - 'max_size'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-018100 - SQL Server backup and restoration files must be protected from unauthorized access.	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	CONTINGENCY PLANNING
SQL6-D0-011900 - SQL Server must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.	DISA STIG SQL Server 2016 Instance DB Audit v3r4	MS_SQLDB	CONFIGURATION MANAGEMENT
SQL6-D0-015500 - SQL Server must generate audit records for all direct access to the database(s) - audits.	DISA STIG SQL Server 2016 Instance DB Audit v3r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search