1.1.2 Ensure 'Enable Log on High DP Load' is enabled | CIS Palo Alto Firewall 8 Benchmark L1 v1.0.0 | Palo_Alto | AUDIT AND ACCOUNTABILITY |
2.4.3 (L2) Ensure Microsoft Defender for Cloud Apps is enabled and configured | CIS Microsoft 365 Foundations v5.0.0 L2 E5 | microsoft_azure | SYSTEM AND INFORMATION INTEGRITY |
3.2 Ensure persistent logging is configured for all ESXi hosts | CIS VMware ESXi 6.5 v1.0.0 Level 1 | VMware | AUDIT AND ACCOUNTABILITY |
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - pgaudit installed | CIS PostgreSQL 9.5 DB v1.1.0 | PostgreSQLDB | AUDIT AND ACCOUNTABILITY |
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - audit.log | CIS PostgreSQL 11 DB v1.0.0 | PostgreSQLDB | AUDIT AND ACCOUNTABILITY |
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - pgaudit installed | CIS PostgreSQL 10 DB v1.0.0 | PostgreSQLDB | AUDIT AND ACCOUNTABILITY |
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - pgaudit installed | CIS PostgreSQL 9.6 DB v1.0.0 | PostgreSQLDB | AUDIT AND ACCOUNTABILITY |
3.3 Ensure remote logging is configured for ESXi hosts | CIS VMware ESXi 6.5 v1.0.0 Level 1 | VMware | AUDIT AND ACCOUNTABILITY |
3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.all.log_martians = 1' | CIS Fedora 19 Family Linux Server L1 v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.all.log_martians' (sysctl.conf/sysctl.d) | CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.default.log_martians = 1' | CIS Fedora 19 Family Linux Server L1 v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.default.log_martians = 1' | CIS Fedora 19 Family Linux Workstation L1 v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.default.log_martians' (sysctl.conf/sysctl.d) | CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
3.3.4 Ensure suspicious packets are logged - files net.ipv4.conf.default.log_martians = 1 | CIS Debian Family Server L1 v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
3.3.4 Ensure suspicious packets are logged - sysctl net.ipv4.conf.default.log_martians | CIS Fedora 19 Family Linux Workstation L1 v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.1.1 Ensure auditd is installed | CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.1.1 Ensure auditd is installed | CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.1.1 Ensure auditd is installed - audit | CIS Red Hat 6 Server L2 v3.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.1.1 Ensure auditd is installed - audit-libs | CIS Red Hat 6 Server L2 v3.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.1.1 Ensure auditd is installed - audit-libs | CIS Fedora 19 Family Linux Server L2 v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.1.1 Ensure auditd is installed - audit-libs | CIS Red Hat 6 Workstation L2 v3.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.1.3 Ensure auditing for processes that start prior to auditd is enabled | CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.2.4 Ensure audit_backlog_limit is sufficient | CIS CentOS 6 Server L2 v3.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.2.4 Ensure audit_backlog_limit is sufficient | CIS CentOS 6 Workstation L2 v3.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.2.4 Ensure audit_backlog_limit is sufficient | CIS Oracle Linux 6 Server L2 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.3 Ensure auditing for processes that start prior to auditd is enabled | CIS Aliyun Linux 2 L2 v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.3 Ensure auditing for processes that start prior to auditd is enabled | CIS Debian 9 Server L2 v1.0.1 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.3 Ensure auditing for processes that start prior to auditd is enabled | CIS Debian 9 Workstation L2 v1.0.1 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.17 Ensure the audit configuration is immutable | CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.1.17 Ensure the audit configuration is immutable | CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.2.1.1 Ensure rsyslog is installed | CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.2.1.3 Ensure logging is configured - '*.*;mail.none;news.none -/var/log/messages' | CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.2.1.3 Ensure logging is configured - '*.*;mail.none;news.none -/var/log/messages' | CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.2.1.3 Ensure logging is configured - '*.=warning;*.=err -/var/log/warn' | CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.2.1.3 Ensure logging is configured - 'local0,local1.* -/var/log/localmessages' | CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.2.1.3 Ensure logging is configured - 'local2,local3.* -/var/log/localmessages' | CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.2.1.3 Ensure logging is configured - 'mail.info -/var/log/mail.info' | CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.2.1.3 Ensure logging is configured - 'mail.warning -/var/log/mail.warn' | CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.2.1.3 Ensure logging is configured - 'news.notice -/var/log/news/news.notice' | CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
4.2.2.3 Ensure journald is configured to write logfiles to persistent disk | CIS Fedora 19 Family Linux Server L1 v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
5.1 Ensure that system activity is audited | CIS MongoDB 4 L1 OS Linux v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
5.1 Ensure that system activity is audited | CIS MongoDB 4 L1 OS Windows v1.0.0 | Windows | AUDIT AND ACCOUNTABILITY |
5.3.2 Enable auditd Service | CIS Red Hat Enterprise Linux 5 L2 v2.2.1 | Unix | AUDIT AND ACCOUNTABILITY |
5.3.6 Ensure SSH LogLevel is appropriate | CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
5.3.6 Ensure SSH LogLevel is appropriate | CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
5.3.6 Ensure SSH LogLevel is appropriate - sshd | CIS CentOS 6 Server L1 v3.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
5.3.6 Ensure SSH LogLevel is appropriate - sshd | CIS CentOS 6 Workstation L1 v3.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
5.3.6 Ensure SSH LogLevel is appropriate - sshd | CIS Oracle Linux 6 Workstation L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
5.3.6 Ensure SSH LogLevel is appropriate - sshd_config | CIS Oracle Linux 6 Workstation L1 v2.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
5.6 Ensure alerts are enabled for malicious files detected by WildFire - log-type 'wildfire' | CIS Palo Alto Firewall 9 v1.1.0 L1 | Palo_Alto | SYSTEM AND INFORMATION INTEGRITY |