Item Search

Name	Audit Name	Plugin	Category
17.1.1 (L1) Ensure 'Audit Credential Validation' is set to 'Success and Failure'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.1.1 (L1) Ensure 'Audit Credential Validation' is set to 'Success and Failure'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.1.1 (L1) Ensure 'Audit Credential Validation' is set to 'Success and Failure'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	AUDIT AND ACCOUNTABILITY
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.2.2 (L1) Ensure 'Audit Security Group Management' is set to include 'Success'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	AUDIT AND ACCOUNTABILITY
17.2.3 Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.2.3 Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.2.5 (L1) Ensure 'Audit Security Group Management' is set to include 'Success'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.2.5 (L1) Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.2.6 (L1) Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.2.6 (L1) Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.4.2 Ensure 'Audit Directory Service Access' is set to include 'Success and Failure' (STIG DC only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.5.1 (L1) Ensure 'Audit Account Lockout' is set to include 'Failure'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.5.1 (L1) Ensure 'Audit Account Lockout' is set to include 'Failure'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.5.1 (L1) Ensure 'Audit Account Lockout' is set to include 'Failure'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	AUDIT AND ACCOUNTABILITY
17.5.1 (L1) Ensure 'Audit Account Lockout' is set to include 'Success and Failure'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.5.1 Ensure 'Audit Account Lockout' is set to include 'Failure'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.5.2 Ensure 'Audit Logoff' is set to include 'Success'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.5.3 Ensure 'Audit Logon' is set to 'Success and Failure'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.5.4 (L1) Ensure 'Audit Logon' is set to 'Success and Failure'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	AUDIT AND ACCOUNTABILITY
17.5.5 Ensure 'Audit Special Logon' is set to include 'Success'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.5.6 (L1) Ensure 'Audit Special Logon' is set to include 'Success'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.6.1 (L1) Ensure 'Audit Detailed File Share' is set to include 'Failure'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.6.1 (L1) Ensure 'Audit Detailed File Share' is set to include 'Failure'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	AUDIT AND ACCOUNTABILITY
17.6.1 Ensure 'Audit Detailed File Share' is set to include 'Failure'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.6.2 (L1) Ensure 'Audit File Share' is set to 'Success and Failure'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.6.2 (L1) Ensure 'Audit Other Object Access Events' is set to 'Success and Failure'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.6.3 Ensure 'Audit Other Object Access Events' is set to 'Success and Failure'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.7.2 (L1) Ensure 'Audit Authentication Policy Change' is set to include 'Success'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.7.2 (L1) Ensure 'Audit Authentication Policy Change' is set to include 'Success'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.7.2 (L1) Ensure 'Audit Authentication Policy Change' is set to include 'Success'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.7.2 (L1) Ensure 'Audit Authentication Policy Change' is set to include 'Success'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.7.3 (L1) Ensure 'Audit Authorization Policy Change' is set to include 'Success'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.7.3 Ensure 'Audit Authentication Policy Change' is set to include 'Success'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.7.5 (L1) Ensure 'Audit Other Policy Change Events' is set to include 'Failure'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.8.1 (L1) Ensure 'Audit Sensitive Privilege Use' is set to 'Success and Failure'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.8.1 (L1) Ensure 'Audit Sensitive Privilege Use' is set to 'Success and Failure'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.8.1 Ensure 'Audit Sensitive Privilege Use' is set to 'Success and Failure'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.9.2 (L1) Ensure 'Audit Security System Extension' is set to include 'Success'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.9.3 (L1) Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.9.4 (L1) Ensure 'Audit Security System Extension' is set to include 'Success'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.9.4 (L1) Ensure 'Audit Security System Extension' is set to include 'Success'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.9.4 (L1) Ensure 'Audit Security System Extension' is set to include 'Success'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.9.4 Ensure 'Audit Security System Extension' is set to include 'Success'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.9.5 (L1) Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.9.5 (L1) Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.9.5 Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search