Item Search

Name	Audit Name	Plugin	Category
2.3.11.12 (L1) Ensure 'Network security: Restrict NTLM: Audit Incoming NTLM Traffic' is set to 'Enable auditing for all accounts'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
2.3.11.12 (L1) Ensure 'Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers' is set to 'Audit all' or higher	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
2.3.11.12 (L1) Ensure 'Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers' is set to 'Audit all' or higher	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
2.3.11.12 (L1) Ensure 'Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers' is set to 'Audit all' or higher	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
2.3.11.13 (L1) Ensure 'Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers' is set to 'Audit all' or higher	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
4.2.16 Ensure sshd MaxAuthTries is configured	CIS Amazon Linux 2 v3.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
4.3.3 Ensure sudo log file exists	CIS Amazon Linux 2 v3.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
5.1.16 Ensure sshd MaxAuthTries is configured	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
5.1.16 Ensure sshd MaxAuthTries is configured	CIS Oracle Linux 9 v2.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
5.2.3 Ensure sudo log file exists	CIS Ubuntu Linux 22.04 LTS v2.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
5.2.3 Ensure sudo log file exists	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.2.3 Ensure sudo log file exists	CIS Oracle Linux 9 v2.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
7.1.2.3 Ensure that Activity Log Alert exists for Create or Update Network Security Group	CIS Microsoft Azure Foundations v4.0.0 L1	microsoft_azure	AUDIT AND ACCOUNTABILITY
7.1.2.5 Ensure that Activity Log Alert exists for Create or Update Security Solution	CIS Microsoft Azure Foundations v4.0.0 L1	microsoft_azure	AUDIT AND ACCOUNTABILITY
7.1.2.11 Ensure that an Activity Log Alert exists for Service Health	CIS Microsoft Azure Foundations v4.0.0 L1	microsoft_azure	AUDIT AND ACCOUNTABILITY
17.1.1 (L1) Ensure 'Audit Credential Validation' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
17.1.1 (L1) Ensure 'Audit Credential Validation' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.2.3 (L1) Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.2.3 (L1) Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.2.3 (L1) Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit PNP Activity' is set to include 'Success'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit PNP Activity' is set to include 'Success'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit PNP Activity' is set to include 'Success'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.6.3 (L1) Ensure 'Audit Other Object Access Events' is set to 'Success and Failure'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.6.3 (L1) Ensure 'Audit Other Object Access Events' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.8.1 (L1) Ensure 'Audit Sensitive Privilege Use' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.9.2 (L1) Ensure 'Audit Other System Events' is set to 'Success and Failure'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.9.2 (L1) Ensure 'Audit Other System Events' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.9.2 (L1) Ensure 'Audit Other System Events' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.9.3 (L1) Ensure 'Audit Security State Change' is set to include 'Success'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.9.3 (L1) Ensure 'Audit Security State Change' is set to include 'Success'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.9.3 (L1) Ensure 'Audit Security State Change' is set to include 'Success'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.9.4 (L1) Ensure 'Audit Security System Extension' is set to include 'Success'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.9.5 (L1) Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.9.5 (L1) Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.9.5 (L1) Ensure 'Audit System Integrity' is set to 'Success and Failure'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
18.6.7.1 (L1) Ensure 'Audit client does not support encryption' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
18.6.7.2 (L1) Ensure 'Audit client does not support signing' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	AUDIT AND ACCOUNTABILITY
18.6.7.2 (L1) Ensure 'Audit client does not support signing' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.6.8.2 (L1) Ensure 'Audit server does not support encryption' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.16.5 (L1) Ensure 'Enable OneSettings Auditing' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.16.5 (L1) Ensure 'Enable OneSettings Auditing' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.16.5 (L1) Ensure 'Enable OneSettings Auditing' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
18.10.16.5 (L1) Ensure 'Enable OneSettings Auditing' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search