Item Search

Name	Audit Name	Plugin	Category
1.7 Audit docker daemon	CIS Docker 1.11.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.8 Audit Docker files and directories - /var/lib/docker	CIS Docker 1.11.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.9 Audit Docker files and directories - /etc/docker	CIS Docker 1.12.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.10 Audit Docker files and directories - /etc/default/docker	CIS Docker 1.13.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.11 Audit Docker files and directories - /etc/docker/daemon.json	CIS Docker 1.13.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.12 Audit Docker files and directories - /etc/default/docker	CIS Docker 1.12.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.13 Audit Docker files and directories - /usr/bin/docker-runc	CIS Docker 1.13.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.14 Audit Docker files and directories - /etc/sysconfig/docker	CIS Docker 1.6 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.14 Audit Docker files and directories - /usr/bin/docker-containerd	CIS Docker 1.12.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.15 Audit Docker files and directories - /etc/sysconfig/docker-network	CIS Docker 1.6 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
1.15 Audit Docker files and directories - /usr/bin/docker-runc	CIS Docker 1.11.0 v1.0.0 L1 Linux	Unix	AUDIT AND ACCOUNTABILITY
2.2.5 Set 'logging trap informational'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	AUDIT AND ACCOUNTABILITY
3.1.6 Set diagnostic logging to capture errors and warnings	CIS IBM DB2 v10 v1.1.0 Linux OS Level 1	Unix	AUDIT AND ACCOUNTABILITY
3.1.6 Set diagnostic logging to capture errors and warnings	CIS IBM DB2 v10 v1.1.0 Windows OS Level 1	Windows	AUDIT AND ACCOUNTABILITY
3.1.12 Set administrative notification level	CIS IBM DB2 v10 v1.1.0 Linux OS Level 2	Unix	AUDIT AND ACCOUNTABILITY
3.2 Configure Security Auditing Flags - 'audit successful/failed file attribute modification events'	CIS Apple macOS 10.12 L2 v1.2.0	Unix	AUDIT AND ACCOUNTABILITY
3.2 Configure Security Auditing Flags per local organizational requirements - 'audit all failed events across all audit classes'	CIS Apple macOS 10.13 L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure file deletion events by users are collected	CIS Ubuntu Linux 14.04 LTS Workstation L2 v2.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure file deletion events by users are collected - auditctl b64	CIS Amazon Linux v2.1.0 L2	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure file deletion events by users are collected - auditctl delete	CIS Ubuntu Linux 14.04 LTS Workstation L2 v2.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure file deletion events by users are collected - auditctl delete (64-bit)	CIS Ubuntu Linux 14.04 LTS Workstation L2 v2.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure file deletion events by users are collected (64-bit)	CIS Ubuntu Linux 14.04 LTS Workstation L2 v2.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_SOCKACCEPT : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.3 Enable Auditing of File Metadata Modification Events - AUE_CHOWN : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_NICE : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETPGID : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETREGID : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETREUID : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETUID : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit_binfile attributes: p_minfree=1;	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - configured non-attributable flags = lo	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.6 Capture All Failed Login Attempts - Check if SYSLOG_FAILED_LOGINS is set to 0 in /etc/default/login.	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
4.8 Enable System Accounting - Check if contents of /var/spool/cron/crontabs/sys (/usr/lib/sa/sa2) are OK.	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
4.9 Enable Kernel Level Auditing - Check audit policies is set to arge,argv,cnt	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
5.2 Ensure AWS Elastic Load Balancer logging is enabled	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	AUDIT AND ACCOUNTABILITY
7.2 Specify file handler in logging.properties (check if java.util.logging.ConsoleHandler exists inin default)	CIS Apache Tomcat 7 L1 v1.1.0 Middleware	Unix	AUDIT AND ACCOUNTABILITY
7.2 Specify file handler in logging.properties (check if org.apache.juli.FileHandler exists in default)	CIS Apache Tomcat 7 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.4 Record Events That Modify Date and Time Information - 32 bit clock_settime	CIS Debian Linux 7 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.6 Record Events That Modify the System's Network Environment - /etc/issue	CIS Debian Linux 7 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.6 Record Events That Modify the System's Network Environment - 64 bit system-locale	CIS Debian Linux 7 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.9 Collect Session Initiation Information - /var/log/btmp	CIS Debian Linux 7 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.9 Collect Session Initiation Information - /var/run/utmp	CIS Debian Linux 7 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.13 Collect Successful File System Mounts - 32 bit mount	CIS Debian Linux 7 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.16 Collect System Administrator Actions (sudolog)	CIS Debian Linux 7 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
Audit Account Lockout	MSCT Windows 11 v23H2 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Other Policy Change Events	MSCT Windows 11 v24H2 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Removable Storage	MSCT Windows 11 v24H2 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Security State Change	MSCT Windows 11 v24H2 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings	MSCT Windows 11 v23H2 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Auditing and logging - severity	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search