Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Policies
Overview
Search
AWS Resources
Azure Resources
GCP Resources
Kubernetes Resources
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Policies
Overview
Search
AWS Resources
Azure Resources
GCP Resources
Kubernetes Resources
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
Item Search
Audits
Item Search
Filters (1)
Description
Filename
Plugin
References
Control ID
Relevance
Description
Plugin
Filename
References (Active)
Search by References
Clear All
‹‹ Previous
Previous
Page 5 of 172
• 8578 Total
Next
Next ››
Name
Audit Name
Plugin
Category
4.1.3.25 Ensure audit of kmod command
CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
Unix
AUDIT AND ACCOUNTABILITY
AMLS-NM-000180 - Arista MLS must generate audit records when successful/unsuccessful attempts to access privileges occur.
DISA STIG Arista MLS DCS-7000 Series NDM V1R2
Arista
APPL-11-001044 - The macOS system must generate audit records for DoD-defined events such as successful/unsuccessful logon attempts, successful/unsuccessful direct access attempts, starting and ending time for user access, and concurrent logons to the same account from different sources.
DISA STIG Apple macOS 11 v1r6
Unix
APPL-13-001044 - The macOS system must generate audit records for DOD-defined events such as successful/unsuccessful logon attempts, successful/unsuccessful direct access attempts, starting and ending time for user access, and concurrent logons to the same account from different sources.
DISA STIG Apple macOS 13 v1r2
Unix
CASA-ND-000240 - The Cisco ASA must be configured to generate audit records when successful/unsuccessful attempts to access privileges occur - buffered informational
DISA STIG Cisco ASA NDM v1r5
Cisco
CASA-ND-001200 - The Cisco ASA must be configured to generate audit records when successful/unsuccessful attempts to modify administrator privileges occur - logging buffered
DISA STIG Cisco ASA NDM v1r3
Cisco
CASA-ND-001210 - The Cisco ASA must be configured to generate audit records when successful/unsuccessful attempts to delete administrator privileges occur - logging enabled
DISA STIG Cisco ASA NDM v1r1
Cisco
CASA-ND-001220 - The Cisco ASA must be configured to generate audit records when successful/unsuccessful logon attempts occur - logging enabled
DISA STIG Cisco ASA NDM v1r1
Cisco
CASA-ND-001230 - The Cisco ASA must be configured to generate audit records for privileged activities or other system-level access - logging enabled
DISA STIG Cisco ASA NDM v1r5
Cisco
CASA-ND-001240 - The Cisco ASA must be configured to generate audit records showing starting and ending time for administrator access to the system - logging enabled
DISA STIG Cisco ASA NDM v1r1
Cisco
CASA-ND-001240 - The Cisco ASA must be configured to generate audit records showing starting and ending time for administrator access to the system - logging enabled
DISA STIG Cisco ASA NDM v1r3
Cisco
CASA-ND-001240 - The Cisco ASA must be configured to generate audit records showing starting and ending time for administrator access to the system - logging enabled
DISA STIG Cisco ASA NDM v1r5
Cisco
FGFW-ND-000070 - The FortiGate device must generate audit records when successful/unsuccessful attempts to delete administrator privileges occur. - system
DISA Fortigate Firewall NDM STIG v1r1
FortiGate
FGFW-ND-000075 - The FortiGate device must generate audit records when successful/unsuccessful logon attempts occur. - system
DISA Fortigate Firewall NDM STIG v1r3
FortiGate
FGFW-ND-000080 - The FortiGate device must generate audit records for privileged activities or other system-level access. - event
DISA Fortigate Firewall NDM STIG v1r1
FortiGate
FGFW-ND-000080 - The FortiGate device must generate audit records for privileged activities or other system-level access. - system
DISA Fortigate Firewall NDM STIG v1r3
FortiGate
MADB-10-009500 - MariaDB must generate audit records when unsuccessful attempts to access security objects occur.
DISA MariaDB Enterprise 10.x v1r2 DB
MySQLDB
MADB-10-010000 - MariaDB must generate audit records when privileges/permissions are modified.
DISA MariaDB Enterprise 10.x v1r2 DB
MySQLDB
MADB-10-010400 - MariaDB must generate audit records when categories of information (e.g., classification levels/security levels) are modified.
DISA MariaDB Enterprise 10.x v1r2 DB
MySQLDB
MADB-10-011300 - MariaDB must generate audit records when unsuccessful logons or connection attempts occur.
DISA MariaDB Enterprise 10.x v1r2 DB
MySQLDB
PHTN-67-000020 - The Photon operating system must generate audit records when successful/unsuccessful attempts to access privileges occur - 64
DISA STIG VMware vSphere 6.7 Photon OS v1r1
Unix
PHTN-67-000072 - The Photon operating system must generate audit records when successful/unsuccessful logon attempts occur - faillog
DISA STIG VMware vSphere 6.7 Photon OS v1r3
Unix
PHTN-67-000072 - The Photon operating system must generate audit records when successful/unsuccessful logon attempts occur - lastlog
DISA STIG VMware vSphere 6.7 Photon OS v1r5
Unix
PHTN-67-000073 - The Photon operating system must audit the insmod module.
DISA STIG VMware vSphere 6.7 Photon OS v1r1
Unix
PHTN-67-000074 - The Photon operating system auditd service must generate audit records for all account creations, modifications, disabling, and termination events.
DISA STIG VMware vSphere 6.7 Photon OS v1r5
Unix
RHEL-09-654195 - Successful/unsuccessful uses of the reboot command in RHEL 9 must generate an audit record.
DISA Red Hat Enterprise Linux 9 STIG v1r1
Unix
RHEL-09-654200 - Successful/unsuccessful uses of the shutdown command in RHEL 9 must generate an audit record.
DISA Red Hat Enterprise Linux 9 STIG v1r1
Unix
SLES-15-030710 - The SUSE operating system must generate audit records for all uses of the rename system call - b32
DISA SLES 15 STIG v1r1
Unix
SLES-15-030740 - The SUSE operating system must generate audit records for all uses of the unlink system call - b32
DISA SLES 15 STIG v1r3
Unix
SLES-15-030750 - The SUSE operating system must generate audit records for all uses of the unlinkat system call - b32
DISA SLES 15 STIG v1r1
Unix
SLES-15-030750 - The SUSE operating system must generate audit records for all uses of the unlinkat system call - b64
DISA SLES 15 STIG v1r1
Unix
SLES-15-030770 - The SUSE operating system must generate audit records for the /var/log/wtmp file.
DISA SLES 15 STIG v1r10
Unix
SLES-15-030780 - The SUSE operating system must generate audit records for the /var/log/btmp file.
DISA SLES 15 STIG v1r11
Unix
UBTU-20-010142 - The Ubuntu operating system must generate audit records for any use of the setxattr, fsetxattr, lsetxattr, removexattr, fremovexattr, and lremovexattr system calls - b32 auid=0
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
UBTU-20-010152 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the chmod, fchmod, and fchmodat system calls - b64
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
UBTU-20-010152 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the chmod, fchmod, and fchmodat system calls.
DISA STIG Ubuntu 20.04 LTS v1r9
Unix
UBTU-20-010162 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the sudoedit command.
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
UBTU-20-010165 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the chcon command.
DISA STIG Ubuntu 20.04 LTS v1r9
Unix
UBTU-20-010166 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the apparmor_parser command.
DISA STIG Ubuntu 20.04 LTS v1r9
Unix
UBTU-20-010169 - The Ubuntu operating system must generate audit records for the use and modification of the tallylog file.
DISA STIG Ubuntu 20.04 LTS v1r9
Unix
UBTU-20-010174 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the gpasswd command.
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
UBTU-20-010175 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the chage command.
DISA STIG Ubuntu 20.04 LTS v1r9
Unix
UBTU-20-010176 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the usermod command.
DISA STIG Ubuntu 20.04 LTS v1r9
Unix
UBTU-20-010179 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the init_module and finit_module syscalls - b32
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
UBTU-20-010179 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the init_module and finit_module syscalls.
DISA STIG Ubuntu 20.04 LTS v1r9
Unix
UBTU-20-010267 - The Ubuntu operating system must generate audit records for any successful/unsuccessful use of unlink, unlinkat, rename, renameat, and rmdir system calls - b32
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
UBTU-20-010267 - The Ubuntu operating system must generate audit records for any successful/unsuccessful use of unlink, unlinkat, rename, renameat, and rmdir system calls.
DISA STIG Ubuntu 20.04 LTS v1r9
Unix
UBTU-20-010296 - The Ubuntu operating system must generate audit records when successful/unsuccessful attempts to use modprobe command.
DISA STIG Ubuntu 20.04 LTS v1r5
Unix
UBTU-20-010296 - The Ubuntu operating system must generate audit records when successful/unsuccessful attempts to use modprobe command.
DISA STIG Ubuntu 20.04 LTS v1r9
Unix
WN22-AU-000070 - Windows Server 2022 must be configured to audit Account Logon - Credential Validation successes.
DISA Windows Server 2022 STIG v1r1
Windows
‹‹ Previous
Previous
Page 5 of 172
• 8578 Total
Next
Next ››