Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure Latest SQL Server Cumulative and Security Updates are Installed	CIS SQL Server 2017 Database L1 AWS RDS v1.3.0	MS_SQLDB	SYSTEM AND SERVICES ACQUISITION
1.1 Ensure Latest SQL Server Cumulative and Security Updates are Installed	CIS SQL Server 2017 Database L1 DB v1.3.0	MS_SQLDB	SYSTEM AND SERVICES ACQUISITION
2.1.1 Ensure 'extproc' Is Not Present In 'listener.ora'	CIS Oracle Database 23ai v1.0.0 L1 RDBMS On Linux Host OS	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3 Ensure 'Cross DB Ownership Chaining' Server Configuration Option is set to '0'	CIS SQL Server 2016 Database L1 DB v1.4.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
2.6 Ensure the SharePoint farm service account (database access account) is configured with the minimum privileges on the SQL server - Roles	CIS Microsoft SharePoint 2016 DB v1.1.0	MS_SQLDB
3.8 Ensure only the default permissions specified by Microsoft are granted to the public server role	CIS SQL Server 2016 Database L1 AWS RDS v1.4.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.8 Ensure only the default permissions specified by Microsoft are granted to the public server role	CIS SQL Server 2022 Database L1 AWS RDS v1.1.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.8 Ensure only the default permissions specified by Microsoft are granted to the public server role	CIS SQL Server 2022 Database L1 DB v1.1.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.8 Ensure only the default permissions specified by Microsoft are granted to the public server role	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	ACCESS CONTROL
4.2 Ensure 'CHECK_EXPIRATION' Option is set to 'ON' for All SQL Authenticated Logins Within the Sysadmin Role	CIS SQL Server 2016 Database L1 AWS RDS v1.4.0	MS_SQLDB	ACCESS CONTROL
4.2 Ensure 'CHECK_EXPIRATION' Option is set to 'ON' for All SQL Authenticated Logins Within the Sysadmin Role	CIS SQL Server 2017 Database L1 AWS RDS v1.3.0	MS_SQLDB	ACCESS CONTROL
4.2 Ensure 'CHECK_EXPIRATION' Option is set to 'ON' for All SQL Authenticated Logins Within the Sysadmin Role	CIS SQL Server 2022 Database L1 DB v1.1.0	MS_SQLDB	ACCESS CONTROL
4.2 Ensure 'CHECK_EXPIRATION' Option is set to 'ON' for All SQL Authenticated Logins Within the Sysadmin Role	CIS SQL Server 2016 Database L1 DB v1.4.0	MS_SQLDB	ACCESS CONTROL
5.2 Ensure External File System Access is disabled - enable cis	CIS Sybase 15.0 L1 DB v1.1.0	SybaseDB
5.2.14 Ensure 'GRANT ANY OBJECT PRIVILEGE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.3 Ensure Critical Packages Are Audited	CIS Oracle Database 23ai v1.0.0 L1 RDBMS	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.11 Ensure the 'GRANT ANY OBJECT PRIVILEGE' Audit Option Is Enabled	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.11 Ensure the 'GRANT ANY OBJECT PRIVILEGE' Audit Option Is Enabled	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.12 Ensure the 'GRANT ANY PRIVILEGE' Audit Option Is Enabled	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.12 Ensure the 'GRANT ANY PRIVILEGE' Audit Option Is Enabled	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.18 Ensure the 'CREATE SESSION' Audit Option Is Enabled	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.18 Ensure the 'CREATE SESSION' Audit Option Is Enabled	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	AUDIT AND ACCOUNTABILITY
APPL-15-001044 - The macOS system must be configured to audit all authorization and authentication events.	DISA Apple macOS 15 (Sequoia) STIG v1r3	Unix	AUDIT AND ACCOUNTABILITY, MAINTENANCE
CIS_Oracle_Server_11g_R2_Unix_v2.2.0.audit from CIS Oracle Database Server 11g R2 benchmark v2.2.0	CIS Oracle Server 11g R2 Unix v2.2.0	Unix
CIS_Oracle_Server_11g_R2_Windows_v2.2.0.audit from CIS Oracle Database Server 11g R2 benchmark v2.2.0	CIS Oracle Server 11g R2 Windows v2.2.0	Windows
EP11-00-007400 - The EDB Postgres Advanced Server must prevent non-privileged users from executing privileged functions, to include disabling, circumventing, or altering implemented security safeguards/countermeasures.	EDB PostgreSQL Advanced Server v11 DB Audit v2r4	PostgreSQLDB	ACCESS CONTROL
MYS8-00-004100 - The MySQL Database Server 8.0 must generate audit records when unsuccessful attempts to execute privileged activities or other system-level access occur.	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB	AUDIT AND ACCOUNTABILITY
MYS8-00-005700 - Unused database components, MySQL Database Server 8.0 software, and database objects must be removed.	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB	CONFIGURATION MANAGEMENT
O19C-00-005700 - Oracle Database must allocate audit record storage capacity in accordance with organization-defined audit record storage requirements.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	AUDIT AND ACCOUNTABILITY
O112-N1-015602 - When using command-line tools such as Oracle SQL*Plus, which can accept a plain-text password, users must use an alternative login method that does not expose the password.	DISA STIG Oracle 11.2g v2r5 Linux	Unix	IDENTIFICATION AND AUTHENTICATION
PHTN-40-000237 The Photon operating system must configure AIDE to detect changes to baseline configurations.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	CONFIGURATION MANAGEMENT
RHEL-09-653060 - RHEL 9 must label all offloaded audit logs before sending them to the central log server.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	AUDIT AND ACCOUNTABILITY
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 14'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 107'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 108'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 109'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 112'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 115'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 118'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 129'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 131'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 153'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 177'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	ACCESS CONTROL
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 116'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 130'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 131'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 170'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 173'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-038910 - If SQL Server authentication, using passwords, is employed, SQL Server must enforce the DoD standards for password lifetime.	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	IDENTIFICATION AND AUTHENTICATION
VCENTER-000023 - A least-privileges assignment must be used for the vCenter Server database user.	DISA STIG VMWare ESXi vCenter 5 STIG v2r1	VMware	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search