Item Search

Name	Audit Name	Plugin	Category
1.1.2 Set nodev option for /tmp Partition	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
1.1.2.5.1 Ensure separate partition exists for /var/tmp	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.3 Ensure Apache Is Installed From the Appropriate Binaries	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	CONFIGURATION MANAGEMENT
1.8.6 Ensure GDM automatic mounting of removable media is disabled	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	MEDIA PROTECTION
1.8.7 Ensure GDM disabling automatic mounting of removable media is not overridden	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	MEDIA PROTECTION
3.2.2 Ensure tipc kernel module is not available	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
3.2.3 Ensure rds kernel module is not available	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
4.3 Ensure OverRide Is Disabled for the OS Root Directory	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	ACCESS CONTROL
4.3 Ensure OverRide Is Disabled for the OS Root Directory	CIS Apache HTTP Server 2.2 L2 v3.6.0	Unix	ACCESS CONTROL
5.3.3.1.3 Ensure password failed attempts lockout includes root account	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	ACCESS CONTROL
5.4 Configure logrotate - '/var/log/maillog'	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
5.4 Configure logrotate - '/var/log/messages'	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
6.3.1.3 Ensure audit_backlog_limit is sufficient	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.1.4 Ensure auditd service is enabled and active	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.2.1 Ensure audit log storage size is configured	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.2.3 Ensure system is disabled when audit logs are full	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.4 Ensure events that modify date and time information are collected	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.6 Ensure use of privileged commands are collected	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.7 Ensure unsuccessful file access attempts are collected	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.8 Ensure events that modify user/group information are collected	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.10 Ensure successful file system mounts are collected	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.11 Ensure session initiation information is collected	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.12 Ensure login and logout events are collected	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.13 Ensure file deletion events by users are collected	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.14 Ensure events that modify the system's Mandatory Access Controls are collected	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.19 Ensure kernel module loading unloading and modification is collected	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.19 Ensure kernel module loading unloading and modification is collected	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.20 Ensure the audit configuration is immutable	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION
6.3.4.6 Ensure audit configuration files owner is configured	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.3.4.7 Ensure audit configuration files group owner is configured	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.5 Restrict Access to the su Command - auth required pam_wheel.so use_uid'	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
11.2 Remove OS Information from Login Warning Banners - /etc/issue	CIS Debian Linux 7 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
11.2 Remove OS Information from Login Warning Banners - /etc/motd	CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0	Unix	CONFIGURATION MANAGEMENT
ALMA-09-004970 - AlmaLinux OS 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/sudoers.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MAINTENANCE
ALMA-09-005300 - AlmaLinux OS 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/security/opasswd.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MAINTENANCE
ALMA-09-007060 - AlmaLinux OS 9 must enable kernel parameters to enforce discretionary access control on hardlinks.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	ACCESS CONTROL
ALMA-09-011680 - AlmaLinux OS 9 must disable the kernel.core_pattern.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	CONFIGURATION MANAGEMENT
ALMA-09-040830 - AlmaLinux OS 9 must restrict exposed kernel pointer addresses access.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
ALMA-09-040940 - AlmaLinux OS 9 must restrict usage of ptrace to descendant processes.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
ALMA-09-041160 - AlmaLinux OS 9 must prevent kernel profiling by nonprivileged users.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
ALMA-09-042480 - AlmaLinux OS 9 must be configured to use TCP syncookies.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
APPL-14-001003 The macOS system must enable security auditing.	DISA Apple macOS 14 (Sonoma) STIG v2r3	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, MAINTENANCE
OL08-00-030150 - OL 8 must generate audit records for all account creation events that affect "/etc/passwd".	DISA Oracle Linux 8 STIG v2r4	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MAINTENANCE
OL08-00-030180 - The OL 8 audit package must be installed.	DISA Oracle Linux 8 STIG v2r4	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, MAINTENANCE
OL08-00-030181 - OL 8 audit records must contain information to establish what type of events occurred, the source of events, where events occurred, and the outcome of events.	DISA Oracle Linux 8 STIG v2r4	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, MAINTENANCE
RHEL-08-030180 - The RHEL 8 audit package must be installed.	DISA Red Hat Enterprise Linux 8 STIG v2r3	Unix	AUDIT AND ACCOUNTABILITY
RHEL-09-654215 - RHEL 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/sudoers.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MAINTENANCE
RHEL-09-654220 - RHEL 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/sudoers.d/ directory.	DISA Red Hat Enterprise Linux 9 STIG v2r4	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MAINTENANCE
UBTU-16-020000 - Audit records must contain information to establish what type of events occurred, the source of events, where events occurred, and the outcome of events - enabled	DISA STIG Ubuntu 16.04 LTS v2r3	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, MAINTENANCE
UBTU-16-020000 - Audit records must contain information to establish what type of events occurred, the source of events, where events occurred, and the outcome of events - installed	DISA STIG Ubuntu 16.04 LTS v2r3	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, MAINTENANCE

Detections

Analytics

Item Search