Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.7 Log AuditingTenable ZTE ROSNGZTE_ROSNG

AUDIT AND ACCOUNTABILITY

2.6 Logging - 'auditlog.enable = on'TNS NetApp Data ONTAP 7GNetApp

AUDIT AND ACCOUNTABILITY

3.3 Configure Security Auditing Flags - 'audit successful/failed administrative events'CIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

5.1 Ensure that system activity is auditedCIS MongoDB L1 Unix Audit v1.0.0Unix

AUDIT AND ACCOUNTABILITY

5.2 Enable 'ALTER USER' Audit OptionCIS Oracle Server 11g R2 DB v2.2.0OracleDB

AUDIT AND ACCOUNTABILITY

5.4 CIFS - 'cifs.audit.account_mgmt_events.enable = on'TNS NetApp Data ONTAP 7GNetApp

AUDIT AND ACCOUNTABILITY

5.4 CIFS - 'cifs.audit.autosave.onsize.enable = on'TNS NetApp Data ONTAP 7GNetApp

AUDIT AND ACCOUNTABILITY

5.4 CIFS - 'cifs.audit.file_access_events.enable = on'TNS NetApp Data ONTAP 7GNetApp

AUDIT AND ACCOUNTABILITY

5.4 CIFS - 'cifs.audit.nfs.enable = on'TNS NetApp Data ONTAP 7GNetApp

AUDIT AND ACCOUNTABILITY

5.11 Enable 'PUBLIC SYNONYM' Audit OptionCIS Oracle Server 11g R2 DB v2.2.0OracleDB

AUDIT AND ACCOUNTABILITY

5.12 Enable 'SYNONYM' Audit OptionCIS Oracle Server 11g R2 DB v2.2.0OracleDB

AUDIT AND ACCOUNTABILITY

5.16 Enable 'GRANT ANY PRIVILEGE' Audit OptionCIS Oracle Server 11g R2 DB v2.2.0OracleDB

AUDIT AND ACCOUNTABILITY

8.1.3 Enable Auditing for Processes That Start Prior to auditdCIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

8.1.4 Record Events That Modify Date and Time Information - '64bit adjtimex'CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

8.1.5 Record Events That Modify User/Group Information - '/etc/gshadow'CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

8.1.8 Collect Login and Logout Events- '/var/log/faillog'CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

8.1.8 Collect Login and Logout Events- '/var/log/lastlog'CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

8.1.8 Collect Login and Logout Events- '/var/log/tallylog'CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

8.1.11 Collect Unsuccessful Unauthorized Access Attempts to Files- '32bit EPERM'CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

8.1.17 Collect Kernel Module Loading and Unloading - '32bit init_module/delete_module'CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

8.1.17 Collect Kernel Module Loading and Unloading- '/sbin/rmmod'CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

Administrative actions are loggedTNS Citrix HypervisorUnix

AUDIT AND ACCOUNTABILITY

Audit Computer Account ManagementMSCT MSCT Windows Server 2022 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Directory Service AccessMSCT Windows Server v20H2 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Kerberos Service Ticket OperationsMSCT Windows Server v20H2 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit MPSSVC Rule-Level Policy ChangeMSCT Windows Server 2022 v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Other System EventsMSCT MSCT Windows Server 2022 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Process CreationMSCT Windows Server v20H2 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Security Group ManagementMSCT MSCT Windows Server 2022 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Security State ChangeMSCT MSCT Windows Server 2022 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Special LogonMSCT Windows Server 2022 v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit User Account ManagementMSCT MSCT Windows Server 2022 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settingsMSCT MSCT Windows Server 2022 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Brocade - Enable auditcfgTenable Best Practices Brocade FabricOSBrocade

AUDIT AND ACCOUNTABILITY

Brocade - Enable the track changes featureTenable Best Practices Brocade FabricOSBrocade

AUDIT AND ACCOUNTABILITY

Citrix ADC - System Parameters - CLI Log LevelTenable Best Practice Citrix ADC v1.0.0Citrix_Application_Delivery

AUDIT AND ACCOUNTABILITY

Ensure 'logging to monitor' is disabledTenable Cisco Firepower Threat Defense Best Practices AuditCisco_Firepower

AUDIT AND ACCOUNTABILITY

Ensure 'logging to Serial console' is disabledTenable Cisco Firepower Threat Defense Best Practices AuditCisco_Firepower

AUDIT AND ACCOUNTABILITY

Ensure email logging is enabledTenable Cisco Firepower Threat Defense Best Practices AuditCisco_Firepower

AUDIT AND ACCOUNTABILITY

Ensure file deletion events by users are collected - auditctl b64 unlinkTenable Cisco Firepower Management Center OS Best Practices AuditUnix

AUDIT AND ACCOUNTABILITY

Fortigate - Fortianalyzer2 Logs - severity 'information'TNS Fortigate FortiOS Best Practices v2.0.0FortiGate

AUDIT AND ACCOUNTABILITY

Fortigate - Fortianalyzer3 Logs - severity 'information'TNS Fortigate FortiOS Best Practices v2.0.0FortiGate

AUDIT AND ACCOUNTABILITY

Fortigate - Log user authentication messagesTNS Fortigate FortiOS Best Practices v2.0.0FortiGate

AUDIT AND ACCOUNTABILITY

Fortigate - Wireless-activity event loggingTNS Fortigate FortiOS Best Practices v2.0.0FortiGate

AUDIT AND ACCOUNTABILITY

HTTP TRACE method should be disabled. 'RewriteLogLevel'TNS IBM HTTP Server Best PracticeWindows

AUDIT AND ACCOUNTABILITY

Include Login in Session RecordsTenable Cisco ACICisco_ACI

AUDIT AND ACCOUNTABILITY

Syslog - Local File Destination - Admin StateTenable Cisco ACICisco_ACI

AUDIT AND ACCOUNTABILITY

Syslog - Local File Destination - SeverityTenable Cisco ACICisco_ACI

AUDIT AND ACCOUNTABILITY

Syslog - Show MilliSeconds in TimestampTenable Cisco ACICisco_ACI

AUDIT AND ACCOUNTABILITY

WatchGuard : Logging - Configuration Changes are LoggedTNS Best Practice WatchGuard Audit 1.0.0WatchGuard

AUDIT AND ACCOUNTABILITY