Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.15 Ensure that the --audit-log-path argument is set as appropriateCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

AUDIT AND ACCOUNTABILITY

2.2 Ensure the Log Config Module Is EnabledCIS Apache HTTP Server 2.2 L1 v3.6.0 MiddlewareUnix

AUDIT AND ACCOUNTABILITY

2.2 Ensure the Log Config Module Is EnabledCIS Apache HTTP Server 2.2 L2 v3.6.0Unix

AUDIT AND ACCOUNTABILITY

3.1.9 Set Administrative Notification Level (NOTIFYLEVEL)CIS IBM DB2 11 v1.1.0 Linux OS Level 1Unix

AUDIT AND ACCOUNTABILITY

3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - pgaudit installedCIS PostgreSQL 9.6 DB v1.0.0PostgreSQLDB

AUDIT AND ACCOUNTABILITY

3.2.1 Ensure that a minimal audit policy is createdCIS Kubernetes v1.10.0 L1 MasterUnix

AUDIT AND ACCOUNTABILITY

3.2.1 Ensure that a minimal audit policy is createdCIS Kubernetes v1.23 Benchmark v1.0.1 L1 MasterUnix

AUDIT AND ACCOUNTABILITY

3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.all.log_martians' (sysctl.conf/sysctl.d)CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.default.log_martians = 1 /sbin/sysctl'CIS CentOS 6 Server L1 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.default.log_martians = 1 /sbin/sysctl'CIS CentOS 6 Workstation L1 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.default.log_martians' (sysctl.conf/sysctl.d)CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

3.6.1.9 Configuring SSH - set LogLevel to INFO or VERBOSECIS IBM AIX 7.1 L1 v2.1.0Unix

AUDIT AND ACCOUNTABILITY

4.1.1.1 Ensure auditd is installedCIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.1.1 Ensure auditd is installedCIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.1.1 Ensure auditd is installed - auditCIS Red Hat 6 Server L2 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.1.1 Ensure auditd is installed - audit-libsCIS Red Hat 6 Workstation L2 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.1.1 Ensure auditd is installed - audit-libsCIS CentOS 6 Workstation L2 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.1.3 Ensure auditd service is enabledCIS CentOS 6 Server L2 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.1.3 Ensure auditing for processes that start prior to auditd is enabledCIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.1.4 Ensure auditing for processes that start prior to auditd is enabledCIS CentOS 6 Workstation L2 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.2 Ensure auditd service is enabledCIS Debian 9 Workstation L2 v1.0.1Unix

AUDIT AND ACCOUNTABILITY

4.1.2.4 Ensure audit_backlog_limit is sufficientCIS Oracle Linux 6 Server L2 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.17 Ensure the audit configuration is immutableCIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.17 Ensure the audit configuration is immutableCIS CentOS 6 Server L2 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.17 Ensure the audit configuration is immutableCIS CentOS 6 Workstation L2 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.18 Ensure the audit configuration is immutableCIS Debian 9 Workstation L2 v1.0.1Unix

AUDIT AND ACCOUNTABILITY

4.2.1.1 Ensure rsyslog is installedCIS Distribution Independent Linux Server L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.2.1.3 Ensure logging is configuredCIS CentOS 6 Server L1 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

4.2.1.3 Ensure logging is configuredCIS Distribution Independent Linux Server L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.2.1.3 Ensure logging is configured - '*.*;mail.none;news.none -/var/log/messages'CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.2.1.3 Ensure logging is configured - '*.=warning;*.=err -/var/log/warn'CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.2.1.3 Ensure logging is configured - 'local2,local3.* -/var/log/localmessages'CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.2.1.3 Ensure logging is configured - 'mail.warning -/var/log/mail.warn'CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.2.2.1 Ensure syslog-ng service is enabledCIS Debian 9 Workstation L1 v1.0.1Unix

AUDIT AND ACCOUNTABILITY

4.2.8 Ensure that the eventRecordQPS argument is set to a level which ensures appropriate event captureCIS Kubernetes v1.10.0 L2 WorkerUnix

AUDIT AND ACCOUNTABILITY

4.2.9 Ensure that the --event-qps argument is set to 0 or a level which ensures appropriate event captureCIS Kubernetes v1.20 Benchmark v1.0.1 L2 WorkerUnix

AUDIT AND ACCOUNTABILITY

5.1 Ensure that system activity is auditedCIS MongoDB 4 L1 OS Windows v1.0.0Windows

AUDIT AND ACCOUNTABILITY

5.2.5 Ensure SSH LogLevel is appropriateCIS Distribution Independent Linux Server L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

5.3.2 Enable auditd ServiceCIS Red Hat Enterprise Linux 5 L2 v2.2.1Unix

AUDIT AND ACCOUNTABILITY

5.3.6 Ensure SSH LogLevel is appropriate - sshdCIS Oracle Linux 6 Workstation L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

5.3.6 Ensure SSH LogLevel is appropriate - sshd_configCIS Oracle Linux 6 Workstation L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

6.1 Ensure the Error Log Filename and Severity Level Are Configured Correctly - 'ErrorLog is configured'CIS Apache HTTP Server 2.2 L1 v3.6.0Unix

AUDIT AND ACCOUNTABILITY

6.1 Ensure the Error Log Filename and Severity Level Are Configured Correctly - 'httpd.conf <VirtualHost> ErrorLog is configured'CIS Apache HTTP Server 2.2 L1 v3.6.0 MiddlewareUnix

AUDIT AND ACCOUNTABILITY

6.1.1 Configuring syslog - local logging - /var/adm/authlogCIS IBM AIX 7.1 L1 v2.1.0Unix

AUDIT AND ACCOUNTABILITY

6.3 Ensure the Server Access Log Is Configured Correctly - 'httpd.conf LogFormat is configured'CIS Apache HTTP Server 2.2 L2 v3.6.0Unix

AUDIT AND ACCOUNTABILITY

7.1.4 Ensure Audit is Enabled Within the InstanceCIS IBM DB2 11 v1.1.0 Linux OS Level 1Unix

AUDIT AND ACCOUNTABILITY

9.2 Configure a Logging File Channel - category dnssecCIS BIND DNS v1.0.0 L1 Authoritative Name ServerUnix

AUDIT AND ACCOUNTABILITY

9.2 Configure a Logging File Channel - category networkCIS BIND DNS v1.0.0 L1 Caching Only Name ServerUnix

AUDIT AND ACCOUNTABILITY

9.2 Configure a Logging File Channel - logging sectionCIS BIND DNS v1.0.0 L1 Authoritative Name ServerUnix

AUDIT AND ACCOUNTABILITY

9.2 Configure a Logging File Channel - logging sectionCIS BIND DNS v1.0.0 L1 Caching Only Name ServerUnix

AUDIT AND ACCOUNTABILITY