Item Search

Name	Audit Name	Plugin	Category
1.4.3 Set the SELinux Policy - SELINUXTYPE=targeted	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL
1.28 (L1) Ensure 'Suppress the unsupported OS warning' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND SERVICES ACQUISITION
2.1.3 Secure Backup Credentials	CIS MySQL 5.6 Enterprise Database L1 v2.0.0	MySQLDB	ACCESS CONTROL, CONTINGENCY PLANNING, MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.10.3 Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts' is set to 'Enabled' (STIG only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.10.5 Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts and shares' is set to 'Enabled' (STIG only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.6 Ensure 'password_lifetime' is Less Than or Equal to '365'	CIS MySQL 5.7 Enterprise Database L1 v2.0.0	MySQLDB	IDENTIFICATION AND AUTHENTICATION
2.6 Ensure Password Complexity is Configured - validate_password_policy	CIS MySQL 5.6 Enterprise Database L1 v2.0.0	MySQLDB	IDENTIFICATION AND AUTHENTICATION
2.7 Ensure Password Complexity is Configured - validate_password_mixed_case_count	CIS MySQL 5.7 Enterprise Database L1 v2.0.0	MySQLDB	IDENTIFICATION AND AUTHENTICATION
2.11 Require Client-Side Certificates (X.509)	CIS MariaDB 10.6 Database L2 v1.1.0	MySQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.11 Require Client-Side Certificates (X.509)	CIS MariaDB 10.6 on Linux L2 v1.1.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5 Ensure Access to Audit Records Is Controlled	CIS Apple macOS 11.0 Big Sur v4.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.5 Ensure Access to Audit Records Is Controlled - /var/audit	CIS Apple macOS 10.14 v2.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1 Ensure that auditable events and diagnostic tracking settings within the SharePoint system is consistent with the organization's security plans	CIS Microsoft SharePoint 2019 OS v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
5.2 Ensure External File System Access is disabled - enable file access	CIS Sybase 15.0 L1 DB v1.1.0	SybaseDB
5.3.8 Record Events That Modify the System's Mandatory Access Controls - /etc/selinux/	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	CONFIGURATION MANAGEMENT
5.3.16 Collect Changes to System Administration Scope (sudoers)	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	CONFIGURATION MANAGEMENT
5.6 Ensure 'CREATE USER' is Not Granted to Non-Administrative Users	CIS MySQL 8.0 Community Database L1 v1.1.0	MySQLDB	ACCESS CONTROL
5.9 Ensure DML/DDL Grants are Limited to Specific Databases and Users	CIS MySQL 8.0 Community Database L1 v1.1.0	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION
5.9 Ensure DML/DDL Grants are Limited to Specific Databases and Users	CIS MySQL 8.4 Enterprise v1.0.0 L1 Database	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION
5.12 Ensure Proper Use Of ALLOW_NONEXISTENT_DEFINER	CIS MySQL 8.0 Community Database L1 v1.1.0	MySQLDB	PLANNING, SYSTEM AND SERVICES ACQUISITION
5.12 Ensure Proper Use Of ALLOW_NONEXISTENT_DEFINER	CIS MySQL 8.4 Enterprise v1.0.0 L1 Database	MySQLDB	PLANNING, SYSTEM AND SERVICES ACQUISITION
6.5 Ensure Audit Filters Capture Connection Attempts - audit_log_user	CIS MySQL 5.7 Enterprise Database L1 v2.0.0	MySQLDB	AUDIT AND ACCOUNTABILITY
6.5 Ensure Audit Filters Capture Connection Attempts - Legacy Audit Mode	CIS MySQL 5.7 Enterprise Database L1 v2.0.0	MySQLDB	AUDIT AND ACCOUNTABILITY
6.5 Restrict Access to the su Command - wheel:x:10:root, <user list>'	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
6.6 Ensure 'audit_log_exclude_accounts' is Set to 'NULL'	CIS MySQL 5.6 Enterprise Database L1 v2.0.0	MySQLDB	AUDIT AND ACCOUNTABILITY
7.6 Ensure Password Complexity Policies are in Place - 'validate_password_length'	CIS MySQL 5.6 Enterprise Database L1 v2.0.0	MySQLDB	IDENTIFICATION AND AUTHENTICATION
7.6 Ensure Password Complexity Policies are in Place - validate_password_check_user_name	CIS MySQL 5.7 Community Database L1 v2.0.0	MySQLDB	IDENTIFICATION AND AUTHENTICATION
7.6 Ensure Password Complexity Policies are in Place - validate_password_check_user_name	CIS MySQL 5.7 Enterprise Database L1 v2.0.0	MySQLDB	IDENTIFICATION AND AUTHENTICATION
7.6 Ensure Password Complexity Policies are in Place - validate_password_special_char_count	CIS MySQL 5.7 Community Database L1 v2.0.0	MySQLDB	IDENTIFICATION AND AUTHENTICATION
9.1 Ensure Replication Traffic Is Secured	CIS MySQL 5.6 Community Database L1 v2.0.0	MySQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.1 Ensure Replication Traffic is Secured	CIS MySQL 8.0 Community Database L1 v1.1.0	MySQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.1.10 Find World Writable Files	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
9.2 Ensure 'MASTER_SSL_VERIFY_SERVER_CERT' Is Set to 'YES' or '1'	CIS MySQL 5.7 Community Database L1 v2.0.0	MySQLDB	CONFIGURATION MANAGEMENT
9.2 Ensure 'MASTER_SSL_VERIFY_SERVER_CERT' Is Set to 'YES' or '1'	CIS MySQL 5.7 Enterprise Database L1 v2.0.0	MySQLDB	CONFIGURATION MANAGEMENT
9.2.14 Check for Duplicate UIDs	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events.	DISA STIG AIX 7.x v3r1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, MAINTENANCE
ALMA-09-044790 - AlmaLinux OS 9 must clear memory when it is freed to prevent use-after-free attacks.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	SYSTEM AND INFORMATION INTEGRITY
ALMA-09-045230 - AlmaLinux OS 9 must enable the SELinux targeted policy.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	SYSTEM AND INFORMATION INTEGRITY
APPL-14-001021 The macOS system must be configured to audit all changes of object attributes.	DISA Apple macOS 14 (Sonoma) STIG v2r3	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, MAINTENANCE
CIS Control 13 (13.6) Encrypt Mobile Device Data	CAS Implementation Group 1 Audit File	Unix	ACCESS CONTROL
CIS_Apache_Tomcat_9_L2_v1.2.0.audit from CIS Apache Tomcat 9 Benchmark	CIS Apache Tomcat 9 L2 v1.2.0	Unix
CIS_Cisco_IOS_15_v4.1.1_Level_1.audit from CIS Cisco IOS 15 Benchmark	CIS Cisco IOS 15 L1 v4.1.1	Cisco
CIS_Debian_Linux_9_Workstation_v1.0.1_L1.audit from CIS Debian Linux 9 Benchmark	CIS Debian 9 Workstation L2 v1.0.1	Unix
CIS_IBM_DB2_9_Benchmark_v3.0.1_Level_1_OS_Linux.audit from CIS IBM DB2 9 Benchmark v3.0.1	CIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS Linux	Unix
CIS_IBM_DB2_11_v1.1.0_Level_1_OS_Windows.audit from CIS IBM DB2 11 v1.1.0 Benchmark	CIS IBM DB2 11 v1.1.0 Windows OS Level 1	Windows
MYS8-00-012600 - MySQL database products must be a version supported by the vendor.	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB	SYSTEM AND SERVICES ACQUISITION
OL08-00-030160 - OL 8 must generate audit records for all account creation events that affect "/etc/gshadow".	DISA Oracle Linux 8 STIG v2r4	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MAINTENANCE
SLES-12-020240 - The SUSE operating system must generate audit records for all uses of the privileged functions.	DISA SLES 12 STIG v3r2	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
SLES-15-030000 - The SUSE operating system must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/passwd.	DISA SLES 15 STIG v2r2	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
SLES-15-030640 - The SUSE operating system must generate audit records for all uses of the privileged functions.	DISA SLES 15 STIG v2r2	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search