Item Search

Name	Audit Name	Plugin	Category
2.2.1 (L1) Ensure 'Access Credential Manager as a trusted caller' is set to 'No One'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	AUDIT AND ACCOUNTABILITY
2.2.1 Ensure 'Access Credential Manager as a trusted caller' is set to 'No One'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	AUDIT AND ACCOUNTABILITY
2.2.1 Ensure 'AUDIT_SYS_OPERATIONS' Is Set to 'TRUE'	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	AUDIT AND ACCOUNTABILITY
2.2.1 Ensure 'AUDIT_SYS_OPERATIONS' Is Set to 'TRUE'	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	AUDIT AND ACCOUNTABILITY
2.2.3 Ensure 'Act as part of the operating system' is set to 'No One'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	AUDIT AND ACCOUNTABILITY
2.2.13 Ensure 'Create permanent shared objects' is set to 'No One'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	AUDIT AND ACCOUNTABILITY
2.2.27 Ensure 'Lock pages in memory' is set to 'No One'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	AUDIT AND ACCOUNTABILITY
2.2.31 Ensure 'Modify an object label' is set to 'No One'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	AUDIT AND ACCOUNTABILITY
3.5.1.3 NIS - remove NIS markers from password and group files - /etc/group	CIS IBM AIX 7.1 L2 v2.1.0	Unix	AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY
3.5.1.3 NIS - remove NIS markers from password and group files - /etc/passwd	CIS IBM AIX 7.1 L2 v2.1.0	Unix	AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY
4.1.3.14 Ensure events that modify user/group information are collected - '/etc/security/opasswd'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.14 Ensure events that modify user/group information are collected - auditctl '/etc/security/opasswd'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - /etc/group	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - /etc/passwd	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - /etc/shadow	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/group	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/group	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/passwd	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/security/opasswd	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/shadow	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.5 Ensure events that modify user/group information are collected - /etc/shadow	CIS SUSE Linux Enterprise Workstation 11 L2 v2.1.1	Unix	AUDIT AND ACCOUNTABILITY
4.1.5 Ensure events that modify user/group information are collected - /etc/shadow	CIS SUSE Linux Enterprise Server 11 L2 v2.1.1	Unix	AUDIT AND ACCOUNTABILITY
4.1.5 Ensure events that modify user/group information are collected - auditctl /etc/security/opasswd	CIS SUSE Linux Enterprise Server 11 L2 v2.1.1	Unix	AUDIT AND ACCOUNTABILITY
4.1.5 Ensure events that modify user/group information are collected - auditctl /etc/shadow	CIS SUSE Linux Enterprise Server 11 L2 v2.1.1	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify user/group information are collected - auditctl /etc/security/opasswd	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify user/group information are collected - auditctl /etc/shadow	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure changes to system administration scope (sudoers) is collected - auditctl sudoers.d	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure changes to system administration scope (sudoers) is collected - sudoers.d	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure changes to system administration scope (sudoers) is collected - sudoers.d	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure changes to system administration scope (sudoers) is collected - /etc/sudoers	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure changes to system administration scope (sudoers) is collected - /etc/sudoers.d	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure changes to system administration scope (sudoers) is collected - auditctl /etc/sudoers	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure changes to system administration scope (sudoers) is collected - auditctl /etc/sudoers.d	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.16 Ensure changes to system administration scope (sudoers) is collected - /etc/sudoers.d	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.16 Ensure changes to system administration scope (sudoers) is collected - auditctl /etc/sudoers	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.16 Ensure changes to system administration scope (sudoers) is collected - auditctl /etc/sudoers.d	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.1 Ensure changes to system administration scope (sudoers) is collected	CIS CentOS Linux 7 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.1 Ensure changes to system administration scope (sudoers) is collected	CIS Ubuntu Linux 20.04 LTS Server L2 v2.0.1	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.1 Ensure changes to system administration scope (sudoers) is collected	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.1 Ensure changes to system administration scope (sudoers) is collected	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.1 Ensure changes to system administration scope (sudoers) is collected	CIS Amazon Linux 2 v3.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.8 Ensure events that modify user/group information are collected	CIS Rocky Linux 8 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.8 Ensure events that modify user/group information are collected	CIS Rocky Linux 8 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.8 Ensure events that modify user/group information are collected	CIS Ubuntu Linux 20.04 LTS Server L2 v2.0.1	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.8 Ensure events that modify user/group information are collected	CIS Oracle Linux 7 v4.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.8 Ensure events that modify user/group information are collected	CIS AlmaLinux OS 8 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
6.1.3 Ensure the 'SYSTEM GRANT' Audit Option Is Enabled	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.12 Ensure the 'GRANT ANY PRIVILEGE' Audit Option Is Enabled	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.12 Ensure the 'GRANT ANY PRIVILEGE' Audit Option Is Enabled	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.3.3.8 Ensure events that modify user/group information are collected	CIS Ubuntu Linux 22.04 LTS v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search