Item Search

Name	Audit Name	Plugin	Category
2.3 Ensure the logging level is set to 'info'	CIS Docker v1.7.0 L1 Docker - Linux	Unix	AUDIT AND ACCOUNTABILITY
2.3.2.1 (L1) Ensure 'Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
2.3.2.1 (L1) Ensure 'Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
2.3.2.1 (L1) Ensure 'Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings' is set to 'Enabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
2.3.2.1 (L1) Ensure 'Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
2.3.2.1 (L1) Ensure 'Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
3.3.9 Ensure suspicious packets are logged	CIS CentOS Linux 7 v4.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.11 Ensure session initiation information is collected	CIS CentOS Linux 8 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.11 Ensure session initiation information is collected	CIS Fedora 28 Family Linux Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.11 Ensure session initiation information is collected	CIS Fedora 28 Family Linux Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.2 Ensure Advanced IIS logging is enabled	CIS IIS 10 v1.2.1 Level 1	Windows	AUDIT AND ACCOUNTABILITY
5.2.3.11 Ensure session initiation information is collected	CIS Amazon Linux 2023 Server L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.11 Ensure session initiation information is collected	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
17.1.1 (L1) Ensure 'Audit Credential Validation' is set to 'Success and Failure'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	AUDIT AND ACCOUNTABILITY
17.2.2 (L1) Ensure 'Audit Security Group Management' is set to include 'Success'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.2.2 (L1) Ensure 'Audit Security Group Management' is set to include 'Success'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
17.2.4 Ensure 'Audit Security Group Management' is set to include 'Success' - Success	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.2.6 Ensure 'Audit Security Group Management' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.2.6 Ensure 'Audit Security Group Management' is set to include 'Success'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.5.1 Ensure 'Audit Account Lockout' is set to include 'Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.5.1 Ensure 'Audit Account Lockout' is set to include 'Failure'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.5.2 (L1) Ensure 'Audit Logoff' is set to include 'Success'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.5.3 (L1) Ensure 'Audit Logon' is set to 'Success and Failure'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.5.3 Ensure 'Audit Logoff' is set to include 'Success'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.5.3 Ensure 'Audit Logoff' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	AUDIT AND ACCOUNTABILITY
17.5.3 Ensure 'Audit Logoff' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.5.3 Ensure 'Audit Logoff' is set to include 'Success'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.5.4 Ensure 'Audit Logon' is set to 'Success and Failure'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.5.4 Ensure 'Audit Logon' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	AUDIT AND ACCOUNTABILITY
17.5.4 Ensure 'Audit Logon' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.5.5 (L1) Ensure 'Audit Other Logon/Logoff Events' is set to 'Success and Failure'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
17.5.5 (L1) Ensure 'Audit Special Logon' is set to include 'Success'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.5.5 Ensure 'Audit Other Logon/Logoff Events' is set to 'Success and Failure'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.5.6 Ensure 'Audit Special Logon' is set to include 'Success'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.5.6 Ensure 'Audit Special Logon' is set to include 'Success'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.6.2 (L1) Ensure 'Audit File Share' is set to 'Success and Failure'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
17.6.2 Ensure 'Audit File Share' is set to 'Success and Failure'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	AUDIT AND ACCOUNTABILITY
17.7.1 (L1) Ensure 'Audit Audit Policy Change' is set to include 'Success'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
17.7.1 Ensure 'Audit Audit Policy Change' is set to include 'Success'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.7.1 Ensure 'Audit Audit Policy Change' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	AUDIT AND ACCOUNTABILITY
17.7.1 Ensure 'Audit Audit Policy Change' is set to include 'Success'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.7.2 (L1) Ensure 'Audit Authentication Policy Change' is set to include 'Success'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.7.2 Ensure 'Audit Authentication Policy Change' is set to include 'Success'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.7.3 (L1) Ensure 'Audit Authorization Policy Change' is set to include 'Success'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.7.3 Ensure 'Audit Audit Policy Change' is set to include 'Success and Failure' (STIG only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.7.3 Ensure 'Audit Authentication Policy Change' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.7.3 Ensure 'Audit Authentication Policy Change' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
17.7.4 Ensure 'Audit Authorization Policy Change' is set to include 'Success'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.7.4 Ensure 'Audit Authorization Policy Change' is set to include 'Success'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search