Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.4.3.1 Ensure 'aaa authentication enable console' is configured correctlyCIS Cisco ASA 9.x Firewall L1 v1.1.0Cisco

ACCESS CONTROL, CONFIGURATION MANAGEMENT

2.2.22 Ensure 'Deny access to this computer from the network' to include 'Guests, Enterprise Admins Group, Domains Admins Group, Local account, and member of Administrators group' (STIG MS only)CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

ACCESS CONTROL

2.2.24 Ensure 'Deny access to this computer from the network' to include 'Guests, Enterprise Admins Group, Domains Admins Group, Local account, and member of Administrators group' (STIG MS only)CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MSWindows

ACCESS CONTROL

2.2.25 Ensure 'Deny access to this computer from the network' to include 'Guests, Enterprise Admins Group, Domains Admins Group, Local account, and member of Administrators group' (STIG MS only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MSWindows

ACCESS CONTROL

3.8 Ensure only the default permissions specified by Microsoft are granted to the public server roleCIS Microsoft SQL Server 2019 v1.5.0 L1 AWS RDSMS_SQLDB

ACCESS CONTROL, MEDIA PROTECTION

4.2.1.1 Ensure rsyslog is installedCIS Distribution Independent Linux Workstation L1 v2.0.0Unix

AUDIT AND ACCOUNTABILITY

4.9 Ensure 'sql_mode' Contains 'STRICT_ALL_TABLES'CIS Oracle MySQL Enterprise Edition 8.0 v1.4.0 L2 DatabaseMySQLDB

PLANNING, SYSTEM AND SERVICES ACQUISITION

4.9 Ensure 'sql_mode' Contains 'STRICT_ALL_TABLES'CIS Oracle MySQL Community Server 8.4 v1.0.0 L2 DatabaseMySQLDB

PLANNING, SYSTEM AND SERVICES ACQUISITION

5.3.16 Collect Changes to System Administration Scope (sudoers)CIS Red Hat Enterprise Linux 5 L2 v2.2.1Unix

CONFIGURATION MANAGEMENT

20.5 (L1) Ensure 'Operating System, Browser, and Endpoint Protection are updated'CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events.DISA STIG AIX 7.x v3r1Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, MAINTENANCE

AOSX-13-002110 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.DISA STIG Apple Mac OSX 10.13 v2r5Unix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

CIS_Microsoft_Windows_Server_2016_STIG_v3.0.0_L1_DC.audit from CIS Microsoft Windows Server 2016 STIG Benchmark v3.0.0CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain ControllerWindows
CIS_Microsoft_Windows_Server_2016_STIG_v3.0.0_NG_DC.audit from CIS Microsoft Windows Server 2016 STIG Benchmark v3.0.0CIS Microsoft Windows Server 2016 STIG v3.0.0 NG DCWindows
CIS_Microsoft_Windows_Server_2016_STIG_v3.0.0_NG_MS.audit from CIS Microsoft Windows Server 2016 STIG Benchmark v3.0.0CIS Microsoft Windows Server 2016 STIG v3.0.0 NG MSWindows
CIS_Microsoft_Windows_Server_2016_STIG_v3.0.0_STIG_MS.audit from CIS Microsoft Windows Server 2016 STIG Benchmark v3.0.0CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows
CIS_Microsoft_Windows_Server_2019_STIG_v3.0.0_L1_Domain_Controller.audit from CIS Microsoft Windows Server 2019 STIG Benchmark v3.0.0CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DCWindows
CIS_Microsoft_Windows_Server_2019_STIG_v3.0.0_L1_Member_Server.audit from CIS Microsoft Windows Server 2019 STIG Benchmark v3.0.0CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MSWindows
CIS_Microsoft_Windows_Server_2019_STIG_v3.0.0_L2_Member_Server.audit from CIS Microsoft Windows Server 2019 STIG Benchmark v3.0.0CIS Microsoft Windows Server 2019 STIG v3.0.0 L2 MSWindows
CIS_Microsoft_Windows_Server_2019_STIG_v3.0.0_STIG_Domain_Controller.audit from CIS Microsoft Windows Server 2019 STIG Benchmark v3.0.0CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DCWindows
CIS_Microsoft_Windows_Server_2022_STIG_v2.0.0_L1_Domain_Controller.audit from CIS Microsoft Windows Server 2022 STIG Benchmark v2.0.0CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain ControllerWindows
CIS_Microsoft_Windows_Server_2022_STIG_v2.0.0_L2_Domain_Controller.audit from CIS Microsoft Windows Server 2022 STIG Benchmark v2.0.0CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Domain ControllerWindows
CIS_Microsoft_Windows_Server_2022_STIG_v2.0.0_STIG_Domain_Controller.audit from CIS Microsoft Windows Server 2022 STIG Benchmark v2.0.0CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DCWindows
CIS_Microsoft_Windows_Server_2022_STIG_v2.0.0_STIG_Member_Server.audit from CIS Microsoft Windows Server 2022 STIG Benchmark v2.0.0CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MSWindows
EPAS-00-001000 - The EDB Postgres Advanced Server must provide audit record generation capability for DOD-defined auditable events within all EDB Postgres Advanced Server/database components.EnterpriseDB PostgreSQL Advanced Server DB v2r1PostgreSQLDB

AUDIT AND ACCOUNTABILITY

MADB-10-002100 - The audit information produced by MariaDB must be protected from unauthorized modification.DISA MariaDB Enterprise 10.x v2r3 DBMySQLDB

AUDIT AND ACCOUNTABILITY

O112-BP-021200 - Access to default accounts used to support replication must be restricted to authorized DBAs.DISA STIG Oracle 11.2g v2r5 DatabaseOracleDB

CONFIGURATION MANAGEMENT

O121-BP-021200 - Access to default accounts used to support replication must be restricted to authorized DBAs.DISA STIG Oracle 12c v3r2 DatabaseOracleDB

CONFIGURATION MANAGEMENT

O121-C2-009500 - The system must protect audit information from unauthorized deletion.DISA STIG Oracle 12c v3r2 DatabaseOracleDB

AUDIT AND ACCOUNTABILITY

OL08-00-030602 - OL 8 must allocate an "audit_backlog_limit" of sufficient size to capture processes that start prior to the audit daemon.DISA Oracle Linux 8 STIG v2r4Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

PPS9-00-008100 - The EDB Postgres Advanced Server must provide an immediate real-time alert to appropriate support staff of all audit log failures.EDB PostgreSQL Advanced Server DB Audit v2r3PostgreSQLDB

AUDIT AND ACCOUNTABILITY

RHEL-08-030250 - Successful/unsuccessful uses of the chage command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v2r3Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030300 - Successful/unsuccessful uses of the mount command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v2r3Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030330 - Successful/unsuccessful uses of the setfacl command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v2r3Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030340 - Successful/unsuccessful uses of the pam_timestamp_check command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v2r3Unix

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 14'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 18'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 104'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 106'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 108'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 111'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 112'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 113'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 117'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 128'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 129'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 131'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 133'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 152'DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

AUDIT AND ACCOUNTABILITY

TiMOS/SR-OS : OS Version is up to dateTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

CONFIGURATION MANAGEMENT