Detections
Analytics

Item Search

NameAudit NamePluginCategory
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - 'AUDIT_CHANGE_GROUP'CIS SQL Server 2012 Database L1 AWS RDS v1.6.0MS_SQLDB

AUDIT AND ACCOUNTABILITY

5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - 'SUCCESSFUL_LOGIN_GROUP'CIS SQL Server 2012 Database L1 AWS RDS v1.6.0MS_SQLDB

AUDIT AND ACCOUNTABILITY

5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - 'SUCCESSFUL_LOGIN_GROUP'CIS SQL Server 2012 Database L1 DB v1.6.0MS_SQLDB

AUDIT AND ACCOUNTABILITY

6.3.4.4 Ensure audit log files group owner is configuredCIS SUSE Linux Enterprise 15 v2.0.1 L2 WorkstationUnix

ACCESS CONTROL, MEDIA PROTECTION

AOSX-15-001029 - The macOS system must allocate audit record storage capacity to store at least one week's worth of audit records when audit records are not immediately sent to a central audit record storage facility.DISA STIG Apple Mac OSX 10.15 v1r10Unix

AUDIT AND ACCOUNTABILITY

APPL-13-001029 - The macOS system must allocate audit record storage capacity to store at least seven days of audit records when audit records are not immediately sent to a central audit record storage facility.DISA STIG Apple macOS 13 v1r5Unix

AUDIT AND ACCOUNTABILITY

Big Sur - Configure Audit Log Files to be Owned by RootNIST macOS Big Sur v1.4.0 - 800-171Unix

AUDIT AND ACCOUNTABILITY

Big Sur - Configure Audit Log Files to be Owned by RootNIST macOS Big Sur v1.4.0 - 800-53r5 HighUnix

AUDIT AND ACCOUNTABILITY

Big Sur - Configure Audit Log Files to be Owned by RootNIST macOS Big Sur v1.4.0 - 800-53r5 ModerateUnix

AUDIT AND ACCOUNTABILITY

Big Sur - Configure Audit Log Folder to Not Contain Access Control ListsNIST macOS Big Sur v1.4.0 - 800-171Unix

AUDIT AND ACCOUNTABILITY

Big Sur - Configure Audit Log Folder to Not Contain Access Control ListsNIST macOS Big Sur v1.4.0 - 800-53r5 HighUnix

AUDIT AND ACCOUNTABILITY

Big Sur - Configure Audit Retention to a Minimum of Seven DaysNIST macOS Big Sur v1.4.0 - 800-53r5 ModerateUnix

AUDIT AND ACCOUNTABILITY

Big Sur - Configure Audit Retention to a Minimum of Seven DaysNIST macOS Big Sur v1.4.0 - CNSSI 1253Unix

AUDIT AND ACCOUNTABILITY

Catalina - Configure Audit Log Files to be Owned by RootNIST macOS Catalina v1.5.0 - 800-53r4 HighUnix

AUDIT AND ACCOUNTABILITY

Catalina - Configure Audit Log Files to be Owned by RootNIST macOS Catalina v1.5.0 - 800-53r5 LowUnix

AUDIT AND ACCOUNTABILITY

Catalina - Configure Audit Log Files to be Owned by RootNIST macOS Catalina v1.5.0 - 800-53r5 ModerateUnix

AUDIT AND ACCOUNTABILITY

Catalina - Configure Audit Log Files to be Owned by RootNIST macOS Catalina v1.5.0 - CNSSI 1253Unix

AUDIT AND ACCOUNTABILITY

Catalina - Configure Audit Log Folder to Not Contain Access Control ListsNIST macOS Catalina v1.5.0 - 800-53r5 HighUnix

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

Catalina - Configure Audit Log Folder to Not Contain Access Control ListsNIST macOS Catalina v1.5.0 - 800-53r4 HighUnix

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

Catalina - Configure Audit Log Folder to Not Contain Access Control ListsNIST macOS Catalina v1.5.0 - All ProfilesUnix

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

Catalina - Configure Audit Log Folders to be Owned by RootNIST macOS Catalina v1.5.0 - 800-53r4 LowUnix

AUDIT AND ACCOUNTABILITY

Catalina - Configure Audit Log Folders to be Owned by RootNIST macOS Catalina v1.5.0 - 800-53r5 ModerateUnix

AUDIT AND ACCOUNTABILITY

Catalina - Configure Audit Retention to a Minimum of Seven DaysNIST macOS Catalina v1.5.0 - 800-53r4 LowUnix

AUDIT AND ACCOUNTABILITY

CISC-ND-000330 - The Cisco switch must be configured to generate audit records containing the full-text recording of privileged commands.DISA Cisco NX OS Switch NDM STIG v3r3Cisco

AUDIT AND ACCOUNTABILITY

DB2X-00-011300 - DB2 must generate audit records when unsuccessful attempts to delete categorized information (e.g., classification levels/security levels) occurDISA STIG IBM DB2 v10.5 LUW v2r1 DatabaseIBM_DB2DB

AUDIT AND ACCOUNTABILITY

DISA_STIG_JRE_8_Windows_v2r1.audit for DISA Oracle Java Runtime Environment (JRE) Version 8 for Windows v2r1 STIGDISA STIG Oracle JRE 8 Windows v2r1Windows
FNFG-FW-000055 - The FortiGate firewall must protect the traffic log from unauthorized modification of local log records.DISA Fortigate Firewall STIG v1r3FortiGate

AUDIT AND ACCOUNTABILITY

GEN002751 - The audit system must be configured to audit account modification - '/etc/security/audit/config USER_Change exists'DISA STIG AIX 6.1 v1r14Unix

ACCESS CONTROL

GEN002751 - The audit system must be configured to audit account modification - '/etc/security/audit/config USER_Change exists'DISA STIG AIX 5.3 v1r2Unix

ACCESS CONTROL

GEN002751 - The audit system must be configured to audit account modification - '/etc/security/audit/events USER_Change exists'DISA STIG AIX 5.3 v1r2Unix

ACCESS CONTROL

GEN002753 - The audit system must be configured to audit account termination - '/etc/security/audit/config USER_Remove exists'DISA STIG AIX 6.1 v1r14Unix

ACCESS CONTROL

GEN002753 - The audit system must be configured to audit account termination - '/etc/security/audit/events USER_Remove exists'DISA STIG AIX 5.3 v1r2Unix

ACCESS CONTROL

Monterey - Configure Audit Log Files to be Owned by RootNIST macOS Monterey v1.0.0 - 800-171Unix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Log Files to be Owned by RootNIST macOS Monterey v1.0.0 - 800-53r4 HighUnix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Log Files to be Owned by RootNIST macOS Monterey v1.0.0 - 800-53r4 LowUnix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Log Files to be Owned by RootNIST macOS Monterey v1.0.0 - 800-53r4 ModerateUnix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Log Files to be Owned by RootNIST macOS Monterey v1.0.0 - CNSSI 1253Unix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Log Folder to Not Contain Access Control ListsNIST macOS Monterey v1.0.0 - 800-171Unix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Log Folder to Not Contain Access Control ListsNIST macOS Monterey v1.0.0 - 800-53r5 HighUnix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Log Folders to be Owned by RootNIST macOS Monterey v1.0.0 - All ProfilesUnix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Retention to a Minimum of Seven DaysNIST macOS Monterey v1.0.0 - 800-53r4 ModerateUnix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Retention to a Minimum of Seven DaysNIST macOS Monterey v1.0.0 - 800-53r5 HighUnix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Retention to a Minimum of Seven DaysNIST macOS Monterey v1.0.0 - 800-53r5 LowUnix

AUDIT AND ACCOUNTABILITY

Monterey - Configure Audit Retention to a Minimum of Seven DaysNIST macOS Monterey v1.0.0 - CNSSI 1253Unix

AUDIT AND ACCOUNTABILITY

PANW-IP-000058 - The Palo Alto Networks security platform must off-load log records to a centralized log server in real-time.DISA STIG Palo Alto IDPS v3r2Palo_Alto

AUDIT AND ACCOUNTABILITY

PHTN-67-000050 - The Photon operating system audit files and directories must have correct permissions - auditctlDISA STIG VMware vSphere 6.7 Photon OS v1r6Unix

AUDIT AND ACCOUNTABILITY

PHTN-67-000050 - The Photon operating system audit files and directories must have correct permissions - auditdDISA STIG VMware vSphere 6.7 Photon OS v1r6Unix

AUDIT AND ACCOUNTABILITY

PHTN-67-000050 - The Photon operating system audit files and directories must have correct permissions - aureportDISA STIG VMware vSphere 6.7 Photon OS v1r6Unix

AUDIT AND ACCOUNTABILITY

SYMP-AG-000220 - Symantec ProxySG must be configured to send the access logs to the centralized log server continuously.DISA Symantec ProxySG Benchmark ALG v1r3BlueCoat

AUDIT AND ACCOUNTABILITY

WN19-AU-000010 - Windows Server 2019 audit records must be backed up to a different system or media than the system being audited.DISA Microsoft Windows Server 2019 STIG v3r4Windows

AUDIT AND ACCOUNTABILITY