Item Search

Name	Audit Name	Plugin	Category
1.1.2 Ensure 'Enable Log on High DP Load' is enabled	CIS Palo Alto Firewall 8 Benchmark L1 v1.0.0	Palo_Alto	AUDIT AND ACCOUNTABILITY
3.1.10 Ensure the correct syslog facility is selected	CIS PostgreSQL 11 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.10 Ensure the correct syslog facility is selected	CIS PostgreSQL 9.5 DB v1.1.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2 Ensure persistent logging is configured for all ESXi hosts	CIS VMware ESXi 6.5 v1.0.0 Level 1	VMware	AUDIT AND ACCOUNTABILITY
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - audit.log	CIS PostgreSQL 10 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - audit.log	CIS PostgreSQL 11 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - pgaudit installed	CIS PostgreSQL 10 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - pgaudit installed	CIS PostgreSQL 11 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2.4 Ensure suspicious packets are logged - files net.ipv4.conf.all.log_martians = 1	CIS Debian 9 Server L1 v1.0.1	Unix	AUDIT AND ACCOUNTABILITY
3.2.4 Ensure suspicious packets are logged - files net.ipv4.conf.default.log_martians = 1	CIS Debian 9 Workstation L1 v1.0.1	Unix	AUDIT AND ACCOUNTABILITY
3.2.4 Ensure suspicious packets are logged - net.ipv4.conf.all.log_martians = 1	CIS Debian 9 Server L1 v1.0.1	Unix	AUDIT AND ACCOUNTABILITY
3.2.4 Ensure suspicious packets are logged - net.ipv4.conf.default.log_martians = 1	CIS Debian 9 Server L1 v1.0.1	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - 'net.ipv4.conf.default.log_martians' (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - files net.ipv4.conf.all.log_martians = 1	CIS Debian Family Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - files net.ipv4.conf.default.log_martians = 1	CIS Debian Family Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - files net.ipv4.conf.default.log_martians = 1	CIS Debian Family Workstation L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.3.4 Ensure suspicious packets are logged - net.ipv4.conf.default.log_martians = 1	CIS Debian Family Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.1 Ensure auditd is installed	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.1 Ensure auditd is installed	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.1 Ensure auditd is installed - audit-libs	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.2 Ensure auditd service is enabled	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.2 Ensure auditd service is enabled and running - running	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.3 Ensure auditing for processes that start prior to auditd is enabled	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.4 Ensure audit_backlog_limit is sufficient	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.4 Ensure audit_backlog_limit is sufficient	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.4 Ensure audit_backlog_limit is sufficient	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.4 Ensure audit_backlog_limit is sufficient	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.3 Ensure journald is configured to write logfiles to persistent disk	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.4 Ensure audit_backlog_limit is sufficient	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.4 Ensure audit_backlog_limit is sufficient	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.1 Ensure rsyslog is installed	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.1 Ensure rsyslog is installed	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.2 Ensure rsyslog Service is enabled	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - '.;mail.none;news.none -/var/log/messages'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - '*.crit /var/log/warn'	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - 'auth,authpriv.* /var/log/auth.log'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - 'local2,local3.* -/var/log/localmessages'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - 'local2,local3.* -/var/log/localmessages'	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - 'mail.err /var/log/mail.err'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - 'news.crit -/var/log/news/news.crit'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.3 Ensure logging is configured - 'news.err -/var/log/news/news.err'	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.3 Ensure journald is configured to write logfiles to persistent disk	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.3 Ensure journald is configured to write logfiles to persistent disk	CIS Debian Family Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.1 Ensure that system activity is audited	CIS MongoDB 5 L1 OS Windows v1.2.0	Windows	AUDIT AND ACCOUNTABILITY
5.1 Ensure that system activity is audited	CIS MongoDB 4 L1 OS Linux v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.3.2 Enable auditd Service	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
5.3.6 Ensure SSH LogLevel is appropriate - sshd	CIS CentOS 6 Server L1 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.3.6 Ensure SSH LogLevel is appropriate - sshd	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
6.1.2 Ensure Accounting of Logins	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	AUDIT AND ACCOUNTABILITY
6.1.3 Ensure Accounting of Configuration Changes	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search