Item Search

Name	Audit Name	Plugin	Category
1.5.2 Log all Successful and Failed Administrative Logins	CIS Cisco NX-OS L2 v1.0.0	Cisco	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
1.5.2 Log all Successful and Failed Administrative Logins	CIS Cisco NX-OS L1 v1.0.0	Cisco	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	ACCESS CONTROL
2.3.11.6 Ensure 'Network security: Force logoff when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	ACCESS CONTROL
4.1.7 Ensure login and logout events are collected - auditctl /var/log/lastlog	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/run/faillock/	CIS CentOS 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/run/faillock/	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/run/faillock/	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - rules.d /var/log/lastlog	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - rules.d /var/log/lastlog	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - rules.d /var/log/lastlog	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - rules.d /var/run/faillock/	CIS CentOS 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - rules.d /var/run/faillock/	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure login and logout events are collected - /var/log/faillock	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure login and logout events are collected - /var/log/faillog	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/log/btmp	CIS CentOS 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/log/btmp	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/log/btmp	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/log/wtmp	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/log/wtmp	CIS CentOS 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/log/wtmp	CIS CentOS 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/log/wtmp	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/run/utmp	CIS CentOS 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/run/utmp	CIS CentOS 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/run/utmp	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/btmp	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/btmp	CIS CentOS 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/btmp	CIS CentOS 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/btmp	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/btmp	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/wtmp	CIS CentOS 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/wtmp	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/wtmp	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/run/utmp	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/run/utmp	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.9 Ensure session initiation information is collected - /var/run/utmp	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.9 Ensure session initiation information is collected - auditctl /var/log/btmp	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.9 Ensure session initiation information is collected - auditctl /var/log/wtmp	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.9 Ensure session initiation information is collected - auditctl /var/run/utmp	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.2.6 Ensure SSH MaxAuthTries is set to 4 or less	CIS Debian Family Server L1 v1.0.0	Unix	ACCESS CONTROL
5.2.7 Ensure SSH MaxAuthTries is set to 4 or less	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	ACCESS CONTROL
5.2.7 Ensure SSH MaxAuthTries is set to 4 or less	CIS Debian 9 Server L1 v1.0.1	Unix	ACCESS CONTROL
5.2.7 Ensure SSH MaxAuthTries is set to 4 or less	CIS Debian 9 Workstation L1 v1.0.1	Unix	ACCESS CONTROL
5.2.7 Ensure SSH MaxAuthTries is set to 4 or less	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
5.3.9 Collect Login and Logout Events - /var/log/btmp	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.3.9 Collect Login and Logout Events - /var/log/faillog	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.3.9 Collect Login and Logout Events - /var/log/lastlog	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.3.9 Collect Login and Logout Events - /var/log/tallylog	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.3.10 Collect Session Initiation Information - /var/log/wtmp	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.3.10 Collect Session Initiation Information - /var/run/utmp	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search