Item Search

Name	Audit Name	Plugin	Category
1.5.2 Log all Successful and Failed Administrative Logins	CIS Cisco NX-OS L2 v1.0.0	Cisco	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
1.5.2 Log all Successful and Failed Administrative Logins	CIS Cisco NX-OS L1 v1.0.0	Cisco	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
1.14 Ensure 'DNS interception checks enabled' is set to 'Enabled'	CIS Google Chrome L1 v3.0.0	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
4.1.3.2 Ensure system administrator command executions (sudo) are collected - 32 bit	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.2 Ensure system administrator command executions (sudo) are collected - 32 bit auditctl	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.2 Ensure system administrator command executions (sudo) are collected - 64 bit	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.2 Ensure system administrator command executions (sudo) are collected - 64 bit auditctl	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/lastlog	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - rules.d /var/log/lastlog	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - rules.d /var/log/lastlog	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - rules.d /var/run/faillock/	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/log/btmp	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/log/wtmp	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/btmp	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/btmp	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/run/utmp	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator actions (sudolog) are collected	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator actions (sudolog) are collected	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator actions (sudolog) are collected	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator actions (sudolog) are collected - auditctl	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator actions (sudolog) are collected - auditctl	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - auditctl b32 actions	CIS Debian Family Workstation L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.16 Ensure system administrator actions (sudolog) are collected	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.16 Ensure system administrator actions (sudolog) are collected - auditctl	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.17 Ensure system administrator actions (sudolog) are collected	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.17 Ensure system administrator actions (sudolog) are collected	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.17 Ensure system administrator actions (sudolog) are collected	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
4.1.17 Ensure system administrator actions (sudolog) are collected - auditctl	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.17 Ensure system administrator actions (sudolog) are collected - auditctl	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.17 Ensure system administrator actions (sudolog) are collected - auditctl	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
5.3.9 Collect Login and Logout Events - /var/log/btmp	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.3.9 Collect Login and Logout Events - /var/log/faillog	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.3.9 Collect Login and Logout Events - /var/log/lastlog	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.3.9 Collect Login and Logout Events - /var/log/tallylog	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.3.10 Collect Session Initiation Information - /var/log/wtmp	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.3.10 Collect Session Initiation Information - /var/run/utmp	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - 'AUDIT_CHANGE_GROUP'	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - 'AUDIT_CHANGE_GROUP'	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - 'FAILED_LOGIN_GROUP'	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - 'FAILED_LOGIN_GROUP'	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - 'SUCCESSFUL_LOGIN_GROUP'	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - 'SUCCESSFUL_LOGIN_GROUP'	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - AUDIT_CHANGE_GROUP	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - AUDIT_CHANGE_GROUP	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - AUDIT_CHANGE_GROUP	CIS SQL Server 2019 Database L1 AWS RDS v1.3.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - FAILED_LOGIN_GROUP	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - FAILED_LOGIN_GROUP	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - FAILED_LOGIN_GROUP	CIS SQL Server 2019 Database L1 AWS RDS v1.3.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - SUCCESSFUL_LOGIN_GROUP	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.4 Ensure 'SQL Server Audit' is set to capture both 'failed' and 'successful logins' - SUCCESSFUL_LOGIN_GROUP	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search