Item Search

Name	Audit Name	Plugin	Category
1.10.1 Ensure 'logging' is enabled	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	AUDIT AND ACCOUNTABILITY
1.10.2 Ensure 'logging to Serial console' is disabled	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	AUDIT AND ACCOUNTABILITY
1.10.11 Ensure 'logging trap severity ' is greater than or equal to '5'	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
1.10.11 Ensure 'logging trap severity level' is greater than or equal to '5'	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	AUDIT AND ACCOUNTABILITY
3.1.12 Set administrative notification level	CIS IBM DB2 v10 v1.1.0 Windows OS Level 1	Windows	AUDIT AND ACCOUNTABILITY
3.2 Enable security auditing	CIS Apple OSX 10.9 L1 v1.3.0	Unix	AUDIT AND ACCOUNTABILITY
3.3 Configure Security Auditing Flags - 'audit successful/failed administrative events'	CIS Apple OSX 10.9 L1 v1.3.0	Unix	AUDIT AND ACCOUNTABILITY
3.3 Configure Security Auditing Flags - 'audit successful/failed file deletion events'	CIS Apple OSX 10.9 L1 v1.3.0	Unix	AUDIT AND ACCOUNTABILITY
Audit Account Lockout	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Audit Policy Change	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Authentication Policy Change	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Computer Account Management	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Directory Service Access	MSCT Windows Server v20H2 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Directory Service Changes	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit File Share	MSCT Windows Server v2004 MS v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Kerberos Authentication Service	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Kerberos Service Ticket Operations	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit MPSSVC Rule-Level Policy Change	MSCT Windows Server v2004 MS v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit MPSSVC Rule-Level Policy Change	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Other Logon/Logoff Events	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Other Object Access Events	MSCT Windows Server v2004 MS v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Other Object Access Events	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Other Policy Change Events	MSCT Windows Server v20H2 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Other Policy Change Events	MSCT Windows Server v2004 MS v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Other Policy Change Events	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Other System Events	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit PNP Activity	MSCT Windows Server v2004 MS v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Process Creation	MSCT Windows Server v20H2 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Process Creation	MSCT Windows Server v2004 MS v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Security State Change	MSCT Windows Server v2004 MS v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Ensure 'logging buffered severity ' is greater than or equal to '3'	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
Ensure 'logging to monitor' is disabled	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
Ensure 'logging trap severity ' is greater than or equal to '5'	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
Ensure 'logging trap' is enabled	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
Ensure 'logging with timestamps' is enabled - show logging	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
Ensure 'SNMP traps' is enabled - authentication	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
Ensure 'SNMP traps' is enabled - coldstart	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
Ensure 'SNMP traps' is enabled - linkup	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
Ensure email logging is enabled	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
IBM i : Auditing Control (QAUDCTL) - '!= *NONE'	IBM System i Security Reference for V7R1 and V6R1	AS/400	AUDIT AND ACCOUNTABILITY
IBM i : Auditing Control (QAUDCTL) - '!= *NONE'	IBM System i Security Reference for V7R3	AS/400	AUDIT AND ACCOUNTABILITY
IBM i : Auditing Control (QAUDCTL) - '!= *NONE'	IBM System i Security Reference for V7R2	AS/400	AUDIT AND ACCOUNTABILITY
IBM i : Auditing Control (QAUDCTL) - 'NONE\|NOTAVL\|OBJAUD\|AUDLVL\|*NOQTEMP'	IBM iSeries Security Reference v5r4	AS/400	AUDIT AND ACCOUNTABILITY
IBM i : Auditing for New Objects (QCRTOBJAUD) - '*CHANGE'	IBM System i Security Reference for V7R3	AS/400	AUDIT AND ACCOUNTABILITY
IBM i : Auditing for New Objects (QCRTOBJAUD) - '*CHANGE'	IBM System i Security Reference for V7R2	AS/400	AUDIT AND ACCOUNTABILITY
IBM i : Auditing for New Objects (QCRTOBJAUD) - '*NONE'	IBM iSeries Security Reference v5r4	AS/400	AUDIT AND ACCOUNTABILITY
IBM i : Auditing Force Level (QAUDFRCLVL) - '*SYS'	IBM System i Security Reference for V7R3	AS/400	AUDIT AND ACCOUNTABILITY
IBM i : Auditing Level (QAUDLVL) - '*NONE'	IBM iSeries Security Reference v5r4	AS/400	AUDIT AND ACCOUNTABILITY
IBM i : Auditing Level (QAUDLVL) - '*SECURITY'	IBM System i Security Reference for V7R2	AS/400	AUDIT AND ACCOUNTABILITY
IBM i : Auditing Level Extension (QAUDLVL2) - '*NONE'	IBM iSeries Security Reference v5r4	AS/400	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search