| DB2X-00-002600 - DB2 must protect its audit configuration from unauthorized modification | DISA STIG IBM DB2 v10.5 LUW v2r1 Database | IBM_DB2DB | AUDIT AND ACCOUNTABILITY |
| EP11-00-003000 - The EDB Postgres Advanced Server must protect its audit configuration from unauthorized modification. | EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r2 | Windows | AUDIT AND ACCOUNTABILITY |
| F5BI-LT-000063 - The BIG-IP Core implementation must be configured to protect audit tools from unauthorized modification. | DISA F5 BIG-IP Local Traffic Manager STIG v2r3 | F5 | AUDIT AND ACCOUNTABILITY |
| F5BI-LT-000139 - The BIG-IP Core implementation must be configured to activate a session lock to conceal information previously visible on the display for connections to virtual servers. | DISA F5 BIG-IP Local Traffic Manager STIG v2r3 | F5 | AUDIT AND ACCOUNTABILITY |
| FGFW-ND-000140 - The FortiGate device must protect audit tools from unauthorized modification. | DISA Fortigate Firewall NDM STIG v1r4 | FortiGate | AUDIT AND ACCOUNTABILITY |
| MADB-10-002400 - MariaDB must protect its audit configuration from unauthorized modification. | DISA MariaDB Enterprise 10.x v1r2 DB | MySQLDB | AUDIT AND ACCOUNTABILITY |
| MD3X-00-000220 - MongoDB must protect its audit features from unauthorized access. | DISA STIG MongoDB Enterprise Advanced 3.x v2r1 OS | Unix | AUDIT AND ACCOUNTABILITY |
| MD4X-00-000300 - MongoDB must protect its audit features from unauthorized access. | DISA STIG MongoDB Enterprise Advanced 4.x v1r2 OS | Unix | AUDIT AND ACCOUNTABILITY |
| MYS8-00-008100 - The MySQL Database Server 8.0 must protect its audit configuration from unauthorized modification | DISA Oracle MySQL 8.0 v1r4 DB | MySQLDB | AUDIT AND ACCOUNTABILITY |
| O112-C2-009700 - The DBMS must protect audit tools from unauthorized modification. | DISA STIG Oracle 11.2g v2r3 Database | OracleDB | AUDIT AND ACCOUNTABILITY |
| O121-C2-009700 - The system must protect audit tools from unauthorized modification. | DISA STIG Oracle 12c v2r8 Database | OracleDB | AUDIT AND ACCOUNTABILITY |
| OL6-00-000279 - The system package management tool must verify ownership on all files and directories associated with the audit package. | DISA STIG Oracle Linux 6 v2r7 | Unix | AUDIT AND ACCOUNTABILITY |
| OL08-00-030630 - OL 8 audit tools must be owned by root. | DISA Oracle Linux 8 STIG v1r8 | Unix | AUDIT AND ACCOUNTABILITY |
| OL08-00-030640 - OL 8 audit tools must be group-owned by root. | DISA Oracle Linux 8 STIG v1r8 | Unix | AUDIT AND ACCOUNTABILITY |
| PGS9-00-012200 - PostgreSQL must protect its audit configuration from unauthorized modification - log_file_mode | DISA STIG PostgreSQL 9.x on RHEL OS v2r3 | Unix | AUDIT AND ACCOUNTABILITY |
| PGS9-00-012200 - PostgreSQL must protect its audit configuration from unauthorized modification - postgresql.conf | DISA STIG PostgreSQL 9.x on RHEL OS v2r3 | Unix | AUDIT AND ACCOUNTABILITY |
| PHTN-30-000048 - The Photon operating system must protect audit tools from unauthorized modification and deletion. | DISA STIG VMware vSphere 7.0 Photon OS v1r2 | Unix | AUDIT AND ACCOUNTABILITY |
| PHTN-67-000051 - The Photon operating system must protect audit tools from unauthorized modification - auditctl | DISA STIG VMware vSphere 6.7 Photon OS v1r6 | Unix | AUDIT AND ACCOUNTABILITY |
| PHTN-67-000051 - The Photon operating system must protect audit tools from unauthorized modification - auditd | DISA STIG VMware vSphere 6.7 Photon OS v1r6 | Unix | AUDIT AND ACCOUNTABILITY |
| PHTN-67-000051 - The Photon operating system must protect audit tools from unauthorized modification - aureport | DISA STIG VMware vSphere 6.7 Photon OS v1r6 | Unix | AUDIT AND ACCOUNTABILITY |
| PHTN-67-000051 - The Photon operating system must protect audit tools from unauthorized modification - ausearch | DISA STIG VMware vSphere 6.7 Photon OS v1r6 | Unix | AUDIT AND ACCOUNTABILITY |
| PHTN-67-000051 - The Photon operating system must protect audit tools from unauthorized modification - autrace | DISA STIG VMware vSphere 6.7 Photon OS v1r6 | Unix | AUDIT AND ACCOUNTABILITY |
| PPS9-00-003000 - The EDB Postgres Advanced Server must protect its audit configuration from unauthorized modification. | EDB PostgreSQL Advanced Server OS Linux Audit v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| RHEL-06-000279 - The system package management tool must verify ownership on all files and directories associated with the audit package. | DISA Red Hat Enterprise Linux 6 STIG v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| SLES-15-030620 - The SUSE operating system audit tools must have the proper permissions configured to protect against unauthorized access. | DISA SLES 15 STIG v1r12 | Unix | AUDIT AND ACCOUNTABILITY |
| SOL-11.1-020040 - The operating system must protect audit tools from unauthorized modification. | DISA STIG Solaris 11 SPARC v2r9 | Unix | AUDIT AND ACCOUNTABILITY |
| SOL-11.1-020040 - The operating system must protect audit tools from unauthorized modification. | DISA STIG Solaris 11 X86 v2r9 | Unix | AUDIT AND ACCOUNTABILITY |
| SQL2-00-015800 - The OS must limit privileges to change SQL Server software resident within software libraries (including privileged programs) - 'binn' | DISA STIG SQL Server 2012 Database OS Audit v1r20 | Windows | AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT |
| SQL4-00-014000 - SQL Server and/or the operating system must protect its audit configuration from unauthorized modification. | DISA STIG SQL Server 2014 Instance OS Audit v2r3 | Windows | AUDIT AND ACCOUNTABILITY |
| SQL6-D0-006300 - SQL Server must protect its audit configuration from authorized and unauthorized access and modification. | DISA STIG SQL Server 2016 Instance DB Audit v2r11 | MS_SQLDB | AUDIT AND ACCOUNTABILITY |
| SYMP-NM-000120 - Symantec ProxySG must protect the Web Management Console, SSH, and command line interface (CLI) from unauthorized modification. | DISA Symantec ProxySG Benchmark NDM v1r2 | BlueCoat | AUDIT AND ACCOUNTABILITY |
| UBTU-16-020180 - Audit tools must have a mode of 0755 or less permissive - audispd | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | AUDIT AND ACCOUNTABILITY |
| UBTU-16-020180 - Audit tools must have a mode of 0755 or less permissive - auditctl | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | AUDIT AND ACCOUNTABILITY |
| UBTU-16-020180 - Audit tools must have a mode of 0755 or less permissive - auditd | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | AUDIT AND ACCOUNTABILITY |
| UBTU-16-020180 - Audit tools must have a mode of 0755 or less permissive - aureport | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | AUDIT AND ACCOUNTABILITY |
| UBTU-16-020180 - Audit tools must have a mode of 0755 or less permissive - ausearch | DISA STIG Ubuntu 16.04 LTS v2r3 | Unix | AUDIT AND ACCOUNTABILITY |
| UBTU-20-010199 - The Ubuntu operating system must configure audit tools with a mode of 0755 or less permissive. | DISA STIG Ubuntu 20.04 LTS v1r10 | Unix | AUDIT AND ACCOUNTABILITY |
| UBTU-20-010200 - The Ubuntu operating system must configure audit tools to be owned by root. | DISA STIG Ubuntu 20.04 LTS v1r10 | Unix | AUDIT AND ACCOUNTABILITY |
| UBTU-20-010201 - The Ubuntu operating system must configure the audit tools to be group-owned by root. | DISA STIG Ubuntu 20.04 LTS v1r10 | Unix | AUDIT AND ACCOUNTABILITY |
| WBLC-02-000099 - Oracle WebLogic must protect audit tools from unauthorized modification. | Oracle WebLogic Server 12c Linux v2r1 Middleware | Unix | AUDIT AND ACCOUNTABILITY |
| WBLC-02-000099 - Oracle WebLogic must protect audit tools from unauthorized modification. | Oracle WebLogic Server 12c Linux v2r1 | Unix | AUDIT AND ACCOUNTABILITY |
| WBLC-02-000099 - Oracle WebLogic must protect audit tools from unauthorized modification. | Oracle WebLogic Server 12c Windows v2r1 | Windows | AUDIT AND ACCOUNTABILITY |
| WBSP-AS-000780 - The WebSphere Application Server wsadmin file must be protected from unauthorized modification. | DISA IBM WebSphere Traditional 9 STIG v1r1 | Unix | AUDIT AND ACCOUNTABILITY |
| WBSP-AS-000780 - The WebSphere Application Server wsadmin file must be protected from unauthorized modification. | DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware | Unix | AUDIT AND ACCOUNTABILITY |
| WBSP-AS-000780 - The WebSphere Application Server wsadmin file must be protected from unauthorized modification. | DISA IBM WebSphere Traditional 9 Windows STIG v1r1 | Windows | AUDIT AND ACCOUNTABILITY |
| WN12-AU-000213 - Event Viewer must be protected from unauthorized modification and deletion. | DISA Windows Server 2012 and 2012 R2 MS STIG v3r7 | Windows | AUDIT AND ACCOUNTABILITY |
| WN12-AU-000213 - Event Viewer must be protected from unauthorized modification and deletion. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | AUDIT AND ACCOUNTABILITY |
| WN16-AU-000060 - Event Viewer must be protected from unauthorized modification and deletion. | DISA Windows Server 2016 STIG v2r7 | Windows | AUDIT AND ACCOUNTABILITY |
| WN19-AU-000060 - Windows Server 2019 Event Viewer must be protected from unauthorized modification and deletion. | DISA Windows Server 2019 STIG v2r8 | Windows | AUDIT AND ACCOUNTABILITY |
| WN22-AU-000060 - Windows Server 2022 Event Viewer must be protected from unauthorized modification and deletion. | DISA Windows Server 2022 STIG v1r4 | Windows | AUDIT AND ACCOUNTABILITY |
