Item Search

Name	Audit Name	Plugin	Category
1.1.2.7.1 Ensure separate partition exists for /var/log/audit	CIS Oracle Linux 7 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
1.2.4.4.5 Set 'Application: Maximum Log Size (KB)' to 'Enabled:20480 or greater'	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
2.3.2.2 (L1) Ensure 'Audit: Shut down system immediately if unable to log security audits' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
2.3.2.2 (L1) Ensure 'Audit: Shut down system immediately if unable to log security audits' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
2.3.2.2 (L1) Ensure 'Audit: Shut down system immediately if unable to log security audits' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL	Windows	AUDIT AND ACCOUNTABILITY
2.3.2.2 (L1) Ensure 'Audit: Shut down system immediately if unable to log security audits' is set to 'Disabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
2.3.2.2 Ensure 'Audit: Shut down system immediately if unable to log security audits' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
3.11.15.2.1 (L1) Ensure 'Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Intune for Windows 11 v3.0.1 L1	Windows	AUDIT AND ACCOUNTABILITY
3.11.15.3.1 (L1) Ensure 'Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Intune for Windows 10 v3.0.1 L1	Windows	AUDIT AND ACCOUNTABILITY
3.11.15.3.2 (L1) Ensure 'Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Intune for Windows 11 v3.0.1 L1	Windows	AUDIT AND ACCOUNTABILITY
4.1.2.2 Ensure audit logs are not automatically deleted	CIS CentOS Linux 8 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.3 Ensure logrotate is configured	CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0	Unix	AUDIT AND ACCOUNTABILITY
5.2.2.1 Ensure audit log storage size is configured	CIS Oracle Linux 7 v4.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
18.9.27.1.2 (L1) Ensure 'Application: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.1.2 (L1) Ensure 'Application: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.2.1 Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.2.2 (L1) Ensure 'Security: Specify the maximum log file size (KB)' is set to 'Enabled: 196,608 or greater'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.3.1 Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.3.2 (L1) Ensure 'Setup: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.4.1 (L1) Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.4.2 (L1) Ensure 'System: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.1.1 (L1) Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.1.1 (L1) Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.1.1 (L1) Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.1.1 (L1) Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.1.1 (L1) Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.1.2 (L1) Ensure 'Application: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.1.2 (L1) Ensure 'Application: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.2 (L1) Ensure 'Security: Specify the maximum log file size (KB)' is set to 'Enabled: 196,608 or greater'	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.2 (L1) Ensure 'Security: Specify the maximum log file size (KB)' is set to 'Enabled: 196,608 or greater'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.2 (L1) Ensure 'Security: Specify the maximum log file size (KB)' is set to 'Enabled: 196,608 or greater'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.2 (L1) Ensure 'Security: Specify the maximum log file size (KB)' is set to 'Enabled: 196,608 or greater'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.2 (L1) Ensure 'Security: Specify the maximum log file size (KB)' is set to 'Enabled: 196,608 or greater'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.2 (L1) Ensure 'Security: Specify the maximum log file size (KB)' is set to 'Enabled: 196,608 or greater'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.2 (L1) Ensure 'Security: Specify the maximum log file size (KB)' is set to 'Enabled: 196,608 or greater'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.2 (L1) Ensure 'Security: Specify the maximum log file size (KB)' is set to 'Enabled: 196,608 or greater'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.3.1 (L1) Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.3.1 (L1) Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.3.2 (L1) Ensure 'Setup: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.3.2 (L1) Ensure 'Setup: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.4.1 (L1) Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1 + BL	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.4.1 (L1) Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.4.1 (L1) Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.4.2 (L1) Ensure 'System: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.4.2 (L1) Ensure 'System: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.4.2 (L1) Ensure 'System: Specify the maximum log file size (KB)' is set to 'Enabled: 32,768 or greater'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search