Detections
Analytics

Item Search

NameAudit NamePluginCategory
/etc/issueCIS Amazon Linux 2 v3.0.0 L2Unix
/etc/localtimeCIS Amazon Linux 2 v3.0.0 L2Unix
/etc/passwdCIS Amazon Linux 2 v3.0.0 L2Unix
/etc/sysconfig/network-scriptsCIS Amazon Linux 2 v3.0.0 L2Unix
1.1.1.6 Ensure squashfs kernel module is not availableCIS Amazon Linux 2 v3.0.0 L2Unix

CONFIGURATION MANAGEMENT

1.1.2.4.1 Ensure separate partition exists for /varCIS Amazon Linux 2 v3.0.0 L2Unix

ACCESS CONTROL, MEDIA PROTECTION

1.1.6 Ensure separate partition exists for /varCIS Aliyun Linux 2 L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.1.11 Ensure separate partition exists for /var/logCIS Aliyun Linux 2 L2 v1.0.0Unix

AUDIT AND ACCOUNTABILITY

1.1.12 Ensure separate partition exists for /var/log/auditCIS Aliyun Linux 2 L2 v1.0.0Unix

AUDIT AND ACCOUNTABILITY

1.5.1.5 Ensure the SELinux mode is enforcingCIS Amazon Linux 2 v3.0.0 L2Unix

ACCESS CONTROL, MEDIA PROTECTION

3.2.2 Ensure tipc kernel module is not availableCIS Amazon Linux 2 v3.0.0 L2Unix

CONFIGURATION MANAGEMENT

3.2.3 Ensure rds kernel module is not availableCIS Amazon Linux 2 v3.0.0 L2Unix

CONFIGURATION MANAGEMENT

4.1.1.2 Ensure system is disabled when audit logs are full - emailCIS Aliyun Linux 2 L2 v1.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1.10 Ensure discretionary access control permission modification events are collected - auditctl chown/fchown/fchownat (32-bit)CIS Aliyun Linux 2 L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

4.1.10 Ensure discretionary access control permission modification events are collected - auditctl chown/fchown/fchownat (64-bit)CIS Aliyun Linux 2 L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

4.1.10 Ensure discretionary access control permission modification events are collected - chmod/fchmod/fchmodat (32-bit)CIS Aliyun Linux 2 L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

4.2.9 Ensure sshd GSSAPIAuthentication is disabledCIS Amazon Linux 2 v3.0.0 L2Unix

CONFIGURATION MANAGEMENT

5.2.3.8 Ensure events that modify user/group information are collectedCIS Amazon Linux 2 v3.0.0 L2Unix

AUDIT AND ACCOUNTABILITY

5.2.3.14 Ensure events that modify the system's Mandatory Access Controls are collectedCIS Amazon Linux 2 v3.0.0 L2Unix

AUDIT AND ACCOUNTABILITY

5.2.3.20 Ensure the audit configuration is immutableCIS Amazon Linux 2 v3.0.0 L2Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

5.2.4.5 Ensure audit configuration files are 640 or more restrictiveCIS Amazon Linux 2 v3.0.0 L2Unix

ACCESS CONTROL, MEDIA PROTECTION

6.1.14 Audit system file permissionsCIS Amazon Linux 2 v3.0.0 L2Unix

ACCESS CONTROL, MEDIA PROTECTION

auditctl /etc/localtimeCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl /etc/sudoersCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl /usr/bin/kmodCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl adjtimex x64CIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b32 chmodCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b32 chownCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b32 EPERMCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b32 fchmodCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b64 removexattrCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b64 sethostnameCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl clock_settime x32CIS Amazon Linux 2 v3.0.0 L2Unix
auditctl finit_module b64CIS Amazon Linux 2 v3.0.0 L2Unix
auditctl wtmpCIS Amazon Linux 2 v3.0.0 L2Unix
b32 chownCIS Amazon Linux 2 v3.0.0 L2Unix
b32 fchownatCIS Amazon Linux 2 v3.0.0 L2Unix
b32 lchownCIS Amazon Linux 2 v3.0.0 L2Unix
b64 chownCIS Amazon Linux 2 v3.0.0 L2Unix
b64 fsetxattrCIS Amazon Linux 2 v3.0.0 L2Unix
b64 lremovexattrCIS Amazon Linux 2 v3.0.0 L2Unix
b64 setxattrCIS Amazon Linux 2 v3.0.0 L2Unix
create_module b64CIS Amazon Linux 2 v3.0.0 L2Unix
delete_module b64CIS Amazon Linux 2 v3.0.0 L2Unix
grubbyCIS Amazon Linux 2 v3.0.0 L2Unix
password-auth authfail root_unlock_timeCIS Amazon Linux 2 v3.0.0 L2Unix
password-auth preauth root_unlock_timeCIS Amazon Linux 2 v3.0.0 L2Unix
sshd outputCIS Amazon Linux 2 v3.0.0 L2Unix
symlinksCIS Amazon Linux 2 v3.0.0 L2Unix
system-auth preauth root_unlock_timeCIS Amazon Linux 2 v3.0.0 L2Unix