Item Search

Name	Audit Name	Plugin	Category
1.7.9 - Miscellaneous Enhancements - AIX Auditing - 'validate /etc/security/audit/config - bin2 = /audit/bin2'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
1.7.9 - Miscellaneous Enhancements - AIX Auditing - 'validate /etc/security/audit/config - binmode = on'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
1.7.9 - Miscellaneous Enhancements - AIX Auditing - 'validate /etc/security/audit/config - binsize <= 10240'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
1.7.9 - Miscellaneous Enhancements - AIX Auditing - 'validate /etc/security/audit/config - cmds = /etc/security/audit/bincmds'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
1.7.9 - Miscellaneous Enhancements - AIX Auditing - 'validate /etc/security/audit/config - root = general,SRC,mail,cron,tcpip,ipsec,lvm'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
1.7.9 - Miscellaneous Enhancements - AIX Auditing - 'validate /etc/security/audit/config - streammode = off'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
3.2 Enable Stack Protection - set noexec_user_stack_log = 1	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
3.3 Configure Security Auditing Flags - 'audit all failed events across all audit classes'	CIS Apple OSX 10.10 Yosemite L1 v1.2.0	Unix	AUDIT AND ACCOUNTABILITY
3.3 Configure Security Auditing Flags - 'audit all failed events across all audit classes'	CIS Apple OSX 10.11 El Capitan L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
3.3 Configure Security Auditing Flags - 'audit successful/failed file attribute modification events'	CIS Apple OSX 10.10 Yosemite L1 v1.2.0	Unix	AUDIT AND ACCOUNTABILITY
3.3 Configure Security Auditing Flags - 'audit successful/failed login/logout events'	CIS Apple OSX 10.10 Yosemite L1 v1.2.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_ACCEPT : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_CONNECT : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_SOCKACCEPT : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_SOCKCONNECT : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.3 Enable auditing - sp_configure 'auditing'	CIS Sybase 15.0 L1 DB v1.1.0	SybaseDB	AUDIT AND ACCOUNTABILITY
4.3 Enable Auditing of File Metadata Modification Events - AUE_CHMOD : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.3 Enable Auditing of File Metadata Modification Events - AUE_CHOWN : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.3 Enable Auditing of File Metadata Modification Events - AUE_LCHOWN : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_NICE : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_NICE : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_PFEXEC : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_PFEXEC : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETEGID : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETEUID : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETPGID : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETREGID : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETREUID : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETREUID : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETSID : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETSID : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETUID : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.4 Enable Auditing of Process and Privilege Events - AUE_SETUID : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - active non-attributable audit flags	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit_binfile attributes: p_minfree=1;	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit_flags root = lo,ad,ft,ex,cis:no	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - configured non-attributable flags = lo	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - var/audit/.not_terminated.	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.6 Capture All Failed Login Attempts - Check if SYSLOG_FAILED_LOGINS is set to 0 in /etc/default/login.	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
4.8 Enable System Accounting - Check if contents of /var/spool/cron/crontabs/sys (/usr/lib/sa/sa2) are OK.	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
4.9 Enable Kernel Level Auditing - Check audit policies is set to arge,argv,cnt	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
5.2 Ensure that audit filters are configured properly	CIS MongoDB L1 Unix Audit v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.4 Ensure that new entries are appended to the end of the log file	CIS MongoDB L2 Unix Audit v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.8 Enable kernel-level auditing, Check if 'naflags:lo,ad,ex' is set in /etc/security/audit_control.	CIS Solaris 9 v1.3	Unix	AUDIT AND ACCOUNTABILITY
8.2.1 Install the rsyslog package	CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
17.3.1 Ensure 'Audit Process Creation' is set to include 'Success'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.6.1 Ensure 'Audit Detailed File Share' is set to include 'Failure'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.6.3 Ensure 'Audit Other Object Access Events' is set to 'Success and Failure'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.7.4 Ensure 'Audit MPSSVC Rule-Level Policy Change' is set to 'Success and Failure'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
Auditing and logging - severity	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search