Item Search

Name	Audit Name	Plugin	Category
4.1.1.1 Ensure auditd is installed - audit	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.2 Ensure auditd service is enabled	CIS CentOS Linux 8 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.5 Ensure events that modify the system's network environment are collected - auditctl /etc/hosts	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl /etc/hosts	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl /etc/issue	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl /etc/issue.net	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl sethostname setdomainname 32-bit	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl sethostname setdomainname 64-bit	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d /etc/issue	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d /etc/issue	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d /etc/sysconfig/network	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d /etc/sysconfig/network	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d /etc/sysconfig/network	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d sethostname setdomainname 32-bit	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d sethostname setdomainname 64-bit	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.2.1.1 Ensure rsyslog is installed	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.1 Ensure rsyslog is installed	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.2 Ensure logging is configured	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.2 Ensure rsyslog service is enabled	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.2 Ensure rsyslog service is enabled	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.2 Ensure rsyslog Service is enabled and running	CIS SUSE Linux Enterprise 12 v3.2.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.5 Ensure logging is configured	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.1.1 Ensure systemd-journal-remote is installed	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.1.3 Ensure systemd-journal-remote is enabled	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.1.3 Ensure systemd-journal-remote is enabled	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.4 Ensure journald is configured to write logfiles to persistent disk	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.1.1.6 Ensure rsyslog is configured to send logs to a remote log host	CIS Oracle Linux 7 v4.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.1.2 Ensure systemd-journal-remote is configured	CIS Oracle Linux 7 v4.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.2 Ensure journald service is enabled	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.4 Ensure journald is configured to write logfiles to persistent disk	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.6 Ensure journald log rotation is configured per site policy	CIS Oracle Linux 7 v4.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.6 Ensure journald log rotation is configured per site policy	CIS Oracle Linux 7 v4.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.2.1.2 Ensure auditd service is enabled and active	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
5.2.1.4 Ensure audit_backlog_limit is sufficient	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.2.1.4 Ensure auditd service is enabled	CIS Oracle Linux 8 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.2.1.4 Ensure auditd service is enabled	CIS Red Hat EL8 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.2.5 Ensure SSH LogLevel is appropriate	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
6.2.1 Ensure the 'CREATE USER' Action Audit Is Enabled	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.1.4 Ensure audit_backlog_limit is sufficient	CIS Ubuntu Linux 24.04 LTS v1.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.2.4 Ensure the 'CREATE ROLE' Action Audit Is Enabled	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.5 Ensure the 'ALTER ROLE' Action Audit Is Enabled	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.5 Ensure the 'ALTER ROLE' Action Audit Is Enabled	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.6 Ensure the 'DROP ROLE' Action Audit Is Enabled	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.7 Ensure the 'GRANT' Action Audit Is Enabled	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.8 Ensure the 'REVOKE' Action Audit Is Enabled	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.27 Ensure the 'LOGON' AND 'LOGOFF' Actions Audit Is Enabled	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.3.1.2 Ensure auditd service is enabled and active	CIS Ubuntu Linux 22.04 LTS v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.1.4 Ensure audit_backlog_limit is sufficient	CIS Ubuntu Linux 22.04 LTS v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.1.4 Ensure auditd service is enabled and active	CIS Oracle Linux 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.3.1.4 Ensure auditd service is enabled and active	CIS Red Hat Enterprise Linux 9 v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search