Item Search

Name	Audit Name	Plugin	Category
1.10.11 Ensure 'logging trap severity level' is greater than or equal to '5'	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	CONFIGURATION MANAGEMENT
2.7 Only enable Kerberos-related daemons if absolutely necessary (kadmind5_server_enable)	CIS FreeBSD v1.0.5	Unix	CONFIGURATION MANAGEMENT
2.7 Only enable Kerberos-related daemons if absolutely necessary (kerberos5_enable)	CIS FreeBSD v1.0.5	Unix	CONFIGURATION MANAGEMENT
3.1.22 Set archive log failover retry limit	CIS IBM DB2 v10 v1.1.0 Linux OS Level 1	Unix	CONFIGURATION MANAGEMENT
3.1.22 Set archive log failover retry limit	CIS IBM DB2 v10 v1.1.0 Linux OS Level 2	Unix	CONFIGURATION MANAGEMENT
3.1.22 Set archive log failover retry limit	CIS IBM DB2 v10 v1.1.0 Windows OS Level 2	Windows	CONFIGURATION MANAGEMENT
4.1.3.7 Ensure kernel module loading and unloading is collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.7 Ensure kernel module loading and unloading is collected - auditctl init_module	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.7 Ensure kernel module loading and unloading is collected - auditctl insmod	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.7 Ensure kernel module loading and unloading is collected - init_module	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.7 Ensure kernel module loading and unloading is collected - insmod	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.1.16 Ensure kernel module loading and unloading is collected - /etc/audit/rules.d modprobe	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - /sbin/modprobe	CIS Debian Family Server L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/insmod	CIS Red Hat 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/insmod	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/rmmod	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl init_module/delete_module (32-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl init_module/delete_module (64-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl insmod	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl modules	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl modules	CIS CentOS 6 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rmmod	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rmmod	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/modprobe	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/modprobe	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/modprobe	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/rmmod	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.17 Ensure kernel module loading and unloading is collected - auditctl /sbin/modprobe	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
5.1.1 Ensure Home Folders Are Secure	CIS Apple macOS 12.0 Monterey v4.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.6 Enable OCSP and CRL certificate checking - CRL	CIS Apple OSX 10.9 L2 v1.3.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.6 Enable OCSP and CRL certificate checking - OCSP	CIS Apple OSX 10.9 L2 v1.3.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.14 Set the 'on-failure' container restart policy to 5 - RestartPolicyName	CIS Docker 1.13.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
8.1.17 Collect Kernel Module Loading and Unloading - '/sbin/modprobe'	CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
89.18 (L1) Ensure 'Impersonate Client' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
89.20 (L1) Ensure 'Impersonate Client' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
AIX7-00-002130 - If csh/tcsh shell is used, AIX must display logout messages.	DISA STIG AIX 7.x v3r1	Unix	ACCESS CONTROL
ARST-L2-000050 - The Arista MLS switch must have Root Guard enabled on all switch ports connecting to access layer switches and hosts.	DISA STIG Arista MLS EOS 4.x L2S v2r3	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
ARST-RT-000560 - The Arista BGP router must be configured to use the maximum prefixes feature to protect against route table flooding and prefix de-aggregation attacks.	DISA STIG Arista MLS EOS 4.x Router v2r2	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
DTAVSEL-015 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Clean as first action when programs and jokes are found.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-017 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to deny access to the file if an error occurs during scanning.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
Ensure 'logging trap severity ' is greater than or equal to '5'	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
GEN000800 - The system must prohibit the reuse of passwords within five iterations.	DISA STIG AIX 5.3 v1r2	Unix	IDENTIFICATION AND AUTHENTICATION
GEN000800 - The system must prohibit the reuse of passwords within five iterations.	DISA STIG AIX 6.1 v1r14	Unix	IDENTIFICATION AND AUTHENTICATION
GEN002753 - The audit system must be configured to audit account termination - 'groupdel'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL
GEN002753 - The audit system must be configured to audit account termination - 'userdel'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL
GEN005190 - The .Xauthority files must not have extended ACLs.	DISA STIG AIX 6.1 v1r14	Unix	ACCESS CONTROL
SOL-11.1-020510 - All .Xauthority files must have mode 0600 or less permissive.	DISA Solaris 11 X86 STIG v3r3	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search