Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2.4.4.3 Set 'System: Control Event Log behavior when the log file reaches its maximum size' to 'Disabled'CIS Windows 8 L1 v1.0.0Windows

AUDIT AND ACCOUNTABILITY

1.2.4.4.4 Set 'Security: Control Event Log behavior when the log file reaches its maximum size' to 'Disabled'CIS Windows 8 L1 v1.0.0Windows

AUDIT AND ACCOUNTABILITY

1.2.4.4.6 Set 'System: Maximum Log Size (KB)' to 'Enabled:20480 or greater'CIS Windows 8 L1 v1.0.0Windows

AUDIT AND ACCOUNTABILITY

1.4.4 Security: Retain old eventsCIS Windows 2008 Enterprise v1.2.0Windows

AUDIT AND ACCOUNTABILITY

3.3 Ensure security auditing retentionCIS Apple macOS 10.12 L1 v1.2.0Unix

AUDIT AND ACCOUNTABILITY

3.3 Retain install.log for 365 or more days with no maximum size - all_maxCIS Apple macOS 11 v1.1.0 L1Unix

AUDIT AND ACCOUNTABILITY

3.3 Retain install.log for 365 or more days with no maximum size - all_maxCIS Apple macOS 10.15 v1.3.0 L1Unix

AUDIT AND ACCOUNTABILITY

3.3 Retain install.log for 365 or more days with no maximum size - all_maxCIS Apple macOS 10.14 v1.3.0 L1Unix

AUDIT AND ACCOUNTABILITY

3.3 Retain install.log for 365 or more days with no maximum size - ttlCIS Apple macOS 10.14 v1.3.0 L1Unix

AUDIT AND ACCOUNTABILITY

3.3 Retain install.log for 365 or more days with no maximum size - ttlCIS Apple macOS 11 v1.1.0 L1Unix

AUDIT AND ACCOUNTABILITY

3.4 Ensure security auditing retentionCIS Apple macOS 10.13 L1 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

4.4 Ensure logrotate assigns appropriate permissionsCIS Ubuntu Linux 20.04 LTS Workstation L1 v1.0.0Unix

AUDIT AND ACCOUNTABILITY

4.4 Ensure logrotate assigns appropriate permissionsCIS Ubuntu Linux 20.04 LTS Server L1 v1.0.0Unix

AUDIT AND ACCOUNTABILITY

5.4 Ensure that new entries are appended to the end of the log fileCIS MongoDB 5 L2 OS Linux v1.2.0Unix

AUDIT AND ACCOUNTABILITY

5.4 Ensure that new entries are appended to the end of the log fileCIS MongoDB 4 L2 OS Linux v1.0.0Unix

AUDIT AND ACCOUNTABILITY

5.4 Ensure that new entries are appended to the end of the log fileCIS MongoDB 6 L2 OS Linux v1.1.0Unix

AUDIT AND ACCOUNTABILITY

5.4 Ensure that new entries are appended to the end of the log fileCIS MongoDB 4 L2 OS Windows v1.0.0Windows

AUDIT AND ACCOUNTABILITY

5.4 Ensure that new entries are appended to the end of the log fileCIS MongoDB 5 L2 OS Windows v1.2.0Windows

AUDIT AND ACCOUNTABILITY

5.4 Ensure that new entries are appended to the end of the log fileCIS MongoDB 6 L2 OS Windows v1.1.0Windows

AUDIT AND ACCOUNTABILITY

5.4 Ensure that new entries are appended to the end of the log fileCIS MongoDB 7 L2 OS Linux v1.0.0Unix

AUDIT AND ACCOUNTABILITY

6.4 Ensure Log Storage and Rotation Is Configured Correctly - '/etc/logrotate.conf rotate > 13'CIS Apache HTTP Server 2.2 L1 v3.5.0Unix

AUDIT AND ACCOUNTABILITY

6.4 Ensure Log Storage and Rotation Is Configured Correctly - rotateCIS Apache HTTP Server 2.4 L1 v1.5.0 MiddlewareUnix

AUDIT AND ACCOUNTABILITY

7.6 Ensure directory in logging.properties is a secure location - check log directory locationCIS Apache Tomcat 9 L1 v1.0.0Unix

AUDIT AND ACCOUNTABILITY

7.6 Ensure directory in logging.properties is a secure location - check prefix application nameCIS Apache Tomcat 9 L1 v1.0.0 MiddlewareUnix

AUDIT AND ACCOUNTABILITY

18.9.26.1.1 Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.1.1 Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.1.1 Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 Member Server Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.2.1 Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 Member Server Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.2.1 Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.2.1 Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.2.1 Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.2.1 Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Windows Server 2012 R2 DC L1 v2.5.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.3.1 Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.3.1 Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.4.1 Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 Member Server Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.4.1 Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.1.0Windows

AUDIT AND ACCOUNTABILITY

18.9.26.4.1 Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'CIS Windows Server 2012 R2 DC L1 v2.5.0Windows

AUDIT AND ACCOUNTABILITY

BSI-100-2: S 4.344: Monitoring of Windows Vista, Windows 7 and Windows Server 2008 systems: Retain application log for (Undefined)BSI-100-2 Windows 2005Windows

AUDIT AND ACCOUNTABILITY

BSI-100-2: S 4.344: Monitoring of Windows Vista, Windows 7 and Windows Server 2008 systems: Retain security log for (Undefined)BSI-100-2 Windows 2005Windows

AUDIT AND ACCOUNTABILITY

HIPAA 164.308(a)(1)(ii)(D) - Information System Activity Review (R) 'Retain application log'HIPAA Windows AuditWindows

AUDIT AND ACCOUNTABILITY

HIPAA 164.308(a)(1)(ii)(D) - Information System Activity Review (R) 'Retain security log'HIPAA Windows AuditWindows

AUDIT AND ACCOUNTABILITY

PCI 10.7 Retain audit trail history for at least one year - Retain application logPCI v2.0/v3.0 Windows Best PracticesWindows

AUDIT AND ACCOUNTABILITY

PCI 10.7 Retain audit trail history for at least one year - Retain application logPCI DSS 3.0 - Microsoft WindowsWindows

AUDIT AND ACCOUNTABILITY

PCI 10.7 Retain audit trail history for at least one year - Retain security logPCI v2.0/v3.0 Windows Best PracticesWindows

AUDIT AND ACCOUNTABILITY

PCI 10.7 Retain audit trail history for at least one year - Retain security logPCI DSS 3.0 - Microsoft WindowsWindows

AUDIT AND ACCOUNTABILITY

PCI 10.7 Retain audit trail history for at least one year - Retain system logPCI v2.0/v3.0 Windows Best PracticesWindows

AUDIT AND ACCOUNTABILITY

PCI 10.7 Retain audit trail history for at least one year - Retain system logPCI DSS 3.0 - Microsoft WindowsWindows

AUDIT AND ACCOUNTABILITY

PCI 10.7 Retain audit trail history for at least one year - Retention method for application logPCI DSS 3.0 - Microsoft WindowsWindows

AUDIT AND ACCOUNTABILITY

PCI 10.7 Retain audit trail history for at least one year - Retention method for security logPCI DSS 3.0 - Microsoft WindowsWindows

AUDIT AND ACCOUNTABILITY

PCI 10.7 Retain audit trail history for at least one year - Retention method for system logPCI DSS 3.0 - Microsoft WindowsWindows

AUDIT AND ACCOUNTABILITY