Item Search

Name	Audit Name	Plugin	Category
4.1.1.1 Ensure journald is configured to write logfiles to persistent disk	CIS Bottlerocket L1	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.2 Ensure auditd service is enabled	CIS CentOS Linux 8 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.5 Ensure events that modify the system's network environment are collected - /etc/issue.net	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl /etc/hosts	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl /etc/issue	CIS CentOS 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl /etc/issue	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl /etc/sysconfig/network	CIS CentOS 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl /etc/sysconfig/network	CIS CentOS 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl /etc/sysconfig/network	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d /etc/issue	CIS CentOS 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d /etc/sysconfig/network	CIS CentOS 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d sethostname setdomainname 32-bit	CIS CentOS 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - rules.d sethostname setdomainname 64-bit	CIS CentOS 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
4.1.19 Ensure the audit configuration is immutable	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.1 Ensure rsyslog is installed	CIS Debian Family Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.1 Ensure rsyslog is installed	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.2 Ensure rsyslog service is enabled	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.2 Ensure rsyslog service is enabled and running	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.4 Ensure rsyslog is configured to send logs to a remote log host	CIS Debian 8 Server L1 v2.0.2	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.4 Ensure rsyslog is configured to send logs to a remote log host	CIS Debian 8 Workstation L1 v2.0.2	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.5 Ensure logging is configured	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.5 Ensure logging is configured - '.emerg :omusrmsg:'	CIS Debian Family Workstation L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.5 Ensure rsyslog is configured to send logs to a remote log host	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.6 Ensure rsyslog is configured to send logs to a remote log host	CIS Debian Family Server L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.1.6 Ensure rsyslog is configured to send logs to a remote log host	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.1.1 Ensure systemd-journal-remote is installed	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.1.1 Ensure systemd-journal-remote is installed	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.1.1 Ensure systemd-journal-remote is installed	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.1.2 Ensure systemd-journal-remote is configured	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.1.2 Ensure systemd-journal-remote is configured	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.1.3 Ensure systemd-journal-remote is enabled	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.2 Ensure journald service is enabled	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.2 Ensure journald service is enabled	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2.2.2 Ensure journald service is enabled	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.1 Ensure that system activity is audited	CIS MongoDB 7 v1.2.0 L1 Windows	Windows	AUDIT AND ACCOUNTABILITY
5.1.1.1 Ensure rsyslog is installed	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.1.2 Ensure systemd-journal-remote is configured	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.1.2 Ensure systemd-journal-remote is configured	CIS CentOS Linux 7 v4.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.2 Ensure journald service is enabled	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.2 Ensure journald service is enabled	CIS CentOS Linux 7 v4.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.2.1.4 Ensure auditd service is enabled	CIS CentOS Linux 7 v4.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
5.2.5 Ensure SSH LogLevel is appropriate	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
6.1.1.1 Ensure journald service is enabled and active	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.1.1.2.3 Ensure systemd-journal-upload is enabled and active	CIS Debian Linux 13 v1.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
6.1.1.3 Ensure journald log file rotation is configured	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.1.2.1.2 Ensure systemd-journal-upload authentication is configured	CIS Debian Linux 12 v1.1.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
6.1.2.1.2 Ensure systemd-journal-upload authentication is configured	CIS Debian Linux 12 v1.1.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.2.1.2.3 Ensure systemd-journal-upload is enabled and active	CIS Debian Linux 11 v2.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
6.2.2.1.3 Ensure systemd-journal-upload is enabled and active	CIS Ubuntu Linux 20.04 LTS v3.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY
6.2.3.5 Ensure rsyslog logging is configured	CIS Ubuntu Linux 20.04 LTS v3.0.0 L1 Workstation	Unix	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search