Item Search

Name	Audit Name	Plugin	Category
4.1.3.7 Ensure kernel module loading and unloading is collected - delete_module 32 bit	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	AUDIT AND ACCOUNTABILITY
APPL-13-001044 - The macOS system must generate audit records for DOD-defined events such as successful/unsuccessful logon attempts, successful/unsuccessful direct access attempts, starting and ending time for user access, and concurrent logons to the same account from different sources.	DISA STIG Apple macOS 13 v1r5	Unix	AUDIT AND ACCOUNTABILITY
CD12-00-005200 - PostgreSQL must generate audit records when security objects are deleted.	DISA STIG Crunchy Data PostgreSQL DB v3r1	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
CD12-00-005700 - PostgreSQL must generate audit records when unsuccessful accesses to objects occur.	DISA STIG Crunchy Data PostgreSQL DB v3r1	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
CD12-00-006800 - PostgreSQL must generate audit records when unsuccessful attempts to modify privileges/permissions occur.	DISA STIG Crunchy Data PostgreSQL DB v3r1	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
CD12-00-012600 - PostgreSQL must generate audit records when successful accesses to objects occur.	DISA STIG Crunchy Data PostgreSQL DB v3r1	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
DG0145-ORACLE11 - Audit records should contain required information.	DISA STIG Oracle 11 Instance v9r1 Database	OracleDB	AUDIT AND ACCOUNTABILITY
EPAS-00-001300 - The EDB Postgres Advanced Server must generate audit records when unsuccessful attempts to retrieve privileges/permissions occur.	EnterpriseDB PostgreSQL Advanced Server DB v2r1	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
EPAS-00-010000 - The EDB Postgres Advanced Server must generate audit records when security objects are accessed.	EnterpriseDB PostgreSQL Advanced Server DB v2r1	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
EPAS-00-010100 - The EDB Postgres Advanced Server must generate audit records when unsuccessful attempts to access security objects occur.	EnterpriseDB PostgreSQL Advanced Server DB v2r1	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
EPAS-00-010800 - The EDB Postgres Advanced Server must generate audit records when security objects are modified.	EnterpriseDB PostgreSQL Advanced Server DB v2r1	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
EPAS-00-010900 - The EDB Postgres Advanced Server must generate audit records when unsuccessful attempts to modify security objects occur.	EnterpriseDB PostgreSQL Advanced Server DB v2r1	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
EPAS-00-011800 - The EDB Postgres Advanced Server must generate audit records when successful logons or connections occur.	EnterpriseDB PostgreSQL Advanced Server DB v2r1	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
FGFW-ND-000065 - The FortiGate device must generate audit records when successful/unsuccessful attempts to modify administrator privileges occur	DISA Fortigate Firewall NDM STIG v1r4	FortiGate	AUDIT AND ACCOUNTABILITY
FNFG-FW-000165 - The FortiGate firewall must generate traffic log records when attempts are made to send packets between security zones that are not authorized to communicate.	DISA Fortigate Firewall STIG v1r3	FortiGate	AUDIT AND ACCOUNTABILITY
MYS8-00-001900 - The MySQL Database Server 8.0 must be able to generate audit records when unsuccessful attempts to retrieve privileges/permissions occur.	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB	AUDIT AND ACCOUNTABILITY
MYS8-00-002100 - The MySQL Database Server 8.0 must generate audit records when unsuccessful attempts to access security objects occur.	DISA Oracle MySQL 8.0 v2r2 OS Linux	Unix	AUDIT AND ACCOUNTABILITY
MYS8-00-002200 - The MySQL Database Server 8.0 must generate audit records when categories of information (e.g., classification levels/security levels) are accessed.	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB	AUDIT AND ACCOUNTABILITY
MYS8-00-002800 - The MySQL Database Server 8.0 must generate audit records when security objects are modified.	DISA Oracle MySQL 8.0 v2r2 OS Linux	Unix	AUDIT AND ACCOUNTABILITY
MYS8-00-002900 - The MySQL Database Server 8.0 must generate audit records when unsuccessful attempts to modify security objects occur.	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB	AUDIT AND ACCOUNTABILITY
MYS8-00-002900 - The MySQL Database Server 8.0 must generate audit records when unsuccessful attempts to modify security objects occur.	DISA Oracle MySQL 8.0 v2r2 OS Linux	Unix	AUDIT AND ACCOUNTABILITY
MYS8-00-003400 - The MySQL Database Server 8.0 must generate audit records when security objects are deleted.	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB	AUDIT AND ACCOUNTABILITY
MYS8-00-004400 - The MySQL Database Server 8.0 must be able to generate audit records when successful accesses to objects occur.	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB	AUDIT AND ACCOUNTABILITY
MYS8-00-004500 - The MySQL Database Server 8.0 must generate audit records when unsuccessful accesses to objects occur.	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB	AUDIT AND ACCOUNTABILITY
MYS8-00-004600 - The MySQL Database Server 8.0 must generate audit records for all direct access to the database(s).	DISA Oracle MySQL 8.0 v2r2 DB	MySQLDB	AUDIT AND ACCOUNTABILITY
PHTN-67-000020 - The Photon operating system must generate audit records when successful/unsuccessful attempts to access privileges occur - 32	DISA STIG VMware vSphere 6.7 Photon OS v1r6	Unix	AUDIT AND ACCOUNTABILITY
PHTN-67-000074 - The Photon operating system auditd service must generate audit records for all account creations, modifications, disabling, and termination events.	DISA STIG VMware vSphere 6.7 Photon OS v1r6	Unix	AUDIT AND ACCOUNTABILITY
SLES-15-030760 - The SUSE operating system must generate audit records for the /run/utmp file.	DISA SUSE Linux Enterprise Server 15 STIG v2r4	Unix	AUDIT AND ACCOUNTABILITY
SLES-15-030780 - The SUSE operating system must generate audit records for the /var/log/btmp file.	DISA SUSE Linux Enterprise Server 15 STIG v2r4	Unix	AUDIT AND ACCOUNTABILITY
SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 104'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 106'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 108'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 111'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 117'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 128'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-011400 - SQL Server must generate audit records for the DoD-selected list of auditable events - 'Event ID 129'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SYMP-AG-000140 - Symantec ProxySG providing user access control intermediary services must generate audit records when successful/unsuccessful attempts to access web resources occur.	DISA Symantec ProxySG Benchmark ALG v1r3	BlueCoat	AUDIT AND ACCOUNTABILITY
UBTU-20-010164 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the newgrp command.	DISA Canonical Ubuntu 20.04 LTS STIG v2r3	Unix	AUDIT AND ACCOUNTABILITY
UBTU-20-010165 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the chcon command.	DISA Canonical Ubuntu 20.04 LTS STIG v2r3	Unix	AUDIT AND ACCOUNTABILITY
UBTU-20-010169 - The Ubuntu operating system must generate audit records for the use and modification of the tallylog file.	DISA Canonical Ubuntu 20.04 LTS STIG v2r3	Unix	AUDIT AND ACCOUNTABILITY
UBTU-20-010174 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the gpasswd command.	DISA Canonical Ubuntu 20.04 LTS STIG v2r3	Unix	AUDIT AND ACCOUNTABILITY
UBTU-20-010175 - The Ubuntu operating system must generate audit records for successful/unsuccessful uses of the chage command.	DISA Canonical Ubuntu 20.04 LTS STIG v2r3	Unix	AUDIT AND ACCOUNTABILITY
UBTU-20-010279 - The Ubuntu operating system must generate audit records for the /var/log/btmp file.	DISA Canonical Ubuntu 20.04 LTS STIG v2r3	Unix	AUDIT AND ACCOUNTABILITY
UBTU-20-010296 - The Ubuntu operating system must generate audit records when successful/unsuccessful attempts to use modprobe command.	DISA Canonical Ubuntu 20.04 LTS STIG v2r3	Unix	AUDIT AND ACCOUNTABILITY
WBSP-AS-000380 - The WebSphere Application Server must generate log records when attempts to access subject privileges occur.	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware	Unix	AUDIT AND ACCOUNTABILITY
WN11-AU-000080 - The system must be configured to audit Logon/Logoff - Special Logon successes.	DISA Microsoft Windows 11 STIG v2r4	Windows	AUDIT AND ACCOUNTABILITY
WN11-AU-000084 - Windows 11 must be configured to audit Object Access - Other Object Access Events failures.	DISA Microsoft Windows 11 STIG v2r4	Windows	AUDIT AND ACCOUNTABILITY
WN11-AU-000100 - The system must be configured to audit Policy Change - Audit Policy Change successes.	DISA Microsoft Windows 11 STIG v2r4	Windows	AUDIT AND ACCOUNTABILITY
WN11-AU-000140 - The system must be configured to audit System - Security State Change successes.	DISA Microsoft Windows 11 STIG v2r4	Windows	AUDIT AND ACCOUNTABILITY
WN22-AU-000180 - Windows Server 2022 must be configured to audit logoff successes.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search