Item Search

Name	Audit Name	Plugin	Category
4.1.7 Ensure login and logout events are collected - /var/log/faillog	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - /var/log/faillog	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - /var/log/lastlog	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - /var/log/lastlog	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - /var/log/tallylog	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - /var/log/tallylog	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/faillog	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/faillog	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/faillog	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/lastlog	CIS CentOS 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/lastlog	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/lastlog	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/lastlog	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/lastlog	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/tallylog	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - auditctl /var/log/tallylog	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - rules.d /var/log/lastlog	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.7 Ensure login and logout events are collected - rules.d /var/run/faillock/	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/log/btmp	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl /var/run/utmp	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl btmp	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl btmp	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl utmp	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl utmp	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl wtmp	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl wtmp	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - auditctl wtmp	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - btmp	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - btmp	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/btmp	CIS CentOS 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/log/wtmp	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/run/utmp	CIS CentOS 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - rules.d /var/run/utmp	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - utmp	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - utmp	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - wtmp	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.8 Ensure session initiation information is collected - wtmp	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.10 Ensure session initiation information is collected - /var/log/wtmp	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
17.5.2 (L1) Ensure 'Audit Logoff' is set to include 'Success'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION
17.5.3 (L1) Ensure 'Audit Logon' is set to 'Success and Failure'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION
17.5.4 (L1) Ensure 'Audit Other Logon/Logoff Events' is set to 'Success and Failure'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION
Big Sur - Configure System to Audit All Failed Program Execution on the System	NIST macOS Big Sur v1.4.0 - 800-53r4 Low	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
Big Sur - Configure System to Audit All Failed Program Execution on the System	NIST macOS Big Sur v1.4.0 - All Profiles	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
Big Sur - Configure System to Audit All Failed Program Execution on the System	NIST macOS Big Sur v1.4.0 - 800-53r4 High	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
Big Sur - Configure System to Audit All Failed Program Execution on the System	NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
Big Sur - Configure System to Audit All Failed Program Execution on the System	NIST macOS Big Sur v1.4.0 - CNSSI 1253	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
Catalina - Configure System to Audit All Failed Program Execution on the System	NIST macOS Catalina v1.5.0 - 800-53r4 Moderate	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
Catalina - Configure System to Audit All Failed Program Execution on the System	NIST macOS Catalina v1.5.0 - 800-53r5 High	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
Catalina - Configure System to Audit All Failed Program Execution on the System	NIST macOS Catalina v1.5.0 - 800-53r5 Moderate	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
Catalina - Configure System to Audit All Failed Program Execution on the System	NIST macOS Catalina v1.5.0 - All Profiles	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search