Item Search

Name	Audit Name	Plugin	Category
1.3.1 Ensure AIDE is installed	CIS Amazon Linux v2.1.0 L1	Unix	AUDIT AND ACCOUNTABILITY
1.3.1 Ensure AIDE is installed	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
1.5.3 Ensure prelink is disabled	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
2.2.1 (L1) Ensure 'Access Credential Manager as a trusted caller' is set to 'No One'	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - /etc/group	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - /etc/gshadow	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - /etc/gshadow	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - /etc/shadow	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/group	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/group	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/group	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/gshadow	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/passwd	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/security/opasswd	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/security/opasswd	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/security/opasswd	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/shadow	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - auditctl /etc/shadow	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - rules.d /etc/group	CIS CentOS 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - rules.d /etc/group	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - rules.d /etc/security/opasswd	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify user/group information are collected - rules.d /etc/security/opasswd	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - auditctl EACCES	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - auditctl EACCES 32-bit	CIS CentOS 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - auditctl EACCES 64-bit	CIS CentOS 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - auditctl EPERM 32-bit	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - auditctl EPERM 64-bit	CIS CentOS 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - auditctl EPERM 64-bit	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - EACCES (64-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - rules.d EACCES 32-bit	CIS CentOS 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - rules.d EACCES 32-bit	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - rules.d EACCES 64-bit	CIS CentOS 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.10 Ensure unsuccessful unauthorized file access attempts are collected - rules.d EACCES 64-bit	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure changes to system administration scope (sudoers) is collected - auditctl /etc/sudoers	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure changes to system administration scope (sudoers) is collected - auditctl /etc/sudoers	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure changes to system administration scope (sudoers) is collected - auditctl /etc/sudoers.d/	CIS CentOS 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure changes to system administration scope (sudoers) is collected - auditctl /etc/sudoers.d/	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure changes to system administration scope (sudoers) is collected - sudoers	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure changes to system administration scope (sudoers) is collected - sudoers.d	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - auditctl 32-bit	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - auditctl 64-bit	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - auditctl 64-bit	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - auditctl 64-bit	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - b32	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - b32 auditctl	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - rules.d 32-bit	CIS CentOS 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - rules.d 32-bit	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - rules.d 64-bit	CIS CentOS 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure system administrator command executions (sudo) are collected - rules.d 64-bit	CIS Red Hat 6 Server L2 v3.0.0	Unix	AUDIT AND ACCOUNTABILITY
5.3 Ensure 'ETW Logging' is enabled - Sites logFormat W3C	CIS IIS 8.0 v1.5.1 Level 1	Windows	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search