API → UI component mappings · 90,813 documents
| ID | Document | Source |
|---|---|---|
| 0b95255864a25725 | SCA Check 21619: Ensure file deletion events by users are collected. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Monitor the use of… | wazuh-sca |
| c961238c7729f7bc | SCA Check 21620: Ensure changes to system administration scope (sudoers) is collected. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087']… | wazuh-sca |
| 7b0f2097daa4ef26 | SCA Check 21621: Ensure system administrator actions (sudolog) are collected. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Monitor… | wazuh-sca |
| 92786c9625a1c051 | SCA Check 21622: Ensure kernel module loading and unloading is collected. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Monitor the… | wazuh-sca |
| 4441eb2a28da46ed | SCA Check 21623: Ensure the audit configuration is immutable. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Set system audit so that… | wazuh-sca |
| 6c306c4f23932343 | SCA Check 21624: Ensure rsyslog Service is enabled. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Once the rsyslog package is… | wazuh-sca |
| 73cc7ce08cfe5eea | SCA Check 21625: Ensure rsyslog default file permissions configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] rsyslog will… | wazuh-sca |
| 8f02e0a61f9fc0f2 | SCA Check 21626: Ensure rsyslog is configured to send logs to a remote log host. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| 05618262f7a03fba | SCA Check 21627: Ensure remote rsyslog messages are only accepted on designated log hosts. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046',… | wazuh-sca |
| c7b53404ce529e07 | SCA Check 21628: Ensure syslog-ng service is enabled. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Once the syslog-ng package is… | wazuh-sca |
| 2190b602fcde05d3 | SCA Check 21629: Ensure syslog-ng default file permissions configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] syslog-ng will… | wazuh-sca |
| e15b80e88124c92a | SCA Check 21630: Ensure syslog-ng is configured to send logs to a remote log host. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| 801100f6df8b613a | SCA Check 21631: Ensure rsyslog or syslog-ng is installed. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The rsyslog and syslog-ng… | wazuh-sca |
| 8f6312d2aa4fe0e5 | SCA Check 21632: Ensure cron daemon is enabled. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The cron daemon is used to execute… | wazuh-sca |
| 890061ff659eac19 | SCA Check 21633: Ensure permissions on /etc/crontab are configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The /etc/crontab… | wazuh-sca |
| 2e0ce9fcaf18807d | SCA Check 21634: Ensure permissions on /etc/cron.hourly are configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] This directory… | wazuh-sca |
| 1834575108a4c68e | SCA Check 21635: Ensure permissions on /etc/cron.daily are configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| 4eb4502b561ca811 | SCA Check 21636: Ensure permissions on /etc/cron.weekly are configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| daeb024345c614cd | SCA Check 21637: Ensure permissions on /etc/cron.monthly are configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| ab4fec826f3d3bc0 | SCA Check 21638: Ensure permissions on /etc/cron.d are configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Configure… | wazuh-sca |
| 4082f25cb39c244a | SCA Check 21639: Ensure at/cron is restricted to authorized users. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Configure… | wazuh-sca |
| 9fc2c80722cc064c | SCA Check 21640: Ensure permissions on /etc/ssh/sshd_config are configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| 1e3ab52e1240a6cb | SCA Check 21641: Ensure SSH Protocol is set to 2. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] SSH supports two different and… | wazuh-sca |
| f7e48276cbdb5856 | SCA Check 21642: Ensure SSH LogLevel is set to INFO. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The INFO parameter specifies that… | wazuh-sca |
| f200f24e7e773255 | SCA Check 21643: Ensure SSH X11 forwarding is disabled. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The X11Forwarding parameter… | wazuh-sca |
| eee80279f1696213 | SCA Check 21644: Ensure SSH MaxAuthTries is set to 4 or less. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The MaxAuthTries… | wazuh-sca |
| e19979c22ad40bb2 | SCA Check 21645: Ensure SSH IgnoreRhosts is enabled. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The IgnoreRhosts parameter… | wazuh-sca |
| 57df5c05be167852 | SCA Check 21646: Ensure SSH HostbasedAuthentication is disabled. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| 7f09bc0b467b2e9e | SCA Check 21647: Ensure SSH root login is disabled. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The PermitRootLogin parameter… | wazuh-sca |
| 8acaaa8fac04c7e0 | SCA Check 21648: Ensure SSH PermitEmptyPasswords is disabled. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The PermitEmptyPasswords… | wazuh-sca |
| ffd11211d0c2eab4 | SCA Check 21649: Ensure SSH PermitUserEnvironment is disabled. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| 65f76c81c44b919c | SCA Check 21650: Ensure only approved MAC algorithms are used. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] This variable limits the… | wazuh-sca |
| cc7dd82791ca09d2 | SCA Check 21651: Ensure SSH Idle Timeout Interval is configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The two options… | wazuh-sca |
| 4c369a48bd948a42 | SCA Check 21652: Ensure SSH LoginGraceTime is set to one minute or less. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| 566e9c481e7a8e8a | SCA Check 21653: Ensure SSH access is limited. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] There are several options available to… | wazuh-sca |
| dd99eed225a6e17d | SCA Check 21654: Ensure SSH warning banner is configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The Banner parameter… | wazuh-sca |
| 688400bfcf27a120 | SCA Check 21655: Ensure password creation requirements are configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| 6e1e69dddc627862 | SCA Check 21656: Ensure lockout for failed password attempts is configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Lock out… | wazuh-sca |
| f3fda32ff0c47232 | SCA Check 21657: Ensure password reuse is limited. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The /etc/security/opasswd file… | wazuh-sca |
| 75faa8466383f7b8 | SCA Check 21658: Ensure password hashing algorithm is SHA-512. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The commands below… | wazuh-sca |
| 1142079fa08f6c77 | SCA Check 21659: Ensure password expiration is 365 days or less. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The PASS_MAX_DAYS… | wazuh-sca |
| 7866b417a649ea35 | SCA Check 21660: Ensure minimum days between password changes is 7 or more. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| 8c9cee761ed187ca | SCA Check 21661: Ensure password expiration warning days is 7 or more. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The… | wazuh-sca |
| 5febd21a8f01a537 | SCA Check 21662: Ensure inactive password lock is 30 days or less. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] User accounts that… | wazuh-sca |
| abc1cccee8afdc9b | SCA Check 21663: Ensure default group for the root account is GID 0. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The usermod… | wazuh-sca |
| d225aaa9d400bdc5 | SCA Check 21664: Ensure default user umask is 027 or more restrictive. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The default… | wazuh-sca |
| 63fb692be6d266d9 | SCA Check 21665: Ensure default user shell timeout is 900 seconds or less. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The default… | wazuh-sca |
| dea3517013e2c856 | SCA Check 21666: Ensure access to the su command is restricted. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The su command allows a… | wazuh-sca |
| 329521bc3fe38fba | SCA Check 21667: Ensure permissions on /etc/passwd are configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The /etc/passwd file… | wazuh-sca |
| f24c5c5930c018ca | SCA Check 21668: Ensure permissions on /etc/shadow are configured. Policy: CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The /etc/shadow file… | wazuh-sca |