CIS-CSC – Reports
ID | Report Name | Minimum Data Requirement | Recommended Data Requirement | Description | Intelligent Indexing |
|---|---|---|---|---|---|
15 | Policy Activity Summary | Various | Lists all policy activity by Impacted Host. CIS Critical Security Control(s): CSC 16.7 | No | |
67 | Compliance: Top Attackers | IDS/Security Events |
| Lists all attackers ordered by the number of events detected highest to lowest. | No |
84 | Compliance: System Critical And Error Conditions | Host or Device Logs |
| Summarizes critical and error conditions for production servers and network infrastructure devices. | No |
959 | Rogue Host Detection Summary | AI Engine Events |
| For use with the LogRhythm Network Monitor. This report shows a summary of all hostnames picked up by the Rogue Host alarm. | No |
1004 | Software Installation Summary | Host Logs | Endpoint Protection Logs | This report displays the number of software installation events logged during the reporting period. | No |
1005 | Vulnerabilities By Entity | Vulnerability Scanner Logs |
| CIS Critical Security Control(s): CSC 3.1, CSC 3.6, CSC 3.7 | No |
1006 | Vulnerabilities By Vulnerability | Vulnerability Scanner Logs |
| CIS Critical Security Control(s): CSC 3.1, CSC 3.6, CSC 3.7 | No |
1007 | Malware Summary | Antivirus Events | Endpoint Protection Logs | This report provides a summary of malware activity by entity and impacted host within the organization infrastructure. | No |
1008 | Backups Completed | Backup System Events |
| This report provides a summary of critical failures, errors, and information from backup software | No |
1015 | Top Attackers Summary | IDS/Security Events |
| This report provides a summary of top attackers by origin host. | No |
1019 | Top Targeted Applications | Firewall Logs | Next Gen Firewall | Lists all applications targeted for attack ordered by the number of events detected highest to lowest. | No |
1020 | Configuration Change Summary | Host or Device Logs |
| This report summarizes configuration change activity (configurations deleted/disabled/enabled/loaded/modified) by Impacted Host | No |
1021 | Denial Of Service Summary | IDS/Security Events | Next Gen Firewall | This report provides a summary of detected denial of service attempts by Entity and Impacted Host. CIS Critical Security Control(s): CSC 9.5 | No |
1022 | Host Compromise Summary | IDS/Security Events |
| This report provides a summary of compromise activity by Impacted Host. | No |
1023 | Backup Critical/Error Summary | AI Engine Events |
| This report provides a summary of critical failures and errors from backup software by Impacted Host | No |
1024 | Backup Restore Summary | Backup System Events |
| This report provides a summary of restore events and information from backup software. | No |