Main public logs

Combined display of all available logs of CMMC Toolkit Wiki. You can narrow down the view by selecting a log type, the username (case-sensitive), or the affected page (also case-sensitive).

• 03:07, 28 March 2025 David talk contribs created page Practice SI.L3-3.14.3e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SI.L3-3.14.3E – SPECIALIZED ASSET SECURITY === === SECURITY REQUIREMENT === Ensure that <u>specialized assets including IoT, IIoT, OT, GFE, Restricted Informat...")
• 03:06, 28 March 2025 David talk contribs created page Practice SI.L3-3.14.1e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SI.L3-3.14.1E – INTEGRITY VERIFICATION === === SECURITY REQUIREMENT === Verify the integrity of <u>security critical and essential software</u> using root of t...")
• 02:48, 28 March 2025 David talk contribs created page Practice SC.L3-3.13.4e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == SC.L3-3.13.4E – ISOLATION == === SECURITY REQUIREMENT === Employ <u>physical isolation techniques or logical isolation techniques or both</u> in organizational...")
• 02:39, 28 March 2025 David talk contribs created page Practice CA.L3-3.12.1e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CA.L3-3.12.1E – PENETRATION TESTING === Conduct penetration testing <u>at least annually or when significant security changes are made to the system</u>, lever...")
• 02:32, 28 March 2025 David talk contribs created page Practice RA.L3-3.11.7e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == RA.L3-3.11.7E – SUPPLY CHAIN RISK PLAN == === SECURITY REQUIREMENT === Develop a plan for managing supply chain risks associated with organizational systems an...")
• 02:30, 28 March 2025 David talk contribs created page Practice RA.L3-3.11.6e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == RA.L3-3.11.6E – SUPPLY CHAIN RISK RESPONSE == === SECURITY REQUIREMENT === Assess, respond to, and monitor supply chain risks associated with organizational sy...")
• 02:27, 28 March 2025 David talk contribs created page Practice RA.L3-3.11.5e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == RA.L3-3.11.5E – SECURITY SOLUTION EFFECTIVENESS == === SECURITY REQUIREMENT === Assess the effectiveness of security solutions <u>at least annually or upon rec...")
• 02:23, 28 March 2025 David talk contribs created page Practice RA.L3-3.11.4e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == RA.L3-3.11.4E – SECURITY SOLUTION RATIONALE === === SECURITY REQUIREMENT === Document or reference in the system security plan the security solution selected,...")
• 02:17, 28 March 2025 David talk contribs created page Practice RA.L3-3.11.3e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == RA.L3-3.11.3E – ADVANCED RISK IDENTIFICATION == === SECURITY REQUIREMENT === Employ advanced automation and analytics capabilities in support of analysts to pr...")
• 02:16, 28 March 2025 David talk contribs created page Practice RA.L3-3.11.2e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == RA.L3-3.11.2E – THREAT HUNTING == === SECURITY REQUIREMENT === Conduct cyber threat hunting activities <u>on an on-going aperiodic basis or when indications wa...")
• 01:49, 28 March 2025 David talk contribs created page Practice RA.L3-3.11.1e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == RA.L3-3.11.1E – THREAT-INFORMED RISK ASSESSMENT == === SECURITY REQUIREMENT === Employ <u>threat intelligence, at a minimum from open or commercial sources, an...")
• 03:47, 27 March 2025 David talk contribs created page Commonly Accepted and Practiced CMMC Operating Model (Created page with "== Commonly Accepted and Practiced CMMC Operating Model == Under Construction!!!")
• 01:52, 27 March 2025 David talk contribs created page Evidence Collection Approach (Created page with "For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == Evidence Collection Approach for CMMC Practices Levels 1 and 2 == The following table contains the DIBCAC Evidence collection approach for the CMMC Lvels 1 and 2 practices and their Assessment Objectives. The following tables provide a general approach between Assessment Objectives (AOs) and Assessment Methods that may be used. These are not to be construe...")
• 01:28, 27 March 2025 David talk contribs created page Practice PS.L3-3.9.2e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == PS.L3-3.9.2E – ADVERSE INFORMATION == === SECURITY REQUIREMENT === Ensure that organizational systems are protected if adverse information develops or is obtai...")
• 01:28, 27 March 2025 David talk contribs created page Practice IR.L3-3.6.2e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IR.L3-3.6.2E – CYBER INCIDENT RESPONSE TEAM == === SECURITY REQUIREMENT === Establish and maintain a cyber incident response team that can be deployed by the o...")
• 01:28, 27 March 2025 David talk contribs created page Practice IR.L3-3.6.1e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IR.L3-3.6.1E – SECURITY OPERATIONS CENTER == === SECURITY REQUIREMENT === Establish and maintain a security operations center capability that operates <u>24/7,...")
• 01:27, 27 March 2025 David talk contribs created page Practice IA.L3-3.5.3e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L3-3.5.3E – BLOCK UNTRUSTED ASSETS == === SECURITY REQUIREMENT === Employ automated or manual/procedural mechanisms to prohibit system components from conne...")
• 01:27, 27 March 2025 David talk contribs created page Practice IA.L3-3.5.1e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == IA.L3-3.5.1E – BIDIRECTIONAL AUTHENTICATION == === SECURITY REQUIREMENT === Identify and authenticate <u>systems and system components, where possible</u>, bef...")
• 03:12, 25 March 2025 David talk contribs created page Practice CM.L3-3.4.3e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L3-3.4.3E – AUTOMATED INVENTORY == === SECURITY REQUIREMENT === Employ automated discovery and management tools to maintain an up-to-date, complete, accurat...")
• 03:12, 25 March 2025 David talk contribs created page Practice CM.L3-3.4.2e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. === CM.L3-3.4.2E – AUTOMATED DETECTION & REMEDIATION === === SECURITY REQUIREMENT === Employ automated mechanisms to detect misconfigured or unauthorized system c...")
• 03:12, 25 March 2025 David talk contribs created page Practice CM.L3-3.4.1e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == CM.L3-3.4.1E – AUTHORITATIVE REPOSITORY == === SECURITY REQUIREMENT === Establish and maintain an authoritative source and repository to provide a trusted sour...")
• 02:44, 25 March 2025 David talk contribs created page Practice AT.L3-3.2.2e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == AT.L3-3.2.2E – PRACTICAL TRAINING EXERCISES == === SECURITY REQUIREMENT === Include practical exercises in awareness training for all users, tailored by roles,...")
• 02:39, 25 March 2025 David talk contribs created page Practice AT.L3-3.2.1e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == AT.L3-3.2.1E – ADVANCED THREAT AWARENESS == === SECURITY REQUIREMENT === Provide awareness training upon initial hire, following a significant cyber event, and...")
• 22:35, 24 March 2025 David talk contribs created page Practice AC.L3-3.1.3e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == AC.L3-3.1.3E – SECURED INFORMATION TRANSFER == === SECURITY REQUIREMENT === Employ secure information transfer solutions to control information flows between s...")
• 14:48, 24 March 2025 David talk contribs created page Practice AC.L3-3.1.2e Details (Created page with "'''Source of Reference: The official [https://dodcio.defense.gov/cmmc/Resources-Documentation/ CMMC Level 3 Assessment Guide] from the Department of Defense Chief Information Officer (DoD CIO).''' For inquiries and reporting errors on this wiki, please [mailto:support@cmmctoolkit.org contact us]. Thank you. == AC.L3-3.1.2E – ORGANIZATIONALLY CONTROLLED ASSETS == === SECURITY REQUIREMENT === Restrict access to systems and system components to only those information re...")
• 03:01, 17 March 2025 David talk contribs moved page Quiz Instructions to Certification Practice Quiz without leaving a redirect
• 03:00, 17 March 2025 David talk contribs undeleted page Quiz Instructions (15 revisions)
• 21:05, 16 March 2025 David talk contribs deleted page File:ArtifactHashingToolFigure7.png (Deleted old revision 20250316210515!ArtifactHashingToolFigure7.png: Duplicated file)
• 21:05, 16 March 2025 David talk contribs uploaded a new version of File:ArtifactHashingToolFigure7.png
• 21:05, 16 March 2025 David talk contribs deleted page File:ArtifactHashingToolFigure6.png (Deleted old revision 20250316210448!ArtifactHashingToolFigure6.png: Duplicated file)
• 21:04, 16 March 2025 David talk contribs uploaded a new version of File:ArtifactHashingToolFigure6.png
• 16:23, 16 March 2025 David talk contribs moved page 32 CFR Part 170 CMMC Rule to 32 CFR Part 170 without leaving a redirect
• 15:25, 16 March 2025 David talk contribs moved page Practice SI.L1-3.14.5 Details to Practice SI.L2-3.14.5 Details
• 15:24, 16 March 2025 David talk contribs moved page Practice SI.L1-3.14.4 Details to Practice SI.L2-3.14.4 Details
• 15:23, 16 March 2025 David talk contribs moved page Practice SI.L1-3.14.2 Details to Practice SI.L2-3.14.2 Details
• 15:18, 16 March 2025 David talk contribs moved page Practice SI.L1-3.14.1 Details to Practice SI.L2-3.14.1 Details
• 01:33, 16 March 2025 David talk contribs moved page Practice SC.L1-3.13.5 Details to Practice SC.L2-3.13.5 Details
• 01:32, 16 March 2025 David talk contribs moved page Practice SC.L1-3.13.1 Details to Practice SC.L2-3.13.1 Details
• 00:29, 16 March 2025 David talk contribs moved page Practice PE.L1-3.10.5 Details to Practice PE.L2-3.10.5 Details
• 00:28, 16 March 2025 David talk contribs moved page Practice PE.L1-3.10.4 Details to Practice PE.L2-3.10.4 Details
• 00:27, 16 March 2025 David talk contribs moved page Practice PE.L1-3.10.3 Details to Practice PE.L2-3.10.3 Details
• 00:25, 16 March 2025 David talk contribs moved page Practice PE.L1-3.10.1 Details to Practice PE.L2-3.10.1 Details
• 23:07, 15 March 2025 David talk contribs moved page Practice MP.L1-3.8.3 Details to Practice MP.L2-3.8.3 Details
• 22:56, 15 March 2025 David talk contribs moved page Practice IA.L1-3.5.2 Details to Practice IA.L2-3.5.2 Details
• 22:56, 15 March 2025 David talk contribs moved page Practice IA.L1-3.5.1 Details to Practice IA.L2-3.5.1 Details
• 02:16, 14 March 2025 David talk contribs moved page Artifact Hashing Tool to CMMC Hashing Guide
• 03:50, 10 March 2025 David talk contribs moved page Practice AC.L1-3.1.22 Details to Practice AC.L2-3.1.22 Details
• 03:49, 10 March 2025 David talk contribs moved page Practice AC.L1-3.1.20 Details to Practice AC.L2-3.1.20 Details
• 03:45, 10 March 2025 David talk contribs moved page Practice AC.L1-3.1.2 Details to Practice AC.L2-3.1.2 Details
• 03:40, 10 March 2025 David talk contribs moved page Practice AC.L1-3.1.1 Details to Practice AC.L2-3.1.1 Details