Salesforce Example Audit Items
By leveraging the SOAP API, Nessus can test for a variety of issues in a Salesforce database. For example, this query returns information from the PermissionSet assigned to the user, crossing two tables/object types.
description: "List user names and whether the permission set assigned to them
prevents password expiration"
query: "SELECT Name, (SELECT PermissionSet.PermissionsPasswordNeverExpires FROM
PermissionSetAssignments) FROM User"