Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2 Enable SSH (PermitRootLogin)CIS FreeBSD v1.0.5Unix

ACCESS CONTROL

1.2.3.4.3 Configure 'Customize Warning Messages'CIS Windows 8 L1 v1.0.0Windows

ACCESS CONTROL

1.6.2 Ensure 'SSH version 2' is enabledCIS Cisco ASA 9.x Firewall L1 v1.1.0Cisco

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

1.9 Management plane protectionCIS Cisco IOS XR 7.x v1.0.0 L2Cisco

ACCESS CONTROL

2.1.1 Ensure 'SECURE_CONTROL_<listener_name>' Is Set In 'listener.ora'CIS Oracle Server 11g R2 Unix v2.2.0Unix

ACCESS CONTROL

2.1.9 Enable Global Strong EncryptionCIS Fortigate 7.0.x v1.3.0 L2FortiGate

ACCESS CONTROL

2.2.2 - Configuring SSH - disabling direct root access - 'PermitRootLogin = no'CIS AIX 5.3/6.1 L1 v1.1.0Unix

ACCESS CONTROL

2.2.32 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account, Enterprise Admins Group, and Domain Admins Group' (STIG MS only)CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

ACCESS CONTROL

2.2.34 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account, Enterprise Admins Group, and Domain Admins Group' (STIG MS only)CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MSWindows

ACCESS CONTROL

2.2.35 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account, Enterprise Admins Group, and Domain Admins Group' (STIG MS only)CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG MSWindows

ACCESS CONTROL

2.4.5 Disable Remote LoginCIS Apple macOS 10.13 L1 v1.1.0Unix

ACCESS CONTROL

2.4.5 Disable Remote LoginCIS Apple OSX 10.10 Yosemite L1 v1.2.0Unix

ACCESS CONTROL

2.4.5 Disable Remote LoginCIS Apple OSX 10.11 El Capitan L1 v1.1.0Unix

ACCESS CONTROL

2.4.5 Disable Remote LoginCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

2.4.5 Disable Remote LoginCIS Apple OSX 10.9 L1 v1.3.0Unix

ACCESS CONTROL

3.2.1.16 Ensure 'Allow adding VPN configurations' is set to 'Disabled'AirWatch - CIS Apple iOS 17 Institution Owned L1MDM

ACCESS CONTROL

3.2.1.16 Ensure 'Allow adding VPN configurations' is set to 'Disabled'MobileIron - CIS Apple iOS 17 Institution Owned L1MDM

ACCESS CONTROL

3.2.1.16 Ensure 'Allow adding VPN configurations' is set to 'Disabled'AirWatch - CIS Apple iPadOS 17 Institutionally Owned L1MDM

ACCESS CONTROL

3.2.1.16 Ensure 'Allow adding VPN configurations' is set to 'Disabled'MobileIron - CIS Apple iPadOS 17 Institutionally Owned L1MDM

ACCESS CONTROL

4.39 listener.ora - 'secure_control_listener_name = (TCP,IPC)'CIS v1.1.0 Oracle 11g OS L2Unix

ACCESS CONTROL

4.41 listener.ora - 'secure_register_listener_name = (TCP,IPC)'CIS v1.1.0 Oracle 11g OS Windows Level 2Windows

ACCESS CONTROL

5.05 OAS - 'Integrity Protection - sqlnet.crypto_checksum_client = REQUIRED'CIS v1.1.0 Oracle 11g OS Windows Level 2Windows

ACCESS CONTROL

5.16 OAS - 'SSL Client Authentication - ssl_client_authentication = TRUE'CIS v1.1.0 Oracle 11g OS Windows Level 2Windows

ACCESS CONTROL

6.6 Disable root login for SSH - PermitRootLogin = noCIS Solaris 11.1 L1 v1.0.0Unix

ACCESS CONTROL

6.6 Disable root login for SSH - PermitRootLogin = noCIS Solaris 11 L1 v1.1.0Unix

ACCESS CONTROL

9.3.8 Disable SSH Root LoginCIS Debian Linux 7 L1 v1.0.0Unix

ACCESS CONTROL

12.51 Remote Administration of Listener - 'Use encryption if remote administration is required'CIS v1.1.0 Oracle 11g OS Windows Level 2Windows

ACCESS CONTROL

18.9.97.2.2 Ensure 'Allow remote server management through WinRM' is set to 'Disabled'CIS Windows 7 Workstation Level 2 v3.2.0Windows

ACCESS CONTROL

Allow Basic authentication - Client - AllowBasicMSCT Windows 11 v1.0.0Windows

ACCESS CONTROL

Allow Basic authentication - Client - AllowBasicMSCT Windows 11 v23H2 v1.0.0Windows

ACCESS CONTROL

Allow Basic authentication - Client - AllowBasicMSCT Windows 10 v22H2 v1.0.0Windows

ACCESS CONTROL

Allow Basic authentication - Service - AllowBasicMSCT Windows 10 v21H1 v1.0.0Windows

ACCESS CONTROL

Allow Basic authentication - Service - AllowBasicMSCT Windows Server 2022 v1.0.0Windows

ACCESS CONTROL

Allow Basic authentication - Service - AllowBasicMSCT Windows 11 v1.0.0Windows

ACCESS CONTROL

Allow unencrypted traffic - Client - AllowUnencryptedTrafficMSCT Windows 11 v1.0.0Windows

ACCESS CONTROL

Allow unencrypted traffic - Client - AllowUnencryptedTrafficMSCT Windows Server 2022 v1.0.0Windows

ACCESS CONTROL

Allow unencrypted traffic - Client - AllowUnencryptedTrafficMSCT Windows 11 v22H2 v1.0.0Windows

ACCESS CONTROL

Allow unencrypted traffic - Service - AllowUnencryptedTrafficMSCT Windows 11 v22H2 v1.0.0Windows

ACCESS CONTROL

Allow unencrypted traffic - Service - AllowUnencryptedTrafficMSCT MSCT Windows Server 2022 DC v1.0.0Windows

ACCESS CONTROL

Allow unencrypted traffic - Service - AllowUnencryptedTrafficMSCT Windows Server 2022 v1.0.0Windows

ACCESS CONTROL

Configure Solicited Remote Assistance - fAllowToGetHelpMSCT Windows 10 v21H1 v1.0.0Windows

ACCESS CONTROL

Configure Solicited Remote Assistance - fAllowToGetHelpMSCT Windows 10 v22H2 v1.0.0Windows

ACCESS CONTROL

Configure Solicited Remote Assistance - fAllowToGetHelpMSCT Windows 11 v22H2 v1.0.0Windows

ACCESS CONTROL

Disallow Digest authenticationMSCT Windows 11 v1.0.0Windows

ACCESS CONTROL

Disallow Digest authenticationMSCT Windows Server 2022 v1.0.0Windows

ACCESS CONTROL

FireEye - SNMP v3 uses SHA instead of MD5TNS FireEyeFireEye

ACCESS CONTROL

Fortigate - Admin access - trusted hostsTNS Fortigate FortiOS Best Practices v2.0.0FortiGate

ACCESS CONTROL

Fortigate - VPN SSL cipher suite > than 128 bitsTNS Fortigate FortiOS Best Practices v2.0.0FortiGate

ACCESS CONTROL

Set client connection encryption levelMSCT MSCT Windows Server 2022 DC v1.0.0Windows

ACCESS CONTROL

WatchGuard : SNMP Configuration - v3 user has password - priv protocolTNS Best Practice WatchGuard Audit 1.0.0WatchGuard

ACCESS CONTROL