Item Search

Name	Audit Name	Plugin	Category
2.0 Install & Config - 'Enable SSH'	TNS NetApp Data ONTAP 7G	NetApp	ACCESS CONTROL
2.1.1 Ensure 'SECURE_CONTROL_<listener_name>' Is Set In 'listener.ora'	CIS Oracle Server 11g R2 Unix v2.2.0	Unix	ACCESS CONTROL
2.1.9 Enable Global Strong Encryption	CIS Fortigate 7.0.x v1.3.0 L2	FortiGate	ACCESS CONTROL
2.2 SMTP - 'AccessSSL128 = True'	CIS IIS 6.0 v1.0.0	Windows	ACCESS CONTROL
2.2 SMTP - 'AuthNTLM = True'	CIS IIS 6.0 v1.0.0	Windows	ACCESS CONTROL
2.5 WebDAV Authentication - 'Global Setting - AuthNTLM = True'	CIS IIS 6.0 v1.0.0	Windows	ACCESS CONTROL
4.10 MachineKey	CIS IIS 6.0 v1.0.0	Windows	ACCESS CONTROL
4.39 listener.ora - 'secure_control_listener_name = (TCP,IPC)'	CIS v1.1.0 Oracle 11g OS L2	Unix	ACCESS CONTROL
4.39 listener.ora - 'secure_control_listener_name = (TCP,IPC)'	CIS v1.1.0 Oracle 11g OS Windows Level 2	Windows	ACCESS CONTROL
4.41 listener.ora - 'secure_register_listener_name = (TCP,IPC)'	CIS v1.1.0 Oracle 11g OS Windows Level 2	Windows	ACCESS CONTROL
5.02 OAS - 'Encryption Type - sqlnet.encryption_server = REQUIRED'	CIS Oracle 9/10 OS Audit L2 v2.01	Unix	ACCESS CONTROL
5.03 OAS - 'Encryption Type - sqlnet.encryption_client = (ACCEPTED\|REQUESTED\|REQUIRED)'	CIS Oracle 9 10 Windows Level2 v2.01	Windows	ACCESS CONTROL
5.03 OAS - 'Encryption Type - sqlnet.encryption_client = (ACCEPTED\|REQUESTED\|REQUIRED)'	CIS Oracle 9/10 OS Audit L2 v2.01	Unix	ACCESS CONTROL
5.05 OAS - 'Integrity Protection - sqlnet.crypto_checksum_client = REQUIRED'	CIS v1.1.0 Oracle 11g OS L2	Unix	ACCESS CONTROL
5.05 OAS - 'Integrity Protection - sqlnet.crypto_checksum_client = REQUIRED'	CIS v1.1.0 Oracle 11g OS Windows Level 2	Windows	ACCESS CONTROL
5.08 OAS - 'Integrity Protection - sqlnet.crypto_checksum_server = REQUIRED'	CIS Oracle 9/10 OS Audit L2 v2.01	Unix	ACCESS CONTROL
5.08 OAS - 'Integrity Protection - sqlnet.crypto_checksum_server=REQUIRED sqlnet.crypto_checksum_client=REQUIRED'	CIS Oracle 9 10 Windows Level2 v2.01	Windows	ACCESS CONTROL
5.09 OAS - 'Integrity Protection - sqlnet.crypto_checksum_types_server = (SHA1)'	CIS Oracle 9 10 Windows Level2 v2.01	Windows	ACCESS CONTROL
5.09 OAS - 'Integrity Protection - sqlnet.crypto_checksum_types_server = (SHA1)'	CIS Oracle 9/10 OS Audit L2 v2.01	Unix	ACCESS CONTROL
5.16 OAS - 'SSL Client Authentication - ssl_client_authentication = TRUE'	CIS v1.1.0 Oracle 11g OS Windows Level 2	Windows	ACCESS CONTROL
5.17 OAS - 'SSL Cipher Suite - Set SSL Cipher Suite. ssl_cipher_suites = SSL_RSA_WITH_3DES_EDE_CBC_SHA'	CIS Oracle 9/10 OS Audit L2 v2.01	Unix	ACCESS CONTROL
5.17 OAS - 'SSL Cipher Suite - Set SSL Cipher Suite. ssl_cipher_suites = SSL_RSA_WITH_3DES_EDE_CBC_SHA'	CIS Oracle 9 10 Windows Level2 v2.01	Windows	ACCESS CONTROL
12.51 Remote Administration of Listener - 'Use encryption if remote administration is required'	CIS v1.1.0 Oracle 11g OS Windows Level 2	Windows	ACCESS CONTROL
12.59 Remote Administration of Listener - 'Configure listener to have an SSL port.'	CIS Oracle 9 10 Windows Level2 v2.01	Windows	ACCESS CONTROL
18.9.59.3.9.4 Ensure 'Require user authentication for remote connections by using Network Level Authentication' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
18.9.59.3.9.4 Ensure 'Require user authentication for remote connections by using Network Level Authentication' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Client - AllowUnencryptedTraffic	MSCT Windows 10 v22H2 v1.0.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Client - AllowUnencryptedTraffic	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Client - AllowUnencryptedTraffic	MSCT Windows Server 2022 v1.0.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Client - AllowUnencryptedTraffic	MSCT Windows 11 v1.0.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Client - AllowUnencryptedTraffic	MSCT Windows 11 v22H2 v1.0.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Client - AllowUnencryptedTraffic	MSCT Windows 10 v21H1 v1.0.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Service - AllowUnencryptedTraffic	MSCT Windows 11 v22H2 v1.0.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Service - AllowUnencryptedTraffic	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Service - AllowUnencryptedTraffic	MSCT Windows Server 2022 v1.0.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Service - AllowUnencryptedTraffic	MSCT Windows 10 v21H1 v1.0.0	Windows	ACCESS CONTROL
Allow unencrypted traffic - Service - AllowUnencryptedTraffic	MSCT Windows 11 v1.0.0	Windows	ACCESS CONTROL
Brocade : 'Set SNMP security level to authentication and privacy'	TNS Brocade FabricOS Best Practices	Brocade	ACCESS CONTROL
FireEye - SNMP v3 users have passwords	TNS FireEye	FireEye	ACCESS CONTROL
FireEye - SNMP v3 uses AES instead of DES	TNS FireEye	FireEye	ACCESS CONTROL
FireEye - SNMP v3 uses SHA instead of MD5	TNS FireEye	FireEye	ACCESS CONTROL
Fortigate - HTTPS/SSH admin access strong ciphers	TNS Fortigate FortiOS Best Practices	FortiGate	ACCESS CONTROL
Fortigate - VPN SSL cipher suite > than 128 bits	TNS Fortigate FortiOS Best Practices	FortiGate	ACCESS CONTROL
Fortigate - VPN SSL cipher suite > than 128 bits	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
ScreenOS:User Account SSHv2 PKA Key	TNS Juniper ScreenOS Best Practices Audit	Juniper	ACCESS CONTROL
Set client connection encryption level	MSCT Windows 11 v1.0.0	Windows	ACCESS CONTROL
Set client connection encryption level	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	ACCESS CONTROL
Set client connection encryption level	MSCT Windows 10 v21H1 v1.0.0	Windows	ACCESS CONTROL
Set client connection encryption level	MSCT Windows 10 v22H2 v1.0.0	Windows	ACCESS CONTROL
WatchGuard : SNMP Configuration - v3 user has password - priv protocol	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	ACCESS CONTROL

Detections

Analytics

Item Search