| 1.1.1.4 Ensure mounting of FAT filesystems is limited - lsmod fat | CIS Oracle Linux 7 Workstation L2 v3.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.1.1.4 Ensure mounting of FAT filesystems is limited - lsmod vfat | CIS Oracle Linux 7 Workstation L2 v3.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.1.1.8 Ensure mounting of FAT filesystems is disabled | CIS Amazon Linux v2.0.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 1.1.2 Ensure separate partition exists for /tmp | CIS Distribution Independent Linux Workstation L2 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.1.6 Ensure /dev/shm is configured - mount | CIS Oracle Linux 7 Workstation L1 v3.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.1.7 Ensure separate partition exists for /var/tmp | CIS Distribution Independent Linux Server L2 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.4.14.7 Secure Web Sharing 'ServerTokens' | CIS Apple OSX 10.6 Snow Leopard L2 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.7.1.2 Ensure local login warning banner is configured properly - mrsv | CIS Distribution Independent Linux Server L1 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.7.1.2 Ensure local login warning banner is configured properly - mrsv | CIS Distribution Independent Linux Workstation L1 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.11.2 Ensure 'snmp-server user' is set to 'v3 auth SHA' | CIS Cisco Firewall v8.x L1 v4.2.0 | Cisco | CONFIGURATION MANAGEMENT |
| 2.1.1 Ensure 'RIP authentication' is enabled | CIS Cisco Firewall v8.x L1 v4.2.0 | Cisco | CONFIGURATION MANAGEMENT |
| 2.1.2 Ensure 'OSPF authentication' is enabled | CIS Cisco Firewall v8.x L1 v4.2.0 | Cisco | CONFIGURATION MANAGEMENT |
| 2.2.2 Ensure time set is within appropriate limits | CIS Apple macOS 10.13 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.4.14.7 Secure Web Share (TraceEnable Off) | CIS Apple OSX 10.5 Leopard L2 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.9 Enable Secure Keyboard Entry in terminal.app | CIS Apple OSX 10.11 El Capitan L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.10 Enable Secure Keyboard Entry in terminal.app | CIS Apple macOS 10.12 L1 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.17.4 Ensure 'Always Expand Groups in Office When Restricting Permission for Documents' is set to Enabled | CIS Microsoft Office 2013 v1.1.0 | Windows | CONFIGURATION MANAGEMENT |
| 2.24.1.1 Ensure 'Disable Opt-in Wizard on First Run' is set to Enabled | CIS Microsoft Office 2013 v1.1.0 | Windows | CONFIGURATION MANAGEMENT |
| 2.24.1.4 Ensure 'Send Office Feedback' is set to Disabled | CIS Microsoft Office 2013 v1.1.0 | Windows | CONFIGURATION MANAGEMENT |
| 2.35.3.1 Ensure 'Open Office Documents as Read/Write While Browsing' is set to Disabled | CIS Microsoft Office 2013 v1.1.0 | Windows | CONFIGURATION MANAGEMENT |
| 2.36.1.1 Ensure 'Improve Proofing Tools' is set to Disabled | CIS Microsoft Office 2013 v1.1.0 | Windows | CONFIGURATION MANAGEMENT |
| 3.1 Set a nondeterministic Shutdown command value. | CIS Apache Tomcat 8 L1 v1.0.1 | Unix | CONFIGURATION MANAGEMENT |
| 3.5.3.2.5 Ensure iptables rules are saved | CIS Oracle Linux 7 Server L1 v3.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 3.6 Ensure 'threat-detection statistics' is set to 'tcp-intercept' | CIS Cisco Firewall v8.x L1 v4.2.0 | Cisco | CONFIGURATION MANAGEMENT |
| 3.7 Ensure 'ip verify' is set to 'reverse-path' for untrusted interfaces | CIS Cisco Firewall v8.x L1 v4.2.0 | Cisco | CONFIGURATION MANAGEMENT |
| 4.2.2.5 Ensure remote syslog-ng messages are only accepted on designated log hosts | CIS Amazon Linux v2.0.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 5.1.2 Minimize access to secrets | CIS Kubernetes Benchmark v1.6.1 L1 Master | Unix | CONFIGURATION MANAGEMENT |
| 5.2.1.1 Ensure Security Fabric is Configured | CIS Fortigate Level 2 v1.0.0 | FortiGate | CONFIGURATION MANAGEMENT |
| 5.2.3 Ensure permissions on SSH public host key files are configured | CIS Oracle Linux 7 Server L1 v3.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 5.2.13 Minimize the admission of containers which use HostPorts | CIS Kubernetes Benchmark v1.9.0 L1 Master | Unix | CONFIGURATION MANAGEMENT |
| 7.4 Ensure directory in context.xml is a secure location - permissions | CIS Apache Tomcat 7 L1 v1.1.0 Middleware | Unix | CONFIGURATION MANAGEMENT |
| 7.12 Siri on macOS | CIS Apple macOS 10.13 L1 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 10.1 Ensure Web content directory is on a separate partition from the Tomcat system files (verify Web content directory) | CIS Apache Tomcat 8 L1 v1.0.1 | Unix | CONFIGURATION MANAGEMENT |
| 18.5.4.1 Set 'NetBIOS node type' to 'P-node' (Ensure NetBT Parameter 'NodeType' is set to '0x2 (2)') | CIS Windows 7 Workstation Level 1 v3.1.0 | Windows | CONFIGURATION MANAGEMENT |
| 18.9.39.1.1 Ensure 'Turn off Windows Location Provider' is set to 'Enabled' | CIS Windows Server 2012 DC L2 v2.1.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow Windows Ink Workspace | MSCT Windows 10 v1703 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| CIS_Kubernetes_v1.4.1_Level_1.audit from CIS Kubernetes Benchmark v1.4.1 | CIS Kubernetes 1.13 Benchmark v1.4.1 L1 | Unix | CONFIGURATION MANAGEMENT |
| CIS_Kubernetes_v1.4.1_Level_2.audit from CIS Kubernetes Benchmark v1.4.1 | CIS Kubernetes 1.13 Benchmark v1.4.1 L2 | Unix | CONFIGURATION MANAGEMENT |
| CIS_Kubernetes_v1.9.0_Level_2_Master.audit from CIS Kubernetes Benchmark v1.9.0 | CIS Kubernetes Benchmark v1.9.0 L2 Master | Unix | CONFIGURATION MANAGEMENT |
| CIS_Kubernetes_v1.9.0_Level_2_Worker.audit from CIS Kubernetes Benchmark v1.9.0 | CIS Kubernetes Benchmark v1.9.0 L2 Worker | Unix | CONFIGURATION MANAGEMENT |
| CIS_Kubernetes_v1.20_v1.0.0_Level_2_Worker.audit from CIS Kubernetes v1.20 Benchmark v1.0.0 | CIS Kubernetes v1.20 Benchmark v1.0.0 L2 Worker | Unix | CONFIGURATION MANAGEMENT |
| CIS_Kubernetes_v1.20_v1.0.1_Level_1_Master.audit from CIS Kubernetes v1.20 Benchmark v1.0.1 | CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master | Unix | CONFIGURATION MANAGEMENT |
| CIS_Kubernetes_v1.20_v1.0.1_Level_2_Worker.audit from CIS Kubernetes v1.20 Benchmark v1.0.1 | CIS Kubernetes v1.20 Benchmark v1.0.1 L2 Worker | Unix | CONFIGURATION MANAGEMENT |
| CIS_Kubernetes_v1.23_v1.0.1_Level_1_Master.audit from CIS Kubernetes v1.23 Benchmark v1.0.1 | CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master | Unix | CONFIGURATION MANAGEMENT |
| CIS_Kubernetes_v1.23_v1.0.1_Level_1_Worker.audit from CIS Kubernetes v1.23 Benchmark v1.0.1 | CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Worker | Unix | CONFIGURATION MANAGEMENT |
| Configure enhanced anti-spoofing | MSCT Windows 10 v1703 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Configure local setting override for reporting to Microsoft MAPS | MSCT Windows 10 v1709 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| SN.9 Configure inetd security 'kshell allow' | CIS HP-UX 11i v1.5 | Unix | CONFIGURATION MANAGEMENT |
| TEM Client Listen Port - 'Client listening port is configured' | TNS IBM Tivoli Enterprise Client Linux Best Practices | Unix | CONFIGURATION MANAGEMENT |
| Turn off Microsoft consumer experiences | MSCT Windows 10 1607 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
