Item Search

NameAudit NamePluginCategory
1.1.8 Set 'aaa accounting exec'CIS Cisco IOS 17 L2 v2.0.0Cisco
1.1.8 Set 'aaa accounting exec' - aaa accounting execCIS Cisco IOS 16 L2 v2.0.0Cisco
1.1.9 Set 'aaa accounting exec'CIS Cisco IOS 17 L2 v1.0.0Cisco
1.1.9 Set 'aaa accounting exec'CIS Cisco IOS 15 L2 v4.1.0Cisco
1.1.9 Set 'aaa accounting exec'CIS Cisco IOS 16 L2 v1.1.2Cisco
1.1.9 Set 'aaa accounting network'CIS Cisco IOS 17 L2 v2.0.0Cisco
1.1.9 Set 'aaa accounting network' - aaa accounting networkCIS Cisco IOS 16 L2 v2.0.0Cisco
1.1.10 Set 'aaa accounting exec'CIS Cisco IOS 16 L2 v1.1.1Cisco
1.1.10 Set 'aaa accounting network'CIS Cisco IOS 17 L2 v1.0.0Cisco
1.1.10 Set 'aaa accounting network'CIS Cisco IOS 15 L2 v4.1.0Cisco
1.1.10 Set 'aaa accounting network'CIS Cisco IOS 16 L2 v1.1.2Cisco
1.1.10 Set 'aaa accounting system'CIS Cisco IOS 17 L2 v2.0.0Cisco
1.1.10 Set 'aaa accounting system' - aaa accounting systemCIS Cisco IOS 16 L2 v2.0.0Cisco
1.1.11 Set 'aaa accounting network'CIS Cisco IOS 16 L2 v1.1.1Cisco
1.1.11 Set 'aaa accounting system'CIS Cisco IOS 17 L2 v1.0.0Cisco
1.1.11 Set 'aaa accounting system'CIS Cisco IOS 15 L2 v4.1.0Cisco
1.1.11 Set 'aaa accounting system'CIS Cisco IOS 16 L2 v1.1.2Cisco
1.1.12 Set 'aaa accounting system'CIS Cisco IOS 16 L2 v1.1.1Cisco
1.2.15 Ensure that the --profiling argument is set to falseCIS Kubernetes Benchmark v1.9.0 L1 MasterUnix

AUDIT AND ACCOUNTABILITY

1.2.16 Ensure that the --profiling argument is set to falseCIS Kubernetes Benchmark v1.8.0 L1 MasterUnix
1.2.17 Ensure that the --profiling argument is set to falseCIS Kubernetes Benchmark v1.7.1 L1 MasterUnix
1.2.17 Ensure that the --profiling argument is set to falseCIS Kubernetes v1.23 Benchmark v1.0.1 L1 MasterUnix

AUDIT AND ACCOUNTABILITY

1.2.17 Ensure that the --profiling argument is set to falseCIS Kubernetes v1.24 Benchmark v1.0.0 L1 MasterUnix

AUDIT AND ACCOUNTABILITY

1.6.4 Configure NTP AuthenticationCIS Cisco NX-OS L2 v1.0.0Cisco
2.3 Ensure that retention policies on log buckets are configured using Bucket LockCIS Google Cloud Platform v1.1.0 L1GCP
3.2 Ensure CloudTrail log file validation is enabledCIS Amazon Web Services Foundations L2 1.4.0amazon_aws
3.2 Ensure CloudTrail log file validation is enabledCIS Amazon Web Services Foundations L2 2.0.0amazon_aws
3.2.9 Ensure that the --event-qps argument is set to 0 or a level which ensures appropriate event captureCIS Google Kubernetes Engine (GKE) v1.1.0 L2 WorkerUnix
3.7 Ensure CloudTrail logs are encrypted at rest using KMS CMKsCIS Amazon Web Services Foundations L2 1.4.0amazon_aws
3.8 Ensure rotation for customer created CMKs is enabledCIS Amazon Web Services Foundations L2 1.4.0amazon_aws
4.5 Ensure a log metric filter and alarm exist for CloudTrail configuration changes - 'alarm exists'CIS Amazon Web Services Foundations L1 1.4.0amazon_aws
4.5 Ensure a log metric filter and alarm exist for CloudTrail configuration changes - 'metric filter exists'CIS Amazon Web Services Foundations L1 1.4.0amazon_aws
4.5 Ensure a log metric filter and alarm exist for CloudTrail configuration changes - 'metric filter exists'CIS Amazon Web Services Foundations L1 1.5.0amazon_aws
4.5 Ensure a log metric filter and alarm exist for CloudTrail configuration changes - 'subscription exists'CIS Amazon Web Services Foundations L1 1.4.0amazon_aws
4.5 Ensure a log metric filter and alarm exist for CloudTrail configuration changes - 'subscription exists'CIS Amazon Web Services Foundations L1 1.5.0amazon_aws
4.5 Ensure CloudTrail configuration changes are monitoredCIS Amazon Web Services Foundations L1 2.0.0amazon_aws
5.1.1 Ensure cron daemon is enabledCIS Debian 10 Server L1 v1.0.0Unix
5.1.1 Ensure cron daemon is enabledCIS Debian 10 Workstation L1 v1.0.0Unix
5.1.1 Ensure cron daemon is enabled and runningCIS Ubuntu Linux 20.04 LTS Server L1 v1.0.0Unix
5.1.1 Ensure cron daemon is enabled and runningCIS Ubuntu Linux 20.04 LTS Workstation L1 v1.0.0Unix
5.1.1 Ensure cron daemon is enabled and running - enabledCIS Ubuntu Linux 20.04 LTS Server L1 v1.1.0Unix
5.1.1 Ensure cron daemon is enabled and running - enabledCIS Ubuntu Linux 20.04 LTS Workstation L1 v1.1.0Unix
5.1.3 Ensure the storage container storing the activity logs is not publicly accessibleCIS Microsoft Azure Foundations v1.3.1 L1microsoft_azure
5.1.4 Ensure the storage account containing the container with activity logs is encrypted with BYOK (Use Your Own Key)CIS Microsoft Azure Foundations v1.3.1 L2microsoft_azure
5.3.2 Select authselect profileCIS Oracle Linux 8 Server L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

5.3.2 Select authselect profileCIS Oracle Linux 8 Workstation L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

6.2.14 Ensure all groups in /etc/passwd exist in /etc/groupCIS Oracle Linux 8 Server L1 v1.0.0Unix

ACCESS CONTROL

6.2.16 Ensure no duplicate GIDs existCIS Oracle Linux 8 Server L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

6.2.18 Ensure no duplicate group names existCIS Oracle Linux 8 Server L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

7.16 Unified loggingCIS Apple macOS 10.12 L1 v1.2.0Unix

AUDIT AND ACCOUNTABILITY