1.1.8 Set 'aaa accounting exec' | CIS Cisco IOS 17 L2 v2.0.0 | Cisco | |
1.1.8 Set 'aaa accounting exec' - aaa accounting exec | CIS Cisco IOS 16 L2 v2.0.0 | Cisco | |
1.1.9 Set 'aaa accounting exec' | CIS Cisco IOS 17 L2 v1.0.0 | Cisco | |
1.1.9 Set 'aaa accounting exec' | CIS Cisco IOS 15 L2 v4.1.0 | Cisco | |
1.1.9 Set 'aaa accounting exec' | CIS Cisco IOS 16 L2 v1.1.2 | Cisco | |
1.1.9 Set 'aaa accounting network' | CIS Cisco IOS 17 L2 v2.0.0 | Cisco | |
1.1.9 Set 'aaa accounting network' - aaa accounting network | CIS Cisco IOS 16 L2 v2.0.0 | Cisco | |
1.1.10 Set 'aaa accounting exec' | CIS Cisco IOS 16 L2 v1.1.1 | Cisco | |
1.1.10 Set 'aaa accounting network' | CIS Cisco IOS 17 L2 v1.0.0 | Cisco | |
1.1.10 Set 'aaa accounting network' | CIS Cisco IOS 15 L2 v4.1.0 | Cisco | |
1.1.10 Set 'aaa accounting network' | CIS Cisco IOS 16 L2 v1.1.2 | Cisco | |
1.1.10 Set 'aaa accounting system' | CIS Cisco IOS 17 L2 v2.0.0 | Cisco | |
1.1.10 Set 'aaa accounting system' - aaa accounting system | CIS Cisco IOS 16 L2 v2.0.0 | Cisco | |
1.1.11 Set 'aaa accounting network' | CIS Cisco IOS 16 L2 v1.1.1 | Cisco | |
1.1.11 Set 'aaa accounting system' | CIS Cisco IOS 17 L2 v1.0.0 | Cisco | |
1.1.11 Set 'aaa accounting system' | CIS Cisco IOS 15 L2 v4.1.0 | Cisco | |
1.1.11 Set 'aaa accounting system' | CIS Cisco IOS 16 L2 v1.1.2 | Cisco | |
1.1.12 Set 'aaa accounting system' | CIS Cisco IOS 16 L2 v1.1.1 | Cisco | |
1.2.15 Ensure that the --profiling argument is set to false | CIS Kubernetes Benchmark v1.9.0 L1 Master | Unix | AUDIT AND ACCOUNTABILITY |
1.2.16 Ensure that the --profiling argument is set to false | CIS Kubernetes Benchmark v1.8.0 L1 Master | Unix | |
1.2.17 Ensure that the --profiling argument is set to false | CIS Kubernetes Benchmark v1.7.1 L1 Master | Unix | |
1.2.17 Ensure that the --profiling argument is set to false | CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master | Unix | AUDIT AND ACCOUNTABILITY |
1.2.17 Ensure that the --profiling argument is set to false | CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master | Unix | AUDIT AND ACCOUNTABILITY |
1.6.4 Configure NTP Authentication | CIS Cisco NX-OS L2 v1.0.0 | Cisco | |
2.3 Ensure that retention policies on log buckets are configured using Bucket Lock | CIS Google Cloud Platform v1.1.0 L1 | GCP | |
3.2 Ensure CloudTrail log file validation is enabled | CIS Amazon Web Services Foundations L2 1.4.0 | amazon_aws | |
3.2 Ensure CloudTrail log file validation is enabled | CIS Amazon Web Services Foundations L2 2.0.0 | amazon_aws | |
3.2.9 Ensure that the --event-qps argument is set to 0 or a level which ensures appropriate event capture | CIS Google Kubernetes Engine (GKE) v1.1.0 L2 Worker | Unix | |
3.7 Ensure CloudTrail logs are encrypted at rest using KMS CMKs | CIS Amazon Web Services Foundations L2 1.4.0 | amazon_aws | |
3.8 Ensure rotation for customer created CMKs is enabled | CIS Amazon Web Services Foundations L2 1.4.0 | amazon_aws | |
4.5 Ensure a log metric filter and alarm exist for CloudTrail configuration changes - 'alarm exists' | CIS Amazon Web Services Foundations L1 1.4.0 | amazon_aws | |
4.5 Ensure a log metric filter and alarm exist for CloudTrail configuration changes - 'metric filter exists' | CIS Amazon Web Services Foundations L1 1.4.0 | amazon_aws | |
4.5 Ensure a log metric filter and alarm exist for CloudTrail configuration changes - 'metric filter exists' | CIS Amazon Web Services Foundations L1 1.5.0 | amazon_aws | |
4.5 Ensure a log metric filter and alarm exist for CloudTrail configuration changes - 'subscription exists' | CIS Amazon Web Services Foundations L1 1.4.0 | amazon_aws | |
4.5 Ensure a log metric filter and alarm exist for CloudTrail configuration changes - 'subscription exists' | CIS Amazon Web Services Foundations L1 1.5.0 | amazon_aws | |
4.5 Ensure CloudTrail configuration changes are monitored | CIS Amazon Web Services Foundations L1 2.0.0 | amazon_aws | |
5.1.1 Ensure cron daemon is enabled | CIS Debian 10 Server L1 v1.0.0 | Unix | |
5.1.1 Ensure cron daemon is enabled | CIS Debian 10 Workstation L1 v1.0.0 | Unix | |
5.1.1 Ensure cron daemon is enabled and running | CIS Ubuntu Linux 20.04 LTS Server L1 v1.0.0 | Unix | |
5.1.1 Ensure cron daemon is enabled and running | CIS Ubuntu Linux 20.04 LTS Workstation L1 v1.0.0 | Unix | |
5.1.1 Ensure cron daemon is enabled and running - enabled | CIS Ubuntu Linux 20.04 LTS Server L1 v1.1.0 | Unix | |
5.1.1 Ensure cron daemon is enabled and running - enabled | CIS Ubuntu Linux 20.04 LTS Workstation L1 v1.1.0 | Unix | |
5.1.3 Ensure the storage container storing the activity logs is not publicly accessible | CIS Microsoft Azure Foundations v1.3.1 L1 | microsoft_azure | |
5.1.4 Ensure the storage account containing the container with activity logs is encrypted with BYOK (Use Your Own Key) | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
5.3.2 Select authselect profile | CIS Oracle Linux 8 Server L1 v1.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
5.3.2 Select authselect profile | CIS Oracle Linux 8 Workstation L1 v1.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
6.2.14 Ensure all groups in /etc/passwd exist in /etc/group | CIS Oracle Linux 8 Server L1 v1.0.0 | Unix | ACCESS CONTROL |
6.2.16 Ensure no duplicate GIDs exist | CIS Oracle Linux 8 Server L1 v1.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
6.2.18 Ensure no duplicate group names exist | CIS Oracle Linux 8 Server L1 v1.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
7.16 Unified logging | CIS Apple macOS 10.12 L1 v1.2.0 | Unix | AUDIT AND ACCOUNTABILITY |