Item Search

Name	Audit Name	Plugin	Category
1.1.3 Ensure separate file system for /tmp	CIS Amazon Linux 2 STIG v1.0.0 L3	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.13 Ensure separate partition exists for /home	CIS SUSE Linux Enterprise Workstation 11 L2 v2.1.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.21 Ensure sticky bit is set on all world-writable directories	CIS Debian 9 Workstation L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.21 Ensure sticky bit is set on all world-writable directories	CIS Debian 9 Server L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
1.3.10 (L2) Ensure 'Default setting for third-party storage partitioning' is set to 'Enabled: Block third-party storage partitioning from being enabled.'	CIS Microsoft Edge v3.0.0 L2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.5.1 Ensure core dumps are restricted - limits.conf limits.d	CIS Debian 9 Workstation L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
1.5.1 Ensure core dumps are restricted - limits.conf limits.d	CIS Debian 9 Server L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
1.5.1 Ensure core dumps are restricted - sysctl	CIS Debian 9 Server L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - 32-bit	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - 32-bit	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - 32-bit	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - 64-bit	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - 64-bit	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - auditctl (32-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - auditctl (32-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - auditctl (64-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - auditctl (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - auditctl (64-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - auditctl (64-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - auditctl delete	CIS Debian Family Workstation L2 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - auditctl delete	CIS Debian Family Server L2 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - auditctl delete x64	CIS Debian Family Server L2 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - delete	CIS Debian Family Server L2 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - delete x64	CIS Debian Family Server L2 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure file deletion events by users are collected - delete x64	CIS Debian Family Workstation L2 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure successful file system mounts are collected - auditctl mount	CIS Debian 9 Workstation L2 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure successful file system mounts are collected - auditctl mount x64	CIS Debian 9 Server L2 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure successful file system mounts are collected - mounts	CIS Debian 9 Server L2 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.1.13 Ensure successful file system mounts are collected - mounts x64	CIS Debian 9 Server L2 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.2.3 Ensure permissions on all logfiles are configured	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.4.1 Prefer using secrets as files over secrets as environment variables	CIS Google Kubernetes Engine (GKE) v1.6.1 L2	GCP	SYSTEM AND COMMUNICATIONS PROTECTION
4.10 Ensure secrets are not stored in Dockerfiles	CIS Docker v1.6.0 L1 Docker Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.1.6 Ensure that Service Account Tokens are only mounted where necessary	CIS Kubernetes Benchmark v1.9.0 L1 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.1.6 Ensure that Service Account Tokens are only mounted where necessary - pods	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.1.6 Ensure that Service Account Tokens are only mounted where necessary - pods	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.1.6 Ensure that Service Account Tokens are only mounted where necessary - pods	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.1.6 Ensure that Service Account Tokens are only mounted where necessary - serviceaccounts	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.1 Prefer using secrets as files over secrets as environment variables	CIS Kubernetes v1.23 Benchmark v1.0.1 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.1 Prefer using secrets as files over secrets as environment variables	CIS Kubernetes v1.24 Benchmark v1.0.0 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.2 Consider external secret storage	CIS Kubernetes v1.24 Benchmark v1.0.0 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.2 Consider external secret storage	CIS Kubernetes v1.23 Benchmark v1.0.1 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.2 Consider external secret storage	CIS Kubernetes v1.20 Benchmark v1.0.1 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.2 Consider external secret storage	CIS Kubernetes Benchmark v1.9.0 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.4 Ensure default user umask is 027 or more restrictive - /etc/bash.bashrc	CIS Debian 9 Server L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.4 Ensure default user umask is 027 or more restrictive - /etc/profile	CIS Debian 9 Workstation L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.4 Ensure default user umask is 027 or more restrictive - /etc/profile.d/*.sh	CIS Debian 9 Workstation L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.4 Ensure default user umask is 027 or more restrictive - /etc/profile.d/*.sh	CIS Debian 9 Server L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.6 Ensure sensitive host system directories are not mounted on containers	CIS Docker v1.6.0 L1 Docker Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
7.10 Repairing permissions is no longer needed	CIS Apple macOS 10.12 L1 v1.2.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
7.10 Repairing permissions is no longer needed	CIS Apple macOS 10.13 L1 v1.1.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search