Item Search

Name	Audit Name	Plugin	Category
1.2.24 Ensure that the --request-timeout argument is set	CIS RedHat OpenShift Container Platform v1.6.0 L1	OpenShift	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.3.3 Ensure authentication required for single user mode	CIS Oracle Linux 7 v4.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.7.3 Ensure remote login warning banner is configured properly	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.8.2 Ensure GDM login banner is configured	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.8.3 Ensure last logged in user display is disabled - disable user list	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.8.3 Ensure last logged in user display is disabled - system-db:gdm	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.8.3 Ensure last logged in user display is disabled - user-db:user	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.8.3 Ensure last logged in user display is disabled - user-db:user	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.2.3 Ensure the NGINX service account has an invalid shell	CIS NGINX Benchmark v2.1.0 L1 Loadbalancer	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.4.2 Ensure requests for unknown host names are rejected	CIS NGINX Benchmark v2.1.0 L1 Webserver	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.2.1 Ensure IP forwarding is disabled	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.7 Ensure Reverse Path Filtering is enabled	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.1.2 Minimize access to secrets	CIS Google Kubernetes Engine (GKE) v1.6.1 L1	GCP	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.17 Ensure sshd MaxStartups is configured	CIS Oracle Linux 8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.17 Ensure sshd MaxStartups is configured	CIS Oracle Linux 8 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.19 Ensure SSH MaxStartups is configured	CIS Debian 10 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.2 Ensure password expiration is 365 days or less	CIS Oracle Linux 8 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.2 Ensure password expiration is 365 days or less	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.3 Ensure password expiration warning days is 7 or more	CIS Oracle Linux 8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.3 Ensure password expiration warning days is 7 or more	CIS Oracle Linux 7 v4.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.2.1 Ensure default group for the root account is GID 0	CIS Oracle Linux 7 v4.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.8 Ensure SSH HostbasedAuthentication is disabled	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.10 Ensure SSH PermitUserEnvironment is disabled	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.11 Ensure SSH IgnoreRhosts is enabled	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.11 Ensure SSH IgnoreRhosts is enabled	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.11 Ensure SSH IgnoreRhosts is enabled	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.17 Ensure SSH MaxStartups is configured	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.17 Ensure SSH MaxStartups is configured	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.18 Ensure SSH MaxSessions is set to 10 or less	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.19 Ensure SSH LoginGraceTime is set to one minute or less	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.20 Ensure SSH Idle Timeout Interval is configured	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.20 Ensure SSH Idle Timeout Interval is configured	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.3.2.2 Ensure pam_faillock module is enabled	CIS Oracle Linux 9 v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.3.22 Ensure SSH MaxStartups is configured - sshd	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.3.22 Ensure SSH MaxStartups is configured - sshd_config	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.4.1.3 Ensure password expiration warning days is configured	CIS Oracle Linux 9 v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.5.1.2 Ensure minimum days between password changes is configured - /etc/login.defs	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.6.1.1 Ensure password expiration is 365 days or less	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.6.1.2 Ensure minimum days between password changes is 7 or more	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.6.1.3 Ensure password expiration warning days is 7 or more	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.6.4 Ensure default group for the root account is GID 0	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.7 Ensure root PATH Integrity	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.9 Ensure all users' home directories exist	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.9 Ensure all users' home directories exist	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.11 Ensure no users have .forward files	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.14 Ensure no users have .forward files	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.12 Limit Consecutive Login Attempts for SSH	CIS Oracle Solaris 11.4 L1 v1.1.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
8.4 Enable a Warning Banner for the GNOME Service	CIS Oracle Solaris 11.4 L1 v1.1.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
18.5.4 Ensure 'MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes' is set to 'Disabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
18.9.19.7 Ensure 'Turn off background refresh of Group Policy' is set to 'Disabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

Detections

Analytics

Item Search