Item Search

Name	Audit Name	Plugin	Category
1.1.23 Ensure noexec option is configured for NFS - NFS.	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
1.3.4 Ensure AIDE is configured to verify XATTRS - installed	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
1.5.3 Ensure address space layout randomization (ASLR) is enabled - sysctl	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
1.5.6 Ensure the Ctrl-Alt-Delete key sequence is disabled - target	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure IP forwarding is disabled - sysctl	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
3.3.6 Ensure broadcast ICMP requests are ignored - config	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
3.5.1.4 Ensure firewalld service enabled and running - installed	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
4.2.1.5 Ensure rsyslog is configured to send logs to a remote log host	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
5.3.8 Ensure SSH X11 forwarding is disabled	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
6.2.21 Ensure local interactive user is a member of the group owner.	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
6.2.25 Ensure users' dot files have 0740 or less set.	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
Big Sur - Enable Firmware Password	NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Big Sur - Secure User's Home Folders	NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Catalina - Disable Password Hints	NIST macOS Catalina v1.5.0 - 800-53r4 Moderate	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION
Catalina - Enable Firmware Password	NIST macOS Catalina v1.5.0 - 800-53r4 High	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Catalina - Enable Firmware Password	NIST macOS Catalina v1.5.0 - All Profiles	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Catalina - Secure User's Home Folders	NIST macOS Catalina v1.5.0 - 800-53r5 Moderate	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Catalina - Secure User's Home Folders	NIST macOS Catalina v1.5.0 - All Profiles	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
DTOO218 - Outlook - Level of calendar details that a user can publish must be restricted.	DISA STIG Office 2010 Outlook v1r14	Windows	CONFIGURATION MANAGEMENT
DTOO221 - Outlook - Junk Mail UI must be configured.	DISA STIG Office 2010 Outlook v1r14	Windows	CONFIGURATION MANAGEMENT
GEN000940 - The root account's executable search path must be the vendor default and must contain only absolute paths.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001600 - Run control scripts' executable search paths must contain only absolute paths.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001780 - Global initialization files must contain the mesg -n or mesg n commands. - '/etc/csh.cshrc'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001780 - Global initialization files must contain the mesg -n or mesg n commands. - '/etc/csh.login'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001780 - Global initialization files must contain the mesg -n or mesg n commands. - '/etc/environment'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001840 - All global initialization files' executable search paths must contain only absolute paths - '/etc/profile'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001901 - Local initialization files' library search paths must contain only absolute paths - 'LIBPATH'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001980 - /etc/security/passwd file must not contain a plus (+) without defining entries for NIS+ netgroups - '/etc/security/passwd'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001980 - The .shosts file must not contain a plus (+) without defining entries for NIS+ netgroups - '~/.shosts'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001980 - The hosts.equiv file must not contain a plus (+) without defining entries for NIS+ netgroups - '~/hosts.equiv'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002120 - The /etc/shells (or equivalent) file must exist - '/etc/security/login.cfg contains shells='	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002560 - The system and user default umask must be 077 - '/etc/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN003510 - Kernel core dumps must be disabled unless needed - 'secondary dump device'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN005506 - The SSH daemon must be configured to not use Cipher-Block Chaining (CBC) ciphers.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN005525 - The SSH client must not permit GSSAPI authentication unless needed.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN005539 - The SSH daemon must not allow compression or must only allow compression after successful authentication.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN005570 - The system must be configured with a default gateway for IPv6 if the system uses IPv6, unless the system is a router.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN005610 - The system must not have IP forwarding for IPv6 enabled, unless the system is an IPv6 router.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN005840 - The NFS server must be configured to restrict file system access to local hosts - 'Exports containing rw should be reviewed'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN006420 - NIS maps must be protected through hard-to-guess domain names.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN007840 - The DHCP client must be disabled if not needed.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN007850 - The DHCP client must not send dynamic DNS updates - 'updateDNS exists in /etc/dhcpc.opt'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN008460 - The system must have USB disabled unless needed - 'lslpp'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
Monterey - Configure Gatekeeper to Disallow End User Override	NIST macOS Monterey v1.0.0 - 800-53r5 Moderate	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
Monterey - Configure Gatekeeper to Disallow End User Override	NIST macOS Monterey v1.0.0 - All Profiles	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
Monterey - Configure Sudoers to Authenticate Users on a Per -tty Basis	NIST macOS Monterey v1.0.0 - 800-53r5 Low	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION
Monterey - Configure Sudoers to Authenticate Users on a Per -tty Basis	NIST macOS Monterey v1.0.0 - 800-53r5 Moderate	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION
Monterey - Configure Sudoers to Authenticate Users on a Per -tty Basis	NIST macOS Monterey v1.0.0 - All Profiles	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION
Monterey - Disable Unattended or Automatic Logon to the System	NIST macOS Monterey v1.0.0 - 800-53r5 High	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search