Item Search

Name	Audit Name	Plugin	Category
1.1.3.7 Ensure require encryption for 3rd party endpoints (SIP/H.323) is set to enabled	CIS Zoom L1 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.2.2 Ensure record active speaker with shared screen is set to enabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.2.5 Ensure record an audio only file is set to enabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.2.6 Ensure save chat messages from the meeting / webinar is set to enabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.3.1 Ensure add a timestamp to the recording is set to enabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.9 Ensure IP address access control is set to organization approved ranges	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.11 Ensure the host can delete cloud recordings is set to disabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
2.1.1.2 Audit iCloud Drive	CIS Apple macOS 14.0 Sonoma v2.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.1.1.2 Audit iCloud Drive	CIS Apple macOS 13.0 Ventura v3.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.22.2 Ensure 'Block signing into Office' is set to 'Enabled: Org ID only'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL
2.6.1 iCloud configuration	CIS Apple macOS 10.13 L2 v1.1.0	Unix	ACCESS CONTROL
2.6.1.1 Audit iCloud Configuration	CIS Apple macOS 10.14 v2.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.1.4.2 Ensure that 'Agentless discovery for Kubernetes' component status 'On'	CIS Microsoft Azure Foundations v3.0.0 L2	microsoft_azure	RISK ASSESSMENT
3.1.4.3 Ensure that 'Agentless container vulnerability assessment' component status is 'On'	CIS Microsoft Azure Foundations v3.0.0 L2	microsoft_azure	RISK ASSESSMENT
3.1.11 Ensure that Microsoft Cloud Security Benchmark policies are not set to 'Disabled'	CIS Microsoft Azure Foundations v3.0.0 L1	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.8 Ensure that On-Premise SharePoint servers is configured without OneDrive redirection linkages.	CIS Microsoft SharePoint 2019 OS v1.0.0	Windows	CONFIGURATION MANAGEMENT
3.8 Ensure that On-Premise SharePoint servers is configured without OneDrive redirection linkages.	CIS Microsoft SharePoint 2016 OS v1.1.0	Windows	CONFIGURATION MANAGEMENT
5.3.1 Ensure Kubernetes Secrets are encrypted using keys managed in Cloud KMS	CIS Google Kubernetes Engine (GKE) v1.6.1 L2	GCP	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.4.2 Consider external secret storage	CIS Kubernetes v1.24 Benchmark v1.0.0 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.2 Consider external secret storage	CIS Kubernetes v1.23 Benchmark v1.0.1 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
18.9.47.4.1 Ensure 'Configure local setting override for reporting to Microsoft MAPS' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT
18.9.52.2 Ensure 'Prevent the usage of OneDrive for file storage on Windows 8.1' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	ACCESS CONTROL
18.9.77.3.1 Ensure 'Configure local setting override for reporting to Microsoft MAPS' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.12.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1 + BL	Windows	ACCESS CONTROL
18.10.12.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.10.12.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL	Windows	ACCESS CONTROL
18.10.12.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1	Windows	ACCESS CONTROL
18.10.12.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL
18.10.12.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL	Windows	ACCESS CONTROL
18.10.12.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1	Windows	ACCESS CONTROL
18.10.12.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	ACCESS CONTROL
18.10.12.1 Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.12.1 Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.10.40.1 (L2) Ensure 'Allow Message Service Cloud Sync' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.40.1 (L2) Ensure 'Allow Message Service Cloud Sync' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v3.0.1 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.41.1 (L2) Ensure 'Allow Message Service Cloud Sync' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v2.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
ADBP-XI-001290 - Adobe Acrobat Pro XI Adobe Cloud Synchronization must be disabled.	DISA STIG ADOBE ACROBAT PROFESSIONAL (PRO) XI v1r2	Windows	CONFIGURATION MANAGEMENT
AIOS-12-004300 - Apple iOS must not allow backup to remote systems (iCloud Keychain).	AirWatch - DISA Apple iOS 12 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-13-004300 - Apple iOS/iPadOS must not allow backup to remote systems (iCloud Keychain).	AirWatch - DISA Apple iOS/iPadOS 13 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-15-007400 - Apple iOS/iPadOS 15 allowlist must be configured to not include applications with the following characteristics: - back up MD data to non-DoD cloud servers (including user and application access to cloud backup services);- transmit MD diagnostic data to non-DoD servers; - allows synchronization of data or applications between devices associated with user; and - allows unencrypted (or encrypted but not FIPS 140-2 validated) data sharing with other MDs or printers.	AirWatch - DISA Apple iOS/iPadOS 14 v1r4	MDM	CONFIGURATION MANAGEMENT
AIOS-16-007400 - Apple iOS/iPadOS 16 allowlist must be configured to not include applications with the following characteristics: - Backs up MD data to non-DoD cloud servers (including user and application access to cloud backup services); - Transmits MD diagnostic data to non-DoD servers; - Allows synchronization of data or applications between devices associated with user; and - Allows unencrypted (or encrypted but not FIPS 140-2/FIPS 140-3 validated) data sharing with other MDs or printers - allows unencrypted (or encrypted but not FIPS 140-2 validated) data sharing with other MDs or printers.	AirWatch - DISA Apple iOS/iPadOS 16 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-007400 - Apple iOS/iPadOS 16 allowlist must be configured to not include applications with the following characteristics: - Backs up MD data to non-DoD cloud servers (including user and application access to cloud backup services); - Transmits MD diagnostic data to non-DoD servers; - Allows synchronization of data or applications between devices associated with user; and - Allows unencrypted (or encrypted but not FIPS 140-2/FIPS 140-3 validated) data sharing with other MDs or printers - allows unencrypted (or encrypted but not FIPS 140-2 validated) data sharing with other MDs or printers.	MobileIron - DISA Apple iOS/iPadOS 16 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-707400 - The Apple iOS/iPadOS 16 allow list must be configured to not include applications with the following characteristics:	AirWatch - DISA Apple iOS/iPadOS 16 BYOAD v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-707400 - The Apple iOS/iPadOS 16 allow list must be configured to not include applications with the following characteristics:	MobileIron - DISA Apple iOS/iPadOS BYOAD 16 v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-17-007400 - Apple iOS/iPadOS 17 allow list must be configured to not include applications with the following characteristics: - backs up MD data to non-DOD cloud servers (including user and application access to cloud backup services);- transmits MD diagnostic data to non-DOD servers;- allows synchronization of data or applications between devices associated with user; and- allows unencrypted (or encrypted but not FIPS 140-2/FIPS 140-3 validated) data sharing with other MDs or printers - allows unencrypted (or encrypted but not FIPS 140-2 validated) data sharing with other MDs or printers.	MobileIron - DISA Apple iOS/iPadOS 17 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-17-707400 - Apple iOS/iPadOS 17 allow list must be configured to not include applications with the following characteristics:	MobileIron - DISA Apple iOS/iPadOS BYOAD 17 v1r1	MDM	CONFIGURATION MANAGEMENT
CIS_Apple_macOS_12.0_Monterey_Cloud-tailored_v1.0.0_L2.audit from CIS Apple macOS 12.0 Monterey Cloud-tailored Benchmark v1.0.0	CIS Apple macOS 12.0 Monterey Cloud-tailored v1.0.0 L2	Unix
CIS_Apple_macOS_13.0_Ventura_Cloud-tailored_v1.1.0_L1.audit from CIS Apple macOS 13.0 Ventura Cloud-tailored Benchmark v1.1.0	CIS Apple macOS 13.0 Ventura Cloud-tailored v1.1.0 L1	Unix
CIS_Apple_macOS_13.0_Ventura_Cloud-tailored_v1.1.0_L2.audit from CIS Apple macOS 13.0 Ventura Cloud-tailored Benchmark v1.1.0	CIS Apple macOS 13.0 Ventura Cloud-tailored v1.1.0 L2	Unix
Ensure that logins for Cloud Databases Mysql instance are restricted from the internet	Tenable Best Practices RackSpace v2.0.0	Rackspace	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search