Item Search

Name	Audit Name	Plugin	Category
1.1.1.8 Ensure usb-storage kernel module is not available	CIS Rocky Linux 9 v2.0.0 L1 Server	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
1.1.1.9 Ensure usb-storage kernel module is not available	CIS Ubuntu Linux 24.04 LTS v1.0.0 L2 Workstation	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
1.1.1.9 Ensure usb-storage kernel module is not available	CIS Debian Linux 12 v1.1.0 L1 Server	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS Oracle Linux 9 v2.0.0 L2 Workstation	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Server	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS Red Hat Enterprise Linux 9 v2.0.0 L2 Workstation	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS Ubuntu Linux 20.04 LTS v3.0.0 L2 Workstation	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS Rocky Linux 10 v1.0.0 L2 Workstation	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS Rocky Linux 8 v3.0.0 L2 Workstation	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS Oracle Linux 8 v4.0.0 L1 Server	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS Red Hat Enterprise Linux 10 v1.0.1 L1 Server	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS AlmaLinux OS 10 v1.0.0 L1 Server	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Server	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.1.1 Ensure autofs services are not in use	CIS Debian Linux 11 v2.0.0 L1 Server	Unix	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.9.3.8 (L1) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Configure storage of BitLocker recovery information to AD DS:' is set to 'Enabled: Backup recovery passwords and key packages'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	MEDIA PROTECTION
18.10.10.3.2 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	MEDIA PROTECTION
18.10.10.3.2 Ensure 'Choose how BitLocker-protected removable drives can be recovered' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L2 BL	Windows	MEDIA PROTECTION
18.10.10.3.2 Ensure 'Choose how BitLocker-protected removable drives can be recovered' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.3 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Allow data recovery agent' is set to 'Enabled: True'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	MEDIA PROTECTION
18.10.10.3.3 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Allow data recovery agent' is set to 'Enabled: True'	CIS Microsoft Windows 10 Stand-alone v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.3 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Allow data recovery agent' is set to 'Enabled: True'	CIS Microsoft Windows 11 Stand-alone v5.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.4 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Password' is set to 'Enabled: Do not allow 48-digit recovery password'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.4 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Password' is set to 'Enabled: Do not allow 48-digit recovery password'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	MEDIA PROTECTION
18.10.10.3.4 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Password' is set to 'Enabled: Do not allow 48-digit recovery password'	CIS Microsoft Windows 10 Stand-alone v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.4 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Password' is set to 'Enabled: Do not allow 48-digit recovery password'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.10.10.3.4 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Password' is set to 'Enabled: Do not allow 48-digit recovery password'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L2 BL	Windows	MEDIA PROTECTION
18.10.10.3.5 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.10.10.3.5 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.10.10.3.5 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.5 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 11 Enterprise v5.0.1 L2 BL	Windows	MEDIA PROTECTION
18.10.10.3.5 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 11 Stand-alone v5.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.6 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Omit recovery options from the BitLocker setup wizard' is set to 'Enabled: True'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	MEDIA PROTECTION
18.10.10.3.7 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Save BitLocker recovery information to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.7 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Save BitLocker recovery information to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	MEDIA PROTECTION
18.10.10.3.8 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Configure storage of BitLocker recovery information to AD DS:' is set to 'Enabled: Backup recovery passwords and key packages'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.9 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Do not enable BitLocker until recovery information is stored to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	MEDIA PROTECTION
18.10.10.3.9 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Do not enable BitLocker until recovery information is stored to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.9 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Do not enable BitLocker until recovery information is stored to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	MEDIA PROTECTION
18.10.10.3.9 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Do not enable BitLocker until recovery information is stored to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 11 Enterprise v5.0.1 L2 BL	Windows	MEDIA PROTECTION
18.10.42.13.1 (L1) Ensure 'Scan packed executables' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.42.13.2 (L1) Ensure 'Scan removable drives' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.42.13.3 Ensure 'Scan removable drives' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v5.0.0 L1 MS	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.13.1 (L1) Ensure 'Scan removable drives' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.13.2 (L1) Ensure 'Scan packed executables' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.13.2 (L1) Ensure 'Scan packed executables' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.13.2 (L1) Ensure 'Scan packed executables' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.13.2 (L1) Ensure 'Scan packed executables' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.13.3 (L1) Ensure 'Scan removable drives' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.13.3 (L1) Ensure 'Scan removable drives' is set to 'Enabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.13.3 (L1) Ensure 'Scan removable drives' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search