Item Search

Name	Audit Name	Plugin	Category
1.2.2.2 Ensure record active speaker with shared screen is set to enabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.2.5 Ensure record an audio only file is set to enabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.2.6 Ensure save chat messages from the meeting / webinar is set to enabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.11 Ensure the host can delete cloud recordings is set to disabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.8 Ensure That Separation of Duties Is Enforced While Assigning Service Account Related Roles to Users	CIS Google Cloud Platform Foundation v4.0.0 L2	GCP	ACCESS CONTROL, MEDIA PROTECTION
2.6.1.1 Audit iCloud Configuration	CIS Apple macOS 10.14 v2.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.9 Ensure That the Log Metric Filter and Alerts Exist for VPC Network Changes	CIS Google Cloud Platform Foundation v4.0.0 L2	GCP	AUDIT AND ACCOUNTABILITY
2.11 Ensure That the Log Metric Filter and Alerts Exist for SQL Instance Configuration Changes	CIS Google Cloud Platform Foundation v4.0.0 L2	GCP	AUDIT AND ACCOUNTABILITY
3.1 Ensure That the Default Network Does Not Exist in a Project	CIS Google Cloud Platform Foundation v4.0.0 L2	GCP	ACCESS CONTROL, CONFIGURATION MANAGEMENT
5.4.2 Consider external secret storage	CIS Kubernetes v1.24 Benchmark v1.0.0 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.2 Consider external secret storage	CIS Kubernetes v1.23 Benchmark v1.0.1 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
7.3 Ensure That a Default Customer-Managed Encryption Key (CMEK) Is Specified for All BigQuery Data Sets	CIS Google Cloud Platform Foundation v4.0.0 L2	GCP	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.31.2 (L1) Ensure 'Allow upload of User Activities' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.9.31.2 (L2) Ensure 'Allow upload of User Activities' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.9.31.2 (L2) Ensure 'Allow upload of User Activities' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.9.31.2 (L2) Ensure 'Allow upload of User Activities' is set to 'Disabled'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.9.31.2 (L2) Ensure 'Allow upload of User Activities' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLocker	Windows	CONFIGURATION MANAGEMENT
18.9.31.2 Ensure 'Allow upload of User Activities' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Member Server	Windows	CONFIGURATION MANAGEMENT
18.9.77.3.1 Ensure 'Configure local setting override for reporting to Microsoft MAPS' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.12.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL
18.10.12.1 Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
18.10.12.1 Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.12.1 Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	ACCESS CONTROL
18.10.40.1 (L2) Ensure 'Allow Message Service Cloud Sync' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.41.1 (L2) Ensure 'Allow Message Service Cloud Sync' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.41.1 (L2) Ensure 'Allow Message Service Cloud Sync' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
22.31 (L2) Ensure 'Remote Encryption Protection Aggressiveness' is set to 'Medium' or higher	CIS Microsoft Intune for Windows 11 v4.0.0 L2	Windows	SYSTEM AND INFORMATION INTEGRITY
68.5 (L2) Ensure 'Upload User Activities' is set to 'Disabled'	CIS Microsoft Intune for Windows 11 v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
ADBP-XI-001290 - Adobe Acrobat Pro XI Adobe Cloud Synchronization must be disabled.	DISA STIG ADOBE ACROBAT PROFESSIONAL (PRO) XI v1r2	Windows	CONFIGURATION MANAGEMENT
AIOS-12-004300 - Apple iOS must not allow backup to remote systems (iCloud Keychain).	MobileIron - DISA Apple iOS 12 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-13-004300 - Apple iOS/iPadOS must not allow backup to remote systems (iCloud Keychain).	MobileIron - DISA Apple iOS/iPadOS 13 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-007400 - Apple iOS/iPadOS 16 allowlist must be configured to not include applications with the following characteristics: - Backs up MD data to non-DoD cloud servers (including user and application access to cloud backup services); - Transmits MD diagnostic data to non-DoD servers; - Allows synchronization of data or applications between devices associated with user; and - Allows unencrypted (or encrypted but not FIPS 140-2/FIPS 140-3 validated) data sharing with other MDs or printers - allows unencrypted (or encrypted but not FIPS 140-2 validated) data sharing with other MDs or printers.	AirWatch - DISA Apple iOS/iPadOS 16 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-007400 - Apple iOS/iPadOS 16 allowlist must be configured to not include applications with the following characteristics: - Backs up MD data to non-DoD cloud servers (including user and application access to cloud backup services); - Transmits MD diagnostic data to non-DoD servers; - Allows synchronization of data or applications between devices associated with user; and - Allows unencrypted (or encrypted but not FIPS 140-2/FIPS 140-3 validated) data sharing with other MDs or printers - allows unencrypted (or encrypted but not FIPS 140-2 validated) data sharing with other MDs or printers.	MobileIron - DISA Apple iOS/iPadOS 16 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-707400 - The Apple iOS/iPadOS 16 allow list must be configured to not include applications with the following characteristics:	AirWatch - DISA Apple iOS/iPadOS 16 BYOAD v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-707400 - The Apple iOS/iPadOS 16 allow list must be configured to not include applications with the following characteristics:	MobileIron - DISA Apple iOS/iPadOS BYOAD 16 v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-17-007400 - Apple iOS/iPadOS 17 allow list must be configured to not include applications with the following characteristics: - backs up MD data to non-DOD cloud servers (including user and application access to cloud backup services);- transmits MD diagnostic data to non-DOD servers;- allows synchronization of data or applications between devices associated with user; and- allows unencrypted (or encrypted but not FIPS 140-2/FIPS 140-3 validated) data sharing with other MDs or printers - allows unencrypted (or encrypted but not FIPS 140-2 validated) data sharing with other MDs or printers.	MobileIron - DISA Apple iOS/iPadOS 17 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-17-707400 - Apple iOS/iPadOS 17 allow list must be configured to not include applications with the following characteristics:	MobileIron - DISA Apple iOS/iPadOS BYOAD 17 v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-18-016200 - Apple iOS/iPadOS 18 must disable the use of voice assistant (Show user-generated content in Siri) unless required to meet Section 508 compliance requirements.	MobileIron - DISA Apple iOS/iPadOS 18 v1r4	MDM	CONFIGURATION MANAGEMENT
Ensure that logins for Cloud Databases Mysql instance are restricted from the internet	Tenable Best Practices RackSpace v2.0.0	Rackspace	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search