Item Search

Name	Audit Name	Plugin	Category
1.1.3.7 Ensure require encryption for 3rd party endpoints (SIP/H.323) is set to enabled	CIS Zoom L1 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.2.2 Ensure record active speaker with shared screen is set to enabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.2.6 Ensure save chat messages from the meeting / webinar is set to enabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.2.11 Ensure the host can delete cloud recordings is set to disabled	CIS Zoom L2 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
2.1.1.2 Audit iCloud Drive	CIS Apple macOS 13.0 Ventura v3.1.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.6.1.1 Audit iCloud Configuration	CIS Apple macOS 10.14 v2.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.8 Ensure that On-Premise SharePoint servers is configured without OneDrive redirection linkages.	CIS Microsoft SharePoint 2016 OS v1.1.0	Windows	CONFIGURATION MANAGEMENT
3.8 Ensure that VPC Flow Logs is Enabled for Every Subnet in a VPC Network	CIS Google Cloud Platform Foundation v4.0.0 L2	GCP	AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY
4.3 Ensure "Block Project-Wide SSH Keys" Is Enabled for VM Instances	CIS Google Cloud Platform Foundation v4.0.0 L1	GCP	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.8 Ensure Compute Instances Are Launched With Shielded VM Enabled	CIS Google Cloud Platform Foundation v4.0.0 L2	GCP	CONFIGURATION MANAGEMENT
4.9 Ensure That Compute Instances Do Not Have Public IP Addresses	CIS Google Cloud Platform Foundation v4.0.0 L2	GCP	ACCESS CONTROL, MEDIA PROTECTION
4.11 Ensure That Compute Instances Have Confidential Computing Enabled	CIS Google Cloud Platform Foundation v4.0.0 L2	GCP	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.4.2 Consider external secret storage	CIS Kubernetes v1.24 Benchmark v1.0.0 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.2 Consider external secret storage	CIS Kubernetes v1.23 Benchmark v1.0.1 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
6.2.8 Ensure That 'cloudsql.enable_pgaudit' Database Flag for each Cloud Sql Postgresql Instance Is Set to 'on' For Centralized Logging	CIS Google Cloud Platform Foundation v4.0.0 L1	GCP	AUDIT AND ACCOUNTABILITY
6.3.2 Ensure 'cross db ownership chaining' Database Flag for Cloud SQL SQL Server Instance Is Set to 'off'	CIS Google Cloud Platform Foundation v4.0.0 L1	GCP	ACCESS CONTROL, MEDIA PROTECTION
9.1.13 Ensure 'Additional email addresses' is Configured with a Security Contact Email	CIS Microsoft Azure Foundations v4.0.0 L1	microsoft_azure	INCIDENT RESPONSE
18.9.77.3.1 Ensure 'Configure local setting override for reporting to Microsoft MAPS' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.12.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL
18.10.12.1 Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.12.1 Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
18.10.12.1 Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.12.1 Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	ACCESS CONTROL
18.10.12.1 Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	ACCESS CONTROL
18.10.13.1 (L1) Ensure 'Turn off cloud consumer account state content' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.10.40.1 (L2) Ensure 'Allow Message Service Cloud Sync' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.41.1 (L2) Ensure 'Allow Message Service Cloud Sync' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v4.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.41.1 (L2) Ensure 'Allow Message Service Cloud Sync' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.41.1 (L2) Ensure 'Allow Message Service Cloud Sync' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
22.31 (L2) Ensure 'Remote Encryption Protection Aggressiveness' is set to 'Medium' or higher	CIS Microsoft Intune for Windows 10 v4.0.0 L2	Windows	SYSTEM AND INFORMATION INTEGRITY
ADBP-XI-001290 - Adobe Acrobat Pro XI Adobe Cloud Synchronization must be disabled.	DISA STIG ADOBE ACROBAT PROFESSIONAL (PRO) XI v1r2	Windows	CONFIGURATION MANAGEMENT
AIOS-12-004300 - Apple iOS must not allow backup to remote systems (iCloud Keychain).	MobileIron - DISA Apple iOS 12 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-007400 - Apple iOS/iPadOS 16 allowlist must be configured to not include applications with the following characteristics: - Backs up MD data to non-DoD cloud servers (including user and application access to cloud backup services); - Transmits MD diagnostic data to non-DoD servers; - Allows synchronization of data or applications between devices associated with user; and - Allows unencrypted (or encrypted but not FIPS 140-2/FIPS 140-3 validated) data sharing with other MDs or printers - allows unencrypted (or encrypted but not FIPS 140-2 validated) data sharing with other MDs or printers.	AirWatch - DISA Apple iOS/iPadOS 16 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-007400 - Apple iOS/iPadOS 16 allowlist must be configured to not include applications with the following characteristics: - Backs up MD data to non-DoD cloud servers (including user and application access to cloud backup services); - Transmits MD diagnostic data to non-DoD servers; - Allows synchronization of data or applications between devices associated with user; and - Allows unencrypted (or encrypted but not FIPS 140-2/FIPS 140-3 validated) data sharing with other MDs or printers - allows unencrypted (or encrypted but not FIPS 140-2 validated) data sharing with other MDs or printers.	MobileIron - DISA Apple iOS/iPadOS 16 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-707400 - The Apple iOS/iPadOS 16 allow list must be configured to not include applications with the following characteristics:	AirWatch - DISA Apple iOS/iPadOS 16 BYOAD v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-707400 - The Apple iOS/iPadOS 16 allow list must be configured to not include applications with the following characteristics:	MobileIron - DISA Apple iOS/iPadOS BYOAD 16 v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-17-007400 - Apple iOS/iPadOS 17 allow list must be configured to not include applications with the following characteristics: - backs up MD data to non-DOD cloud servers (including user and application access to cloud backup services);- transmits MD diagnostic data to non-DOD servers;- allows synchronization of data or applications between devices associated with user; and- allows unencrypted (or encrypted but not FIPS 140-2/FIPS 140-3 validated) data sharing with other MDs or printers - allows unencrypted (or encrypted but not FIPS 140-2 validated) data sharing with other MDs or printers.	MobileIron - DISA Apple iOS/iPadOS 17 v2r1	MDM	CONFIGURATION MANAGEMENT
AIOS-17-707400 - Apple iOS/iPadOS 17 allow list must be configured to not include applications with the following characteristics:	MobileIron - DISA Apple iOS/iPadOS BYOAD 17 v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-18-016200 - Apple iOS/iPadOS 18 must disable the use of voice assistant (Show user-generated content in Siri) unless required to meet Section 508 compliance requirements.	MobileIron - DISA Apple iOS/iPadOS 18 v1r4	MDM	CONFIGURATION MANAGEMENT
Ensure that logins for Cloud Databases Mysql instance are restricted from the internet	Tenable Best Practices RackSpace v2.0.0	Rackspace	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search