Item Search

Name	Audit Name	Plugin	Category
1.1.4 Ensure nosuid option set on /tmp partition	CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0	Unix	ACCESS CONTROL
1.1.7 Ensure nodev option set on /var/tmp partition	CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0	Unix	ACCESS CONTROL
1.1.14 Ensure nodev option set on /run/shm partition	CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0	Unix	ACCESS CONTROL
1.1.17 Ensure nodev option set on removable media partitions	CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0	Unix	ACCESS CONTROL
1.1.18 Ensure nosuid option set on removable media partitions	CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0	Unix	ACCESS CONTROL
1.4.4 Ensure core dump storage is disabled	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Server	Unix	ACCESS CONTROL
2.3.10.2 (L1) Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.2 Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC	Windows	ACCESS CONTROL
2.3.10.3 Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts' is set to 'Enabled' (STIG DC & MS only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.10.4 (L1) Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts and shares' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.5 (L1) Ensure 'Network access: Let Everyone permissions apply to anonymous users' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL
2.3.10.5 (L1) Ensure 'Network access: Let Everyone permissions apply to anonymous users' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
2.3.10.10 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server	Windows	ACCESS CONTROL
2.3.10.12 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.12 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
2.3.10.12 Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.11.2 Ensure 'Network security: Allow LocalSystem NULL session fallback' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.11.2 Ensure 'Network security: Allow LocalSystem NULL session fallback' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.17.3 (L1) Ensure 'User Account Control: Behavior of the elevation prompt for standard users' is set to 'Automatically deny elevation requests'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server	Windows	ACCESS CONTROL
2.3.17.5 Ensure 'User Account Control: Behavior of the elevation prompt for standard users' is set to 'Automatically deny elevation requests'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	ACCESS CONTROL
3.1 Restrict Core Dumps to Protected Directory - global core file content	CIS Solaris 11 L1 v1.1.0	Unix	ACCESS CONTROL
3.1 Restrict Core Dumps to Protected Directory - global setid core dumps = enabled	CIS Solaris 11.1 L1 v1.0.0	Unix	ACCESS CONTROL
3.1 Restrict Core Dumps to Protected Directory - init core file content	CIS Solaris 11.1 L1 v1.0.0	Unix	ACCESS CONTROL
3.2 Restrict Core Dumps to Protected Directory - Check if COREADM_GLOB_ENABLED is set to yes	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
3.2 Restrict Core Dumps to Protected Directory - Check if COREADM_GLOB_PATTERN is set to /var/cores/core_%n_%f_%u_%g_%t_%p	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
3.2 Restrict Core Dumps to Protected Directory - Check if COREADM_GLOB_SETID_ENABLED is set to yes	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
3.2 Restrict Core Dumps to Protected Directory - Check if COREADM_INIT_PATTERN is set to core	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
4.1 Restrict core dumps to protected directory - Check if COREADM_GLOB_PATTERN is set to /var/core/core_%n_%f_%u_%g_%t_%p	CIS Solaris 9 v1.3	Unix	ACCESS CONTROL
6.2 Add 'nosuid' option to /etc/rmmount.conf, Check if nosuid option is set.	CIS Solaris 9 v1.3	Unix	ACCESS CONTROL
6.13 Restrict at/cron to Authorized Users - /etc/cron.d/at.allow	CIS Solaris 11.1 L1 v1.0.0	Unix	ACCESS CONTROL
7.9 Restrict at/cron To Authorized Users, should pass if 'root' exists in /etc/at.allow.	CIS Solaris 9 v1.3	Unix	ACCESS CONTROL
10.1 SN.1 Restrict access to suspend feature	CIS Solaris 11.2 L2 v1.1.0	Unix	ACCESS CONTROL
18.6.11.4 Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	ACCESS CONTROL
18.9.27.2 (L1) Ensure 'Do not display network selection UI' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG MS	Windows	ACCESS CONTROL
18.9.27.2 Ensure 'Do not display network selection UI' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS	Windows	ACCESS CONTROL
18.9.27.5 Ensure 'Turn off app notifications on the lock screen' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	ACCESS CONTROL
18.9.28.2 (L1) Ensure 'Do not display network selection UI' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL
18.9.28.3 (L1) Ensure 'Do not enumerate connected users on domain-joined computers' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL	Windows	ACCESS CONTROL
18.9.28.4 (L1) Ensure 'Enumerate local users on domain-joined computers' is set to 'Disabled' (MS only)	CIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server	Windows	ACCESS CONTROL
18.10.14.2 (L1) Ensure 'Enumerate administrator accounts on elevation' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
18.10.14.2 Ensure 'Enumerate administrator accounts on elevation' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS	Windows	ACCESS CONTROL
18.10.80.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
18.10.87.2 Ensure 'Turn on PowerShell Transcription' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.87.2 Ensure 'Turn on PowerShell Transcription' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC	Windows	ACCESS CONTROL
18.10.87.2 Ensure 'Turn on PowerShell Transcription' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS	Windows	ACCESS CONTROL
20.3 Ensure 'Active Directory Domain Controllers Organizational Unit (OU) object have the proper access control permissions' (STIG DC only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC	Windows	ACCESS CONTROL
20.10 Ensure 'Active Directory SYSVOL directory must have the proper access control permissions' (STIG DC only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC	Windows	ACCESS CONTROL
20.43 Ensure 'Organization created Active Directory Organizational Unit (OU) objects have proper access control permissions' (STIG DC only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC	Windows	ACCESS CONTROL

Detections

Analytics

Item Search