Item Search

Name	Audit Name	Plugin	Category
2.2.4 Ensure 'OS_ROLES' Is Set to 'FALSE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
2.2.5 Ensure 'OS_ROLES' Is Set to 'FALSE'	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
2.2.8 Ensure 'REMOTE_OS_AUTHENT' Is Set to 'FALSE'	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
2.2.8 Ensure 'REMOTE_OS_ROLES' Is Set to 'FALSE'	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
2.2.8 Ensure 'REMOTE_OS_ROLES' Is Set to 'FALSE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
2.2.17 Ensure 'Deny log on as a batch job' to include 'Guests'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.17 Ensure 'Deny log on as a batch job' to include 'Guests'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.19 Ensure 'Deny log on locally' to include 'Guests'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.23 Ensure 'Generate security audits' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.3.1.4 Configure 'Accounts: Rename administrator account'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.4.1 Ensure 'Allow simple value' is set to 'Disabled'	MobileIron - CIS Apple iOS 13 and iPadOS 13 v1.0.0 End User Owned L1	MDM	CONFIGURATION MANAGEMENT
2.4.1 Ensure 'Allow simple value' is set to 'Disabled'	MobileIron - CIS Apple iOS 14 and iPadOS 14 v1.0.0 End User Owned L1	MDM	CONFIGURATION MANAGEMENT
3.4.1 Ensure 'Allow simple value' is set to 'Disabled'	MobileIron - CIS Apple iOS 13 and iPadOS 13 Institution Owned L1	MDM	CONFIGURATION MANAGEMENT
5.1.8 Ensure at/cron is restricted to authorized users - '/etc/at.allow'	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
5.3.3 Ensure password reuse is limited	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
5.4.1.2 Ensure minimum days between password changes is 7 or more - login.defs	CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.4.1.3 Ensure password expiration warning days is 7 or more - users	CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
6.2.1 Ensure password fields are not empty	CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group	CIS Red Hat 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
6.2.16 Ensure no duplicate UIDs exist	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
6.2.16 Ensure no duplicate UIDs exist	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
6.2.18 Ensure no duplicate user names exist	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	ACCESS CONTROL
6.2.18 Ensure no duplicate user names exist	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
6.2.19 Ensure no duplicate group names exist	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
Accounts: Administrator account status	MSCT Windows 10 1803 v1.0.0	Windows	ACCESS CONTROL
Accounts: Administrator account status	MSCT Windows 10 1809 v1.0.0	Windows	ACCESS CONTROL
Accounts: Guest account status	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	ACCESS CONTROL
Allow log on locally	MSCT Windows 10 1803 v1.0.0	Windows	ACCESS CONTROL
Allow log on locally	MSCT Windows 10 1903 v1.19.9	Windows	ACCESS CONTROL
Allow log on locally	MSCT Windows 10 1909 v1.0.0	Windows	ACCESS CONTROL
Allow log on locally	MSCT Windows 10 v2004 v1.0.0	Windows	ACCESS CONTROL
Allow log on locally	MSCT Windows Server v1909 MS v1.0.0	Windows	ACCESS CONTROL
Deny access to this computer from the network	MSCT Windows 10 v2004 v1.0.0	Windows	ACCESS CONTROL
Deny log on as a batch job	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	ACCESS CONTROL
Deny log on as a batch job	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	ACCESS CONTROL
Deny log on through Remote Desktop Services	MSCT Windows 10 v20H2 v1.0.0	Windows	ACCESS CONTROL
Domain member: Maximum machine account password age	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Ensure password expiration warning days is 7 or more	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix	IDENTIFICATION AND AUTHENTICATION
Ensure password reuse is limited - pam_pwhistory.so	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix	IDENTIFICATION AND AUTHENTICATION
Ensure password reuse is limited - pam_unix.so	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix	IDENTIFICATION AND AUTHENTICATION
Generate security audits	MSCT Windows 10 v1507 v1.0.0	Windows	ACCESS CONTROL
Lock pages in memory	MSCT Windows 10 1803 v1.0.0	Windows	ACCESS CONTROL
Lock pages in memory	MSCT Windows 10 1809 v1.0.0	Windows	ACCESS CONTROL
Lock pages in memory	MSCT Windows 10 v21H2 v1.0.0	Windows	ACCESS CONTROL
Lock pages in memory	MSCT Windows Server 1903 MS v1.19.9	Windows	ACCESS CONTROL
Lock pages in memory	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
Modify an object label	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	ACCESS CONTROL
Network access: Sharing and security model for local accounts	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search