Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.7.1 iCloud configurationCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix
2.11 Java 6 is not the default Java runtimeCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

3.3 Configure Security Auditing Flags - 'audit all failed events across all audit classes'CIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

4.1 Disable Bonjour advertising serviceCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

4.2 Enable Auditing of Incoming Network ConnectionsCIS Oracle Solaris 11.4 L1 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

4.3 Create network specific locationsCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix
4.4 Enable Auditing of Process and Privilege EventsCIS Oracle Solaris 11.4 L1 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

5.4 Automatically lock the login keychain for inactivityCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

5.13 Create a Login window bannerCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix

ACCESS CONTROL

5.16 Secure individual keychain and itemsCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix
5.17 Create specialized keychains for different purposesCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix
6.4 Safari disable Internet Plugins for global useCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

7.9 Apple ID password resetCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix
7.11 App Store Password SettingsCIS Apple OSX 10.11 El Capitan L2 v1.1.0Unix
AOSX-14-002068 - The macOS system must set permissions on user home directories to prevent users from having access to read or modify another users files - User directory permissionsDISA STIG Apple Mac OSX 10.14 v2r6Unix

CONFIGURATION MANAGEMENT

AOSX-14-003002 - The macOS system must enable certificate for smartcards.DISA STIG Apple Mac OSX 10.14 v2r6Unix

IDENTIFICATION AND AUTHENTICATION

AOSX-14-003007 - The macOS system must enforce password complexity by requiring that at least one numeric character be used.DISA STIG Apple Mac OSX 10.14 v2r6Unix

IDENTIFICATION AND AUTHENTICATION

AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - ChallengeResponseAuthenticationDISA STIG Apple Mac OSX 10.14 v2r6Unix

IDENTIFICATION AND AUTHENTICATION

AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - enforceSmartCardDISA STIG Apple Mac OSX 10.14 v2r6Unix

IDENTIFICATION AND AUTHENTICATION

AOSX-14-003024 - The macOS system must use multifactor authentication in the establishment of nonlocal maintenance and diagnostic sessions - PasswordAuthenticationDISA STIG Apple Mac OSX 10.14 v2r6Unix

MAINTENANCE

AOSX-14-003025 - The macOS system must implement multifactor authentication for remote access to privileged accounts in such a way that one of the factors is provided by a device separate from the system gaining access.DISA STIG Apple Mac OSX 10.14 v2r6Unix

IDENTIFICATION AND AUTHENTICATION

AOSX-14-003052 - The macOS system must be configured so that the sudo command requires smart card authentication.DISA STIG Apple Mac OSX 10.14 v2r6Unix

CONFIGURATION MANAGEMENT

AOSX-14-004001 - The macOS system must be configured with system log files owned by root and group-owned by wheel or admin - ASLDISA STIG Apple Mac OSX 10.14 v2r6Unix

SYSTEM AND INFORMATION INTEGRITY

AOSX-14-004002 - The macOS system must be configured with system log files set to mode 640 or less permissive - ASLDISA STIG Apple Mac OSX 10.14 v2r6Unix

SYSTEM AND INFORMATION INTEGRITY

AOSX-14-005050 - The macOS Application Firewall must be enabled.DISA STIG Apple Mac OSX 10.14 v2r6Unix

CONFIGURATION MANAGEMENT

AOSX-15-000007 - The macOS system must be configured to disable hot corners - bottom leftDISA STIG Apple Mac OSX 10.15 v1r10Unix

ACCESS CONTROL

AOSX-15-000007 - The macOS system must be configured to disable hot corners - top rightDISA STIG Apple Mac OSX 10.15 v1r10Unix

ACCESS CONTROL

AOSX-15-000016 - The macOS system must be integrated into a directory services infrastructure.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-000025 - The macOS system must be configured so that any connection to the system must display the Standard Mandatory DoD Notice and Consent Banner before granting GUI access to the system - Banner textDISA STIG Apple Mac OSX 10.15 v1r10Unix

ACCESS CONTROL

AOSX-15-000055 - The macOS system must use only Message Authentication Codes (MACs) employing FIPS 140-2 validated cryptographic hash algorithms.DISA STIG Apple Mac OSX 10.15 v1r10Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

AOSX-15-001012 - The macOS system must be configured with audit log files owned by root.DISA STIG Apple Mac OSX 10.15 v1r10Unix

AUDIT AND ACCOUNTABILITY

AOSX-15-001031 - The macOS system must provide an immediate real-time alert to the System Administrator (SA) and Information System Security Officer (ISSO), at a minimum, of all audit failure events requiring real-time alerts.DISA STIG Apple Mac OSX 10.15 v1r10Unix

AUDIT AND ACCOUNTABILITY

AOSX-15-002001 - The macOS system must be configured to disable SMB File Sharing unless it is required.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002006 - The macOS system must be configured to disable the UUCP service.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002009 - The macOS system must be configured to disable AirDrop - allowAirDropDISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002009 - The macOS system must be configured to disable AirDrop - DisableAirDropDISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002013 - The macOS system must be configured to disable the iCloud Reminders services.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002016 - The macOS system must be configured to disable the iCloud Notes services.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002017 - The macOS system must cover or disable the built-in or attached camera when not in use.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

AOSX-15-002021 - The macOS system must be configured to disable sending diagnostic and usage data to Apple.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002051 - The macOS system must be configured to disable the system preference pane for TouchID - HiddenPreferencePanesDISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002052 - The macOS system must be configured to disable the system preference pane for Wallet & ApplePay - DisabledPreferencePanesDISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002053 - The macOS system must be configured to disable the system preference pane for Siri - DisabledPreferencePanesDISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002062 - The macOS system must be configured with Bluetooth turned off unless approved by the organization - HiddenPreferencePanesDISA STIG Apple Mac OSX 10.15 v1r10Unix

SYSTEM AND COMMUNICATIONS PROTECTION

AOSX-15-002066 - The macOS system must not allow an unattended or automatic logon to the system.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-003008 - The macOS system must enforce a 60-day maximum password lifetime restriction.DISA STIG Apple Mac OSX 10.15 v1r10Unix

IDENTIFICATION AND AUTHENTICATION

AOSX-15-003010 - The macOS system must enforce a minimum 15-character password length.DISA STIG Apple Mac OSX 10.15 v1r10Unix

IDENTIFICATION AND AUTHENTICATION

AOSX-15-003052 - The macOS system must be configured so that the sudo command requires smart card authentication.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-004021 - The macOS system must be configured with the sudoers file configured to authenticate users on a per -tty basis.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-005050 - The macOS Application Firewall must be enabled. - EnableFirewallDISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT