Item Search

NameAudit NamePluginCategory
1.1.6 Ensure that the --insecure-port argument is set to 0CIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

SYSTEM AND INFORMATION INTEGRITY

2.1 Ensure 'Ad Hoc Distributed Queries' Server Configuration Option is set to '0'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.1 Ensure 'Ad Hoc Distributed Queries' Server Configuration Option is set to '0'CIS SQL Server 2014 Database L1 AWS RDS v1.5.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.1.2 Ensure 'extproc' Is Not Present in 'listener.ora'CIS Oracle Server 12c Windows v3.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.4 Ensure 'Database Mail XPs' Server Configuration Option is set to '0'CIS SQL Server 2012 Database L1 AWS RDS v1.6.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.4 Ensure 'Database Mail XPs' Server Configuration Option is set to '0'CIS SQL Server 2012 Database L1 DB v1.6.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.4 Ensure the Status Module Is DisabledCIS Apache HTTP Server 2.2 L1 v3.6.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.4 Ensure the Status Module Is DisabledCIS Apache HTTP Server 2.2 L1 v3.6.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.4 Ensure the Status Module Is DisabledCIS Apache HTTP Server 2.2 L2 v3.6.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.6 Ensure 'Remote Access' Server Configuration Option is set to '0'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.6 Ensure 'Remote Access' Server Configuration Option is set to '0'CIS SQL Server 2012 Database L1 AWS RDS v1.6.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.7 Ensure 'Remote Admin Connections' Server Configuration Option is set to '0'CIS SQL Server 2014 Database L1 AWS RDS v1.5.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.9 Ensure 'SQL Mail XPs' Server Configuration Option is set to '0'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.10 Ensure Unnecessary SQL Server Protocols are set to 'Disabled' - 'Shared Memory protocol is disabled'CIS SQL Server 2014 Database L1 OS v1.5.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.11 Ensure Unnecessary SQL Server Protocols are set to 'Disabled' - 'Named Pipes protocol is disabled'CIS SQL Server 2008 R2 DB OS L1 v1.7.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.11 Ensure Unnecessary SQL Server Protocols are set to 'Disabled' - 'TCP/IP protocol is disabled'CIS SQL Server 2008 R2 DB OS L1 v1.7.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.13 Ensure 'Hide Instance' option is set to 'Yes' for Production SQL Server instancesCIS SQL Server 2008 R2 DB OS L1 v1.7.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.15 Ensure 'xp_cmdshell' Server Configuration Option is set to '0'CIS SQL Server 2012 Database L1 DB v1.6.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.15 Ensure 'xp_cmdshell' Server Configuration Option is set to '0'CIS SQL Server 2014 Database L1 DB v1.5.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.16 Ensure 'xp_cmdshell' Server Configuration Option is set to '0'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

3.2 Restrict Recursive Queries - Caching Name ServerCIS BIND DNS v1.0.0 L1 Caching Only Name ServerUnix

SYSTEM AND INFORMATION INTEGRITY

3.2.1.15 Ensure 'Allow adding VPN configurations' is set to 'Disabled'MobileIron - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1MDM

SYSTEM AND INFORMATION INTEGRITY

3.4.1 Ensure DCCP is disabled - lsmodCIS Distribution Independent Linux Workstation L2 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.4.1 Ensure DCCP is disabled - modprobeCIS Distribution Independent Linux Workstation L2 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.4.2 Ensure SCTP is disabled - lsmodCIS Distribution Independent Linux Server L2 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.4.4 Ensure TIPC is disabled - lsmodCIS Distribution Independent Linux Server L2 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.4.4 Ensure TIPC is disabled - modprobeCIS Distribution Independent Linux Workstation L2 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.5.1 Ensure DCCP is disabled - lsmodCIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.5.2 Ensure SCTP is disabled - modprobeCIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.5.2 Ensure SCTP is disabled - modprobeCIS Debian Family Server L2 v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.5.3 Ensure RDS is disabled - modprobeCIS Debian Family Workstation L2 v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.5.4 Ensure TIPC is disabled - lsmodCIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.5.4 Ensure TIPC is disabled - modprobeCIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.2.6 Ensure SSH X11 forwarding is disabledCIS Distribution Independent Linux Server L2 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.7 Ensure HTTP Request Methods Are Restricted - 'httpd.conf Document Root LimitExcept = GET,POST or OPTIONS only'CIS Apache HTTP Server 2.2 L1 v3.6.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.7 Ensure HTTP Request Methods Are Restricted - 'httpd.conf Document Root Order = Deny,Allow'CIS Apache HTTP Server 2.2 L1 v3.6.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.7 Ensure HTTP Request Methods Are Restricted - 'Require all denied'CIS Apache HTTP Server 2.2 L1 v3.6.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.7 Ensure HTTP Request Methods Are Restricted - 'Require all denied'CIS Apache HTTP Server 2.2 L1 v3.6.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

5.8 Ensure the HTTP TRACE Method Is DisabledCIS Apache HTTP Server 2.2 L1 v3.6.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.8 Ensure the HTTP TRACE Method Is DisabledCIS Apache HTTP Server 2.2 L1 v3.6.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'httpd.conf <VirtualHost> RewriteEngine = on'CIS Apache HTTP Server 2.2 L2 v3.6.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'httpd.conf RewriteCond = %{THE_REQUEST} !HTTP/1.1$'CIS Apache HTTP Server 2.2 L1 v3.6.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'RewriteEngine on'CIS Apache HTTP Server 2.2 L1 v3.6.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'RewriteEngine on'CIS Apache HTTP Server 2.2 L1 v3.6.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'RewriteRule configuration'CIS Apache HTTP Server 2.2 L1 v3.6.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.12 Ensure IP Address Based Requests Are Disallowed - Rewrite module not loadedCIS Apache HTTP Server 2.2 L2 v3.6.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

5.13 Ensure the IP Addresses for Listening for Requests Are Specified - 'httpd.conf Listen [::ffff:0.0.0.0]:80 does not exists'CIS Apache HTTP Server 2.2 L2 v3.6.0Unix

SYSTEM AND INFORMATION INTEGRITY

6.4 Ensure DNS sinkholing is configured on all anti-spyware profiles in useCIS Palo Alto Firewall 9 v1.1.0 L1Palo_Alto

SYSTEM AND INFORMATION INTEGRITY

8.1 Ensure 'SQL Server Browser Service' is configured correctlyCIS SQL Server 2012 Database L1 DB v1.6.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

8.1 Ensure 'SQL Server Browser Service' is configured correctlyCIS SQL Server 2014 Database L1 DB v1.5.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY