| 1.1.2.1.1 Ensure /tmp is tmpfs or a separate partition | CIS SUSE Linux Enterprise 16 v1.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT |
| 1.1.2.1.1 Ensure /tmp is tmpfs or a separate partition | CIS Amazon Linux 2 v4.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT |
| 1.1.2.1.1 Ensure /tmp is tmpfs or a separate partition | CIS Debian Linux 13 v1.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT |
| 1.1.2.1.1 Ensure /tmp is tmpfs or a separate partition | CIS Debian Linux 13 v1.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT |
| 1.5.3 Ensure kernel.yama.ptrace_scope is configured | CIS Debian Linux 13 v1.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT |
| 1.5.3 Ensure kernel.yama.ptrace_scope is configured | CIS Debian Linux 13 v1.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT |
| 1.8.2 Ensure GDM disable-user-list is configured | CIS SUSE Linux Enterprise 16 v1.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT |
| 3.3.1.6 Ensure net.ipv4.icmp_ignore_bogus_error_responses is configured | CIS SUSE Linux Enterprise 16 v1.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT |
| 3.3.1.6 Ensure net.ipv4.icmp_ignore_bogus_error_responses is configured | CIS Amazon Linux 2 v4.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT |
| 3.3.1.6 Ensure net.ipv4.icmp_ignore_bogus_error_responses is configured | CIS Debian Linux 13 v1.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT |
| 3.3.1.6 Ensure net.ipv4.icmp_ignore_bogus_error_responses is configured | CIS SUSE Linux Enterprise 16 v1.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT |
| 3.3.1.13 Ensure net.ipv4.conf.default.rp_filter is configured | CIS Debian Linux 13 v1.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT |
| 3.3.1.13 Ensure net.ipv4.conf.default.rp_filter is configured | CIS SUSE Linux Enterprise 16 v1.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT |
| 3.3.1.13 Ensure net.ipv4.conf.default.rp_filter is configured | CIS Debian Linux 13 v1.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT |
| GEN000241 - The system clock must be synchronized continuously, or at least daily - 'NTP daemon is started at boot' | DISA AIX 5.3 STIG v1r2 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN000560 - The system must not have accounts configured with blank or null passwords. | DISA AIX 5.3 STIG v1r2 | Unix | IDENTIFICATION AND AUTHENTICATION |
| GEN001160 - All files and directories must have a valid owner. | DISA AIX 5.3 STIG v1r2 | Unix | ACCESS CONTROL |
| GEN001610 - Run control scripts' lists of preloaded libraries must contain only absolute paths. | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001840 - All global initialization files' executable search paths must contain only absolute paths - '/etc/.login' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001840 - All global initialization files' executable search paths must contain only absolute paths - '/etc/bashrc' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001840 - All global initialization files' executable search paths must contain only absolute paths - '/etc/csh.cshrc' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001840 - All global initialization files' executable search paths must contain only absolute paths - '/etc/csh.login' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001840 - All global initialization files' executable search paths must contain only absolute paths - '/etc/environment' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001840 - All global initialization files' executable search paths must contain only absolute paths - '/etc/security/environ' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001845 - Global initialization files' library search paths must contain only absolute paths - '/etc/bashrc' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001845 - Global initialization files' library search paths must contain only absolute paths - '/etc/environment' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001845 - Global initialization files' library search paths must contain only absolute paths - '/etc/profile' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001845 - Global initialization files' library search paths must contain only absolute paths - '/etc/security/.login' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001845 - Global initialization files' library search paths must contain only absolute paths - '/etc/security/environ' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001850 - Global initialization files' lists of preloaded libraries must contain only absolute paths - '/etc/environment' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001850 - Global initialization files' lists of preloaded libraries must contain only absolute paths - '/etc/security/.login' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001850 - Global initialization files' lists of preloaded libraries must contain only absolute paths - '/etc/security/environ' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001900 - All local initialization files' executable search paths must contain only absolute paths. | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN001901 - Local initialization files' library search paths must contain only absolute paths - 'LD_LIBRARY_PATH' | DISA AIX 5.3 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| GEN002430 - Removable media, remote file systems and any file system not containing approved device files must be mounted with nodev | DISA AIX 5.3 STIG v1r2 | Unix | ACCESS CONTROL |
| GEN002560 - The system and user default umask must be 077 - '/etc/*' | DISA AIX 5.3 STIG v1r2 | Unix | ACCESS CONTROL |
| GEN003510 - Kernel core dumps must be disabled unless needed - 'secondary dump device' | DISA AIX 5.3 STIG v1r2 | Unix | ACCESS CONTROL |
| GEN005525 - The SSH client must not permit GSSAPI authentication unless needed. | DISA AIX 5.3 STIG v1r2 | Unix | IDENTIFICATION AND AUTHENTICATION |
| GEN005526 - The SSH daemon must not permit Kerberos authentication unless needed. | DISA AIX 5.3 STIG v1r2 | Unix | IDENTIFICATION AND AUTHENTICATION |
| GEN005540 - The SSH daemon must be configured for IP filtering - '/etc/hosts.deny' | DISA AIX 5.3 STIG v1r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| GEN005600 - IP forwarding for IPv4 must not be enabled, unless the system is a router. | DISA AIX 5.3 STIG v1r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| GEN008640 - The system must not use removable media as the boot loader - 'both' | DISA AIX 5.3 STIG v1r2 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| GEN008640 - The system must not use removable media as the boot loader - 'service' | DISA AIX 5.3 STIG v1r2 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| WIN00-000001 - Windows operating systems that are no longer supported by the vendor for security updates must not be installed on a system. | DISA Windows Vista STIG v6r41 | Windows | CONFIGURATION MANAGEMENT |
| WINCC-000029 - Group Policies must be refreshed in the background if the user is logged on. | DISA Windows Vista STIG v6r41 | Windows | CONFIGURATION MANAGEMENT |
| WINER-000009 - The system must be configured to send error reports on TCP port 1232. | DISA Windows Vista STIG v6r41 | Windows | CONFIGURATION MANAGEMENT |
| WINFW-000001 - A host-based firewall must be installed and enabled on the system. | DISA Windows Vista STIG v6r41 | Windows | CONFIGURATION MANAGEMENT |
| WINFW-000100 - Inbound exceptions to the firewall on domain workstations must only allow authorized management systems. | DISA Windows Vista STIG v6r41 | Windows | CONFIGURATION MANAGEMENT |
| WINGE-000100 - EMET v5.5 or later must be installed on the system. | DISA Windows Vista STIG v6r41 | Windows | CONFIGURATION MANAGEMENT |
| WINGE-000200 - A group must be defined on domain systems to include all local administrator accounts. | DISA Windows Vista STIG v6r41 | Windows | CONFIGURATION MANAGEMENT |
