Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2 Use Dedicated Least Privileged Account for MySQL Daemon/ServiceCIS MySQL 5.6 Enterprise Windows OS L1 v2.0.0Windows

ACCESS CONTROL

1.2.9 - System account lockdown - 'bin login=false rlogin=false'CIS AIX 5.3/6.1 L2 v1.1.0Unix

ACCESS CONTROL

1.2.9 - System account lockdown - 'lpd login=false rlogin=false'CIS AIX 5.3/6.1 L2 v1.1.0Unix

ACCESS CONTROL

1.2.9 - System account lockdown - 'nobody login=false rlogin=false'CIS AIX 5.3/6.1 L2 v1.1.0Unix

ACCESS CONTROL

1.2.9 - System account lockdown - 'uucp login=false rlogin=false'CIS AIX 5.3/6.1 L2 v1.1.0Unix

ACCESS CONTROL

2.1.3 Ensure chrony is not run as the root userCIS Oracle Linux 7 v4.0.0 L1 ServerUnix

ACCESS CONTROL

2.3.3 Ensure chrony is not run as the root userCIS Oracle Linux 9 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

2.7.5 - SNMP - disable Readwrite community - 'no communities have readWrite set'CIS AIX 5.3/6.1 L2 v1.1.0Unix

ACCESS CONTROL

2.17 Ensure That 'Restrict access to Microsoft Entra admin center' is Set to 'Yes'CIS Microsoft Azure Foundations v3.0.0 L1microsoft_azure

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.23 Ensure That No Custom Subscription Administrator Roles ExistCIS Microsoft Azure Foundations v3.0.0 L1microsoft_azure

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

4.01 init.ora - '_trace_files_public = FALSE'CIS v1.1.0 Oracle 11g OS L1Unix

ACCESS CONTROL

4.1 Restrict access to $CATALINA_HOMECIS Apache Tomcat 7 L1 v1.1.0Unix

ACCESS CONTROL

4.2 Restrict access to $CATALINA_BASECIS Apache Tomcat 7 L1 v1.1.0 MiddlewareUnix

ACCESS CONTROL

4.4 Restrict access to Tomcat logs directoryCIS Apache Tomcat 7 L1 v1.1.0Unix

ACCESS CONTROL

4.4.2 Ensure 'SELECT_CATALOG_ROLE' Is Revoked from Unauthorized 'GRANTEE'CIS Oracle Server 11g R2 DB v2.2.0OracleDB

ACCESS CONTROL

4.5.1 Ensure 'ALL' Is Revoked from Unauthorized 'GRANTEE' on 'AUD$'CIS Oracle Server 11g R2 DB v2.2.0OracleDB

ACCESS CONTROL

4.9 Restrict access to Tomcat catalina.propertiesCIS Apache Tomcat 7 L1 v1.1.0 MiddlewareUnix

ACCESS CONTROL

4.12 init.ora - 'sql92_security = TRUE'CIS v1.1.0 Oracle 11g OS Windows Level 2Windows

ACCESS CONTROL

4.14 Restrict access to Tomcat web.xmlCIS Apache Tomcat 7 L1 v1.1.0Unix

ACCESS CONTROL

5.1.4 Check Library folder for world writable filesCIS Apple macOS 10.13 L2 v1.1.0Unix

ACCESS CONTROL

5.3 Set Sticky Bit on World Writable DirectoriesCIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

5.6 Ensure Lockdown mode is enabledCIS VMware ESXi 6.5 v1.0.0 Level 1VMware

ACCESS CONTROL

5.7 Do not enable the 'root' accountCIS Apple OSX 10.10 Yosemite L1 v1.2.0Unix

ACCESS CONTROL

6.2 Restrict Access to SYSCAT.AUDITUSECIS IBM DB2 v10 v1.1.0 Database Level 1IBM_DB2DB

ACCESS CONTROL

6.10 Restrict Access to SYSCAT.PACKAGESCIS IBM DB2 v10 v1.1.0 Database Level 2IBM_DB2DB

ACCESS CONTROL

6.15 Restrict Access to SYSCAT.ROLEAUTHCIS IBM DB2 v10 v1.1.0 Database Level 1IBM_DB2DB

ACCESS CONTROL

6.18 Restrict Access to SYSCAT.SCHEMAAUTHCIS IBM DB2 v10 v1.1.0 Database Level 1IBM_DB2DB

ACCESS CONTROL

6.24 Restrict Access to TablespacesCIS IBM DB2 v10 v1.1.0 Database Level 1IBM_DB2DB

ACCESS CONTROL

7.1 Disable System Accounts - Ensure account 'noaccess' is locked.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.1 Disable System Accounts - Ensure account 'uucp' disallows password login.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.1 Disable System Accounts - should pass if the default shell for 'adm' is set to /usr/bin/false.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.1 Disable System Accounts - should pass if the default shell for 'bin' is set to /usr/bin/false.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.1 Disable System Accounts - should pass if the default shell for 'nobody4' is set to /usr/bin/false.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.1 Disable System Accounts - should pass if the default shell for 'smmsp' is set to /usr/bin/false.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

8.1 Block system accountsCIS FreeBSD v1.0.5Unix

ACCESS CONTROL

9.3 Verify System Account Default Passwords - non-loginCIS Solaris 11.1 L1 v1.0.0Unix

ACCESS CONTROL

9.3 Verify System Account Default Passwords - non-loginCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

9.6 Ensure root PATH Integrity - writeable dir in pathCIS Solaris 11 L1 v1.1.0Unix

ACCESS CONTROL

12 - Restrict access to logs directory - modeTNS Best Practice Jetty 9 LinuxUnix

ACCESS CONTROL

12 - Restrict access to logs directory - ownerTNS Best Practice Jetty 9 LinuxUnix

ACCESS CONTROL

15 - Restrict access to web application directory - ownerTNS Best Practice Jetty 9 LinuxUnix

ACCESS CONTROL

16 - Restrict access to JETTY.policy - modeTNS Best Practice Jetty 9 LinuxUnix

ACCESS CONTROL

17 - Restrict access to JETTY.properties - modeTNS Best Practice Jetty 9 LinuxUnix

ACCESS CONTROL

19 - Restrict access to logging.properties - modeTNS Best Practice Jetty 9 LinuxUnix

ACCESS CONTROL

20 - Restrict access to server.xml - modeTNS Best Practice Jetty 9 LinuxUnix

ACCESS CONTROL

20.29 Ensure 'FTP servers are configured to prevent access to the system drive'CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MSWindows

ACCESS CONTROL

20.50 Ensure 'Permissions for the system drive root directory must conform to minimum requirements'CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DCWindows

ACCESS CONTROL

20.51 Ensure 'Permissions for the system drive root directory must conform to minimum requirements'CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DCWindows

ACCESS CONTROL

Adtran : Ensure the default 'admin' username is not usedTNS Adtran AOS Best Practice AuditAdtran

ACCESS CONTROL

FireEye - AAA LDAP binding user should not be an adminTNS FireEyeFireEye

ACCESS CONTROL