Item Search

Name	Audit Name	Plugin	Category
1.6 Ensure 'application pool identity' is configured for anonymous user identity	CIS IIS 7 L1 v1.8.0	Windows	CONFIGURATION MANAGEMENT
1.6.2 Create Pod Security Policies for your cluster	CIS Kubernetes 1.7.0 Benchmark v1.1.0 L1	Unix	CONFIGURATION MANAGEMENT
1.6.2 Create Pod Security Policies for your cluster	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
2.1 Ensure 'global authorization rule' is set to restrict access	CIS IIS 8.0 v1.5.1 Level 1	Windows	ACCESS CONTROL
2.2.41 Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE' - LOCAL SERVICE, NETWORK SERVICE	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.41 Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE' - LOCAL SERVICE, NETWORK SERVICE	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.3 Verify Display Sleep is set to a value larger than the Screen Saver	CIS Apple OSX 10.11 El Capitan L1 v1.1.0	Unix	ACCESS CONTROL
2.3.3 Verify Display Sleep is set to a value larger than the Screen Saver	CIS Apple OSX 10.10 Yosemite L1 v1.2.0	Unix	ACCESS CONTROL
3.3.2 Include TSIG key in named.conf 'TSIG key 1 permissions'	CIS ISC BIND 9.0/9.5 v2.0.0	Unix
3.3.2 Include TSIG key in named.conf 'TSIG key 2 permissions'	CIS ISC BIND 9.0/9.5 v2.0.0	Unix
4.5 Configure Solaris Auditing - not_terminated	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Ensure Double-Encoded requests will be rejected - Applications	CIS IIS 10 v1.2.1 Level 1	Windows	SYSTEM AND INFORMATION INTEGRITY
4.5 Ensure Double-Encoded Requests will be Rejected - Default	CIS IIS 7 L1 v1.8.0	Windows	CONFIGURATION MANAGEMENT
4.5 Ensure Double-Encoded requests will be rejected - Default	CIS IIS 10 v1.2.1 Level 1	Windows	SYSTEM AND INFORMATION INTEGRITY
4.11 Ensure 'Dynamic IP Address Restrictions' is enabled	CIS IIS 8.0 v1.5.1 Level 1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
5.29 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	CONFIGURATION MANAGEMENT
5.29 Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	CONFIGURATION MANAGEMENT
5.32 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.33 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.33 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.33 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	CONFIGURATION MANAGEMENT
5.33 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG	Windows	CONFIGURATION MANAGEMENT
5.33 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG	Windows	CONFIGURATION MANAGEMENT
5.33 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.33 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
5.33 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL	Windows	CONFIGURATION MANAGEMENT
69.33 (L1) Ensure 'Web Management Service (WMSvc)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Intune for Windows 10 v3.0.1 L1	Windows	CONFIGURATION MANAGEMENT
CIS_Palo_Alto_Firewall_9_Benchmark_v1.1.0_L2.audit from CIS Palo Alto Firewall 9 Benchmark v1.1.0	CIS Palo Alto Firewall 9 v1.1.0 L2	Palo_Alto
CIS_Palo_Alto_Firewall_10_Benchmark_v1.2.0_L2.audit from CIS Palo Alto Firewall 10 Benchmark v1.2.0	CIS Palo Alto Firewall 10 v1.2.0 L2	Palo_Alto
CIS_Palo_Alto_Firewall_11_Benchmark_v1.1.0_L1.audit from CIS Palo Alto Firewall 11 Benchmark v1.1.0	CIS Palo Alto Firewall 11 v1.1.0 L1	Palo_Alto
CIS_Palo_Alto_Firewall_11_Benchmark_v1.1.0_L2.audit from CIS Palo Alto Firewall 11 Benchmark v1.1.0	CIS Palo Alto Firewall 11 v1.1.0 L2	Palo_Alto
IIST-SI-000201 - The IIS 10.0 website session state must be enabled.	DISA IIS 10.0 Site v2r10	Windows	ACCESS CONTROL
IIST-SI-000202 - The IIS 10.0 website session state cookie settings must be configured to Use Cookies mode.	DISA IIS 10.0 Site v2r10	Windows	ACCESS CONTROL
IIST-SI-000226 - The IIS 10.0 website must be configured to limit the size of web requests.	DISA IIS 10.0 Site v2r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SI-000227 - The IIS 10.0 websites Maximum Query String limit must be configured.	DISA IIS 10.0 Site v2r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SI-000230 - Unlisted file extensions in URL requests must be filtered by any IIS 10.0 website.	DISA IIS 10.0 Site v2r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SV-000118 - The IIS 10.0 web server must only contain functions necessary for operation.	DISA IIS 10.0 Server v2r10	Windows	CONFIGURATION MANAGEMENT
IIST-SV-000118 - The IIS 10.0 web server must only contain functions necessary for operation.	DISA IIS 10.0 Server v3r2	Windows	CONFIGURATION MANAGEMENT
IIST-SV-000142 - The IIS 10.0 web server must restrict inbound connections from non-secure zones.	DISA IIS 10.0 Server v2r10	Windows	ACCESS CONTROL
IIST-SV-000152 - IIS 10.0 web server session IDs must be sent to the client using TLS.	DISA IIS 10.0 Server v2r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SV-000215 - ASP.NET version must be removed from the HTTP Response Header information.	DISA IIS 10.0 Server v3r2	Windows	SYSTEM AND INFORMATION INTEGRITY
IIST-SV-000215 - ASP.NET version must be removed from the HTTP Response Header information.	DISA IIS 10.0 Server v2r10	Windows	SYSTEM AND INFORMATION INTEGRITY
IISW-SI-000201 - The IIS 8.5 website session state must be enabled.	DISA IIS 8.5 Site v2r9	Windows	ACCESS CONTROL
IISW-SI-000202 - The IIS 8.5 website session state cookie settings must be configured to Use Cookies mode.	DISA IIS 8.5 Site v2r9	Windows	ACCESS CONTROL
IISW-SI-000216 - The IIS 8.5 website must have resource mappings set to disable the serving of certain file types.	DISA IIS 8.5 Site v2r9	Windows	CONFIGURATION MANAGEMENT
IISW-SI-000220 - A private websites authentication mechanism must use client certificates to transmit session identifier to assure integrity.	DISA IIS 8.5 Site v2r9	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
IISW-SV-000118 - The IIS 8.5 web server must only contain functions necessary for operation.	DISA IIS 8.5 Server v2r7	Windows	CONFIGURATION MANAGEMENT
IISW-SV-000137 - The production IIS 8.5 web server must utilize SHA2 encryption for the Machine Key.	DISA IIS 8.5 Server v2r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IISW-SV-000140 - Warning and error messages displayed to clients must be modified to minimize the identity of the IIS 8.5 web server, patches, loaded modules, and directory paths.	DISA IIS 8.5 Server v2r7	Windows	SYSTEM AND INFORMATION INTEGRITY
IISW-SV-000142 - The IIS 8.5 web server must restrict inbound connections from nonsecure zones.	DISA IIS 8.5 Server v2r7	Windows	ACCESS CONTROL

Detections

Analytics

Item Search