Item Search

Name	Audit Name	Plugin	Category
1.1.18 - AirWatch - Limit the 'number of messages' for 'Text message limit'	AirWatch - CIS Google Android 4 v1.0.0 L2	MDM	ACCESS CONTROL
2.7 Network & IP Options - 'ip.ping_throttle.drop_level <= 100'	TNS NetApp Data ONTAP 7G	NetApp	CONFIGURATION MANAGEMENT
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'apache account is configured'	CIS Apache HTTP Server 2.2 L2 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'apache account is configured'	CIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'apache account is configured'	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd services are running as apache user'	CIS Apache HTTP Server 2.2 L2 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd services are running as apache user'	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd.conf Group = apache'	CIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd.conf Group = apache'	CIS Apache HTTP Server 2.2 L2 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd.conf Group = apache'	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd.conf User = apache'	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd.conf User = apache'	CIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd.conf User = apache'	CIS Apache HTTP Server 2.2 L2 v3.6.0	Unix	ACCESS CONTROL
5.3 Restrict Linux Kernel Capabilities within containers	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	ACCESS CONTROL
5.3 Restrict Linux Kernel Capabilities within containers	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	ACCESS CONTROL
5.3.4 Ensure password hashing algorithm is SHA-512 - password-auth	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
5.3.4 Ensure password hashing algorithm is SHA-512 - system-auth	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
5.4 Ensure Default HTML Content Is Removed - 'httpd-manual is not installed'	CIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware	Unix	CONFIGURATION MANAGEMENT
5.4 Ensure Default HTML Content Is Removed - 'other handler does not exist'	CIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware	Unix	CONFIGURATION MANAGEMENT
5.4 Ensure Default HTML Content Is Removed - 'Server Information handler does not exist'	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	CONFIGURATION MANAGEMENT
5.4 Ensure Default HTML Content Is Removed - 'Server Status handler does not exist'	CIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware	Unix	CONFIGURATION MANAGEMENT
5.4 Ensure Default HTML Content Is Removed - 'Server Status handler does not exist'	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	CONFIGURATION MANAGEMENT
5.29 Ensure that the PIDs cgroup limit is used	CIS Docker v1.7.0 L1 Docker - Linux	Unix	CONFIGURATION MANAGEMENT
EX13-EG-000315 - The Exchange SMTP automated banner response must not reveal server details.	DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r6	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
EX16-MB-000650 - The Exchange SMTP automated banner response must not reveal server details.	DISA Microsoft Exchange 2016 Mailbox Server STIG v2r6	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MaxKeepAliveRequests parameter value should be appropriately configured.	TNS IBM HTTP Server Best Practice	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MaxKeepAliveRequests parameter value should be appropriately configured.	TNS IBM HTTP Server Best Practice Middleware	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
RHEL-07-010060 - The Red Hat Enterprise Linux operating system must enable a user session lock until that user re-establishes access using established identification and authentication procedures.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-07-010119 - The Red Hat Enterprise Linux operating system must be configured so that when passwords are changed or new passwords are established, pwquality must be used.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	IDENTIFICATION AND AUTHENTICATION
RHEL-07-010170 - The Red Hat Enterprise Linux operating system must be configured so that when passwords are changed a minimum of four character classes must be changed.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	IDENTIFICATION AND AUTHENTICATION
RHEL-07-010200 - The Red Hat Enterprise Linux operating system must be configured so that the PAM system service is configured to store only encrypted representations of passwords.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	IDENTIFICATION AND AUTHENTICATION
RHEL-07-010330 - The Red Hat Enterprise Linux operating system must lock the associated account after three unsuccessful root logon attempts are made within a 15-minute period.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-07-010339 - The Red Hat Enterprise Linux operating system must specify the default 'include' directory for the /etc/sudoers file - include directory for the /etc/sudoers file.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-010500 - The Red Hat Enterprise Linux operating system must uniquely identify and must authenticate organizational users (or processes acting on behalf of organizational users) using multifactor authentication.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	IDENTIFICATION AND AUTHENTICATION
RHEL-07-020020 - The Red Hat Enterprise Linux operating system must prevent nonprivileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-07-020028 - The Red Hat Enterprise Linux operating system must be configured to allow sending email notifications of configuration changes and adverse events to designated personnel.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-020030 - The Red Hat Enterprise Linux operating system must be configured so that a file integrity tool verifies the baseline operating system configuration at least weekly.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-020040 - The Red Hat Enterprise Linux operating system must be configured so that designated personnel are notified if baseline configurations are changed in an unauthorized manner.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-020230 - The Red Hat Enterprise Linux operating system must be configured so that the x86 Ctrl-Alt-Delete key sequence is disabled on the command line.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-020231 - The Red Hat Enterprise Linux operating system must be configured so that the x86 Ctrl-Alt-Delete key sequence is disabled in the Graphical User Interface.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-030872 - The Red Hat Enterprise Linux operating system must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/gshadow.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
RHEL-07-030873 - The Red Hat Enterprise Linux operating system must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/shadow.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
RHEL-07-030874 - The Red Hat Enterprise Linux operating system must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/security/opasswd.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
RHEL-07-040410 - The Red Hat Enterprise Linux operating system must be configured so that the SSH public host key files have mode 0644 or less permissive.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-040450 - The Red Hat Enterprise Linux operating system must be configured so that the SSH daemon performs strict mode checking of home directory configuration files.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-040650 - The Red Hat Enterprise Linux operating system must not allow interfaces to perform Internet Protocol version 4 (IPv4) Internet Control Message Protocol (ICMP) redirects by default.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-040700 - The Red Hat Enterprise Linux operating system must not have the Trivial File Transfer Protocol (TFTP) server package installed if not required for operational support.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-040710 - The Red Hat Enterprise Linux operating system must be configured so that remote X connections are disabled except to fulfill documented and validated mission requirements.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-040810 - The Red Hat Enterprise Linux operating system access control program must be configured to grant or deny system access to specific hosts and services.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
WG110 W22 - The number of allowed simultaneous requests must be set.	DISA STIG Apache Site 2.2 Windows v1r13	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search