Item Search

Name	Audit Name	Plugin	Category
1.1.11 - AirWatch - Turn Off AirDrop Discoverability	AirWatch - CIS Apple iOS 8 v1.0.0 L2	MDM	ACCESS CONTROL
3.1 Ensure 'FAILED_LOGIN_ATTEMPTS' Is Less than or Equal to '5'	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
3.6 Ensure 'PASSWORD_GRACE_TIME' Is Less than or Equal to '5'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL
4.1.3.7 Ensure kernel module loading and unloading is collected - auditctl modprobe	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.7 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.7 Ensure kernel module loading and unloading is collected - rmmod	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.7 Ensure kernel module loading and unloading is collected - rmmod	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY
4.1.16 Ensure kernel module loading and unloading is collected - /sbin/modprobe	CIS Debian Family Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - /sbin/rmmod	CIS Debian Family Server L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/insmod	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/modprobe	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl modprobe	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - init_module	CIS Debian Family Server L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - init_module/delete_module (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - init_module/delete_module (64-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - init_module/delete_module (32-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - insmod	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - modprobe	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/insmod	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.17 Ensure kernel module loading and unloading is collected - /sbin/insmod	CIS Debian 9 Server L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.17 Ensure kernel module loading and unloading is collected - /sbin/rmmod	CIS Debian 9 Server L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.17 Ensure kernel module loading and unloading is collected - auditctl /sbin/rmmod	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.17 Ensure kernel module loading and unloading is collected - init_module	CIS Debian 9 Server L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.3 Do not install unnecessary packages in the container	CIS Docker 1.13.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
4.3 Do not install unnecessary packages in the container	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
5.3.18 Collect Kernel Module Loading and Unloading - /sbin/modprobe	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	CONFIGURATION MANAGEMENT
5.3.18 Collect Kernel Module Loading and Unloading - /sbin/rmmod	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	CONFIGURATION MANAGEMENT
5.3.18 Collect Kernel Module Loading and Unloading - init_module	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	CONFIGURATION MANAGEMENT
5.4.11 Ensure password prohibited reuse is at a minimum 5	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
6.12 Ensure all HTTP Header Logging options are enabled - X-Forwarded-For	CIS Palo Alto Firewall 8 Benchmark L1 v1.0.0	Palo_Alto	AUDIT AND ACCOUNTABILITY
6.26 Ensure fewer than 5 users have global administrator assignment	CIS Microsoft Azure Foundations v4.0.0 L1	microsoft_azure	ACCESS CONTROL
7.6 Remove the X wrapper and enable xdm	CIS FreeBSD v1.0.5	Unix	CONFIGURATION MANAGEMENT
8.2.2 Ensure the rsyslog Service is activated - run level 5	CIS Debian Linux 7 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
9.2.3 Limit Password Reuse	CIS Debian Linux 7 L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
89.17 (L1) Ensure 'Generate Security Audits' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
89.19 (L1) Ensure 'Generate Security Audits' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
BIND-9X-001321 - The core BIND 9.x server files must be group owned by a group designated for DNS administration only.	DISA BIND 9.x STIG v2r3	Unix	CONFIGURATION MANAGEMENT
CISC-RT-000250 - The Cisco perimeter router must be configured to enforce approved authorizations for controlling the flow of information between interconnected networks in accordance with applicable policy.	DISA Cisco IOS XR Router RTR STIG v3r2	Cisco	ACCESS CONTROL
CISC-RT-000280 - The Cisco perimeter router must be configured to protect an enclave connected to an approved gateway by using an inbound filter that only permits packets with destination addresses within the sites address space.	DISA Cisco IOS Router RTR STIG v3r3	Cisco	ACCESS CONTROL
DKER-EE-004030 - The on-failure container restart policy must be is set to 5 in Docker Enterprise.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
DTAVSEL-018 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to allow access to files if scanning times out.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-113 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Demand scanner must be configured to include all local drives and their sub-directories.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5	Unix	SYSTEM AND INFORMATION INTEGRITY
Ensure password reuse is limited - pam_pwhistory.so	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix	IDENTIFICATION AND AUTHENTICATION
Ensure password reuse is limited - pam_unix.so	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix	IDENTIFICATION AND AUTHENTICATION
GEN005180 - All .Xauthority files must have mode 0600 or less permissive.	DISA STIG Solaris 10 X86 v2r4	Unix	CONFIGURATION MANAGEMENT
GEN005190 - The .Xauthority files must not have extended ACLs.	DISA STIG Solaris 10 X86 v2r4	Unix	CONFIGURATION MANAGEMENT
Number of recent user passwords to store	Tenable Cisco ACI	Cisco_ACI	IDENTIFICATION AND AUTHENTICATION
O112-C2-015700 - The DBMS must use NIST-validated FIPS 140-2-compliant cryptography for authentication mechanisms.	DISA STIG Oracle 11.2g v2r5 Linux	Unix	IDENTIFICATION AND AUTHENTICATION
O112-C2-015700 - The DBMS must use NIST-validated FIPS 140-2-compliant cryptography for authentication mechanisms.	DISA STIG Oracle 11.2g v2r5 Windows	Windows	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search