Item Search

Name	Audit Name	Plugin	Category
1.1.9 Set 'aaa accounting network'	CIS Cisco IOS XE 17.x v2.1.1 L2	Cisco	AUDIT AND ACCOUNTABILITY
1.2 Do Not Install a Multi-Use System - chkconfig	CIS BIND DNS v3.0.1 Authoritative Name Server	Unix	CONFIGURATION MANAGEMENT
1.2 Do Not Install a Multi-Use System - chkconfig	CIS BIND DNS v3.0.1 Caching Only Name Server	Unix	CONFIGURATION MANAGEMENT
1.2 Do Not Install a Multi-Use System - systemctl	CIS BIND DNS v3.0.1 Authoritative Name Server	Unix	CONFIGURATION MANAGEMENT
1.2 Do Not Install a Multi-Use System - systemctl	CIS BIND DNS v3.0.1 Caching Only Name Server	Unix	CONFIGURATION MANAGEMENT
1.2.5 Disable the rhnsd Daemon	CIS Red Hat 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.2.5 Disable the rhnsd Daemon	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.2.5 Disable the rhnsd Daemon	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
1.2.5 Disable the rhnsd Daemon	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.2.5 Ensure the version of the operating system is an active vendor supported release.	CIS Amazon Linux 2 STIG v1.0.0 L3	Unix	SYSTEM AND INFORMATION INTEGRITY
1.3.2 Ensure filesystem integrity is regularly checked	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
1.5 Installing ISC BIND 9 - bind9 installation	CIS BIND DNS v3.0.1 Caching Only Name Server	Unix
1.5 Installing ISC BIND 9 - bind9 installation	CIS BIND DNS v1.0.0 L1 Authoritative Name Server	Unix	CONFIGURATION MANAGEMENT
1.5 Installing ISC BIND 9 - named location	CIS BIND DNS v3.0.1 Authoritative Name Server	Unix	CONFIGURATION MANAGEMENT
1.5 Installing ISC BIND 9 - named location	CIS BIND DNS v3.0.1 Caching Only Name Server	Unix	CONFIGURATION MANAGEMENT
1.5 Installing ISC BIND 9 - named location	CIS BIND DNS v1.0.0 L1 Caching Only Name Server	Unix	CONFIGURATION MANAGEMENT
1.7.3 Ensure the Standard Mandatory DoD Notice and Consent Banner are configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
2.1.4 Ensure 'SECURE_REGISTER_' Is Set to 'TCPS' or 'IPC'	CIS Oracle Server 12c Windows v3.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.1.4 Ensure 'SECURE_REGISTER_' Is Set to 'TCPS' or 'IPC'	CIS Oracle Server 12c Linux v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.2.1 Ensure the screen package is installed.	CIS Amazon Linux 2 STIG v1.0.0 L3	Unix	ACCESS CONTROL
2.2.20 Ensure telnet server is not enabled	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
2.2.21 Ensure tftp server is not enabled	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
3.1.3 Ensure network interfaces are not in promiscuous mode	CIS Amazon Linux 2 STIG v1.0.0 L3	Unix	CONFIGURATION MANAGEMENT
3.6 Configure Network Time Protocol (NTP) - OPTIONS=-u ntp:ntp -p /var/run/ntpd.pid	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
3.6 Configure Network Time Protocol (NTP) - restrict -6 default kod nomodify nopeer notrap noquery	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
3.6 Configure Network Time Protocol (NTP) - restrict default kod nomodify nopeer notrap noquery	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
3.6 Configure Network Time Protocol (NTP) - server aaa.bbb.ccc.ddd	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
3.7 Remove LDAP	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
5.2 Ensure SELinux security options are set, if applicable	CIS Docker Community Edition v1.1.0 L2 Docker	Unix	ACCESS CONTROL
5.2.32 Ensure no '.shosts' files exist on the system.	CIS Amazon Linux 2 STIG v1.0.0 L3	Unix
5.3 Ensure that, if applicable, SELinux security options are set	CIS Docker v1.7.0 L2 Docker - Linux	Unix	SYSTEM AND INFORMATION INTEGRITY
5.4.1.9 Ensure password expiration is 60 Day maximum for exisiting passwords	CIS Amazon Linux 2 STIG v1.0.0 L3	Unix	IDENTIFICATION AND AUTHENTICATION
6.3.4 Upgrade Password Hashing Algorithm to SHA-512	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	IDENTIFICATION AND AUTHENTICATION
DTAVSEL-205 - A notification mechanism or process must be in place to notify Administrators of out of date DAT, detected malware and error codes - includeOdsTasks	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-205 - A notification mechanism or process must be in place to notify Administrators of out of date DAT, detected malware and error codes - jokesAlert	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-205 - A notification mechanism or process must be in place to notify Administrators of out of date DAT, detected malware and error codes - programsAlert	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-205 - A notification mechanism or process must be in place to notify Administrators of out of date DAT, detected malware and error codes - SMTP port	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-205 - A notification mechanism or process must be in place to notify Administrators of out of date DAT, detected malware and error codes - SMTP recipients	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-205 - A notification mechanism or process must be in place to notify Administrators of out of date DAT, detected malware and error codes - SMTP sender	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
Ensure system accounts are non-login	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix	ACCESS CONTROL
JBOS-AS-000655 - JBoss must be configured to use an approved cryptographic algorithm in conjunction with TLS.	DISA JBoss EAP 6.3 STIG v2r5	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
JBOS-AS-000685 - The JRE installed on the JBoss server must be kept up to date.	DISA JBoss EAP 6.3 STIG v2r5	Unix	SYSTEM AND INFORMATION INTEGRITY
RHEL-06-000275 - The operating system must employ cryptographic mechanisms to protect information in storage.	DISA Red Hat Enterprise Linux 6 STIG v2r2	Unix	CONFIGURATION MANAGEMENT
RHEL-06-000276 - The operating system must protect the confidentiality and integrity of data at rest.	DISA Red Hat Enterprise Linux 6 STIG v2r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
RHEL-06-000277 - The operating system must employ cryptographic mechanisms to prevent unauthorized disclosure of data at rest unless otherwise protected by alternative physical measures.	DISA Red Hat Enterprise Linux 6 STIG v2r2	Unix	CONFIGURATION MANAGEMENT
RHEL-06-000505 - The operating system must conduct backups of system-level information contained in the information system per organization defined frequency to conduct backups that are consistent with recovery time and recovery point objectives.	DISA Red Hat Enterprise Linux 6 STIG v2r2	Unix	CONFIGURATION MANAGEMENT
RHEL-07-030201 - The Red Hat Enterprise Linux operating system must be configured to off-load audit logs onto a different system or storage media from the system being audited.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	AUDIT AND ACCOUNTABILITY
RHEL-07-030210 - The Red Hat Enterprise Linux operating system must take appropriate action when the remote logging buffer is full.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	AUDIT AND ACCOUNTABILITY
RHEL-07-030211 - The Red Hat Enterprise Linux operating system must label all off-loaded audit logs before sending them to the central log server.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	AUDIT AND ACCOUNTABILITY
RHEL-09-213110 - RHEL 9 must implement nonexecutable data to protect its memory from unauthorized code execution.	DISA Red Hat Enterprise Linux 9 STIG v2r3	Unix	SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search