Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.3.8.1 Set 'Microsoft network server: Disconnect clients when logon hours expire' to 'Enabled'CIS Windows 8 L1 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

1.1.21 Ensure that the --kubelet-certificate-authority argument is set as appropriateCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

IDENTIFICATION AND AUTHENTICATION

1.1.22 Ensure that the --kubelet-client-certificate and --kubelet-client-key arguments are set as appropriate - certificateCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

IDENTIFICATION AND AUTHENTICATION

1.1.22 Ensure that the --kubelet-client-certificate and --kubelet-client-key arguments are set as appropriate - keyCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

IDENTIFICATION AND AUTHENTICATION

1.1.30 Ensure that the API Server only makes use of Strong Cryptographic CiphersCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

IDENTIFICATION AND AUTHENTICATION

1.2.1 Set the 'hostname'CIS Cisco IOS XR 7.x v1.0.0 L1Cisco

IDENTIFICATION AND AUTHENTICATION

1.2.3 Set 'seconds' for 'ssh timeout' for 60 seconds or lessCIS Cisco IOS XR 7.x v1.0.0 L1Cisco

IDENTIFICATION AND AUTHENTICATION

1.2.4.2.1.15 Set 'Configure use of smart cards on fixed data drives' to 'Enabled'CIS Windows 8 L1 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

1.2.4.2.2.15 Set 'Require additional authentication at startup' to 'Enabled'CIS Windows 8 L1 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

1.5.7 Set 'priv' for each 'snmp-server group' using SNMPv3CIS Cisco IOS XR 7.x v1.0.0 L2Cisco

IDENTIFICATION AND AUTHENTICATION

1.5.8 Require 'aes 128' as minimum for 'snmp-server user' when using SNMPv3CIS Cisco IOS XR 7.x v1.0.0 L2Cisco

IDENTIFICATION AND AUTHENTICATION

1.6 Ensure hardware MFA is enabled for the 'root' user accountCIS Amazon Web Services Foundations L2 3.0.0amazon_aws

IDENTIFICATION AND AUTHENTICATION

2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'CIS Oracle Server 12c Windows v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'CIS Oracle Server 12c Linux v3.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.1.14 Ensure that the Kubelet only makes use of Strong Cryptographic CiphersCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

IDENTIFICATION AND AUTHENTICATION

2.2.2 Ensure rsh client is not installedCIS Debian Family Server L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.2.2 Ensure rsh client is not installedCIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.2.4 Ensure telnet client is not installedCIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.2.4 Ensure that A Multi-factor Authentication Policy Exists for Administrative GroupsCIS Microsoft Azure Foundations v3.0.0 L2microsoft_azure

IDENTIFICATION AND AUTHENTICATION

2.3.2 Ensure rsh client is not installedCIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.3.2 Ensure rsh client is not installedCIS Distribution Independent Linux Server L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.3.2 Ensure rsh client is not installedCIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.3.2 Ensure rsh client is not installedCIS Distribution Independent Linux Workstation L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.3.2 Ensure rsh client is not installedCIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.3.4 Ensure telnet client is not installedCIS Distribution Independent Linux Workstation L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.3.4 Ensure telnet client is not installedCIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.3.4 Ensure telnet client is not installedCIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.3.4 Ensure telnet client is not installedCIS Distribution Independent Linux Server L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.3.4 Ensure telnet client is not installedCIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

4.2 Ensure valid public keys are installedCIS PostgreSQL 9.5 OS v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

5.1 Ensure login via 'local' UNIX Domain Socket is configured correctlyCIS PostgreSQL 15 OS v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

5.1 Ensure login via 'local' UNIX Domain Socket is configured correctlyCIS PostgreSQL 9.5 OS v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

5.1 Ensure login via 'local' UNIX Domain Socket is configured correctlyCIS PostgreSQL 9.6 OS v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

5.1 Ensure login via 'local' UNIX Domain Socket is configured correctlyCIS PostgreSQL 10 OS v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

5.1 Ensure login via 'local' UNIX Domain Socket is configured correctlyCIS PostgreSQL 11 OS v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly - local UNIX Domain Socket is configured correctlyCIS PostgreSQL 12 OS v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

5.1.2.1 Ensure 'Per-user MFA' is disabledCIS Microsoft 365 Foundations E3 L1 v3.1.0microsoft_azure

IDENTIFICATION AND AUTHENTICATION

5.2.2.1 Ensure multifactor authentication is enabled for all users in administrative rolesCIS Microsoft 365 Foundations E3 L1 v3.1.0microsoft_azure

IDENTIFICATION AND AUTHENTICATION

6.6.14 Ensure Multi-Factor is used with External AAACIS Juniper OS Benchmark v2.1.0 L2Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.1.7 Ensure Only Suite B Ciphers are set for SSH - weak ciphersCIS Juniper OS Benchmark v2.1.0 L2Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.1.10 Ensure Only Suite B Key Exchange Methods are set for SSH - weak key-exchangeCIS Juniper OS Benchmark v2.1.0 L2Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.2.1 Ensure Web-Management is not Set to HTTPCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.2.4 Ensure Idle Timeout is Set for Web-ManagementCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.3.4 Ensure XNM-SSL SSLv3 Support is Not SetCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.5.3 Ensure REST is Set to use PKI Certificate for HTTPSCIS Juniper OS Benchmark v2.1.0 L2Juniper

IDENTIFICATION AND AUTHENTICATION

8.10 Ensure only MFA enabled identities can access privileged Virtual MachineCIS Microsoft Azure Foundations v3.0.0 L2microsoft_azure

IDENTIFICATION AND AUTHENTICATION

18.9.15.2 (L1) Ensure 'Enumerate administrator accounts on elevation' is set to 'Disabled'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

IDENTIFICATION AND AUTHENTICATION

18.9.59.3.9.2 (L1) Ensure 'Require secure RPC communication' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

IDENTIFICATION AND AUTHENTICATION

18.9.59.3.9.3 (L1) Ensure 'Require use of specific security layer for remote (RDP) connections' is set to 'Enabled: SSL'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

IDENTIFICATION AND AUTHENTICATION

18.9.59.3.9.5 (L1) Ensure 'Set client connection encryption level' is set to 'Enabled: High Level'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

IDENTIFICATION AND AUTHENTICATION