Item Search

Name	Audit Name	Plugin	Category
1.1 (L1) Host hardware must have auditable, authentic, and up to date system and device firmware	CIS VMware ESXi 8.0 v1.1.0 L1	VMware	SYSTEM AND SERVICES ACQUISITION
1.1 Ensure Latest SQL Server Cumulative and Security Updates are Installed	CIS Microsoft SQL Server 2019 v1.4.0 L1 Database Engine	MS_SQLDB	SYSTEM AND SERVICES ACQUISITION
1.1 Ensure Latest SQL Server Cumulative and Security Updates are Installed	CIS SQL Server 2022 Database L1 DB v1.1.0	MS_SQLDB	SYSTEM AND SERVICES ACQUISITION
1.1 Ensure Latest SQL Server Service Packs and Hotfixes are Installed	CIS SQL Server 2016 Database L1 DB v1.4.0	MS_SQLDB	SYSTEM AND SERVICES ACQUISITION
1.1 Ensure the appropriate MongoDB software version/patches are installed	CIS MongoDB 3.6 Database Audit L1 v1.1.0	MongoDB	SYSTEM AND SERVICES ACQUISITION
1.1 Ensure the Appropriate Version/Patches for Oracle Software Is Installed	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	SYSTEM AND SERVICES ACQUISITION
1.1 Ensure the Appropriate Version/Patches for Oracle Software Is Installed	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	SYSTEM AND SERVICES ACQUISITION
1.2 (L1) Ensure the Image Profile VIB acceptance level is configured properly	CIS VMware ESXi 7.0 v1.4.0 L1 Bare Metal	Unix	SYSTEM AND SERVICES ACQUISITION
1.3 Ensure no unauthorized kernel modules are loaded on the host	CIS VMware ESXi 6.7 v1.3.0 Level 1 Bare Metal	Unix	SYSTEM AND SERVICES ACQUISITION
1.28 (L1) Ensure 'Suppress the unsupported OS warning' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND SERVICES ACQUISITION
2.9 Ensure Legacy EFI Is Valid and Updating - checked regularly	CIS Apple macOS 11.0 Big Sur v4.0.0 L1	Unix	SYSTEM AND SERVICES ACQUISITION
4.1 Ensure the Latest Security Patches are Applied	CIS Oracle MySQL Enterprise Edition 8.0 v1.4.0 L1 Database	MySQLDB	SYSTEM AND SERVICES ACQUISITION
4.1 Ensure the Latest Security Patches are Applied	CIS MySQL 5.7 Community Database L1 v2.0.0	MySQLDB	SYSTEM AND SERVICES ACQUISITION
4.1 Ensure the Latest Security Patches are Applied	CIS MySQL 8.0 Community Database L1 v1.1.0	MySQLDB	SYSTEM AND SERVICES ACQUISITION
4.2 Ensure device is not obviously jailbroken or compromised	MobileIron - CIS Apple iOS 18 v1.0.0 L1 End User Owned	MDM	SYSTEM AND SERVICES ACQUISITION
4.2 Ensure device is not obviously jailbroken or compromised	MobileIron - CIS Apple iPadOS 18 v1.0.0 L1 End User Owned	MDM	SYSTEM AND SERVICES ACQUISITION
4.2 Ensure device is not obviously jailbroken or compromised	AirWatch - CIS Apple iOS 18 v1.0.0 L1 Institution Owned	MDM	SYSTEM AND SERVICES ACQUISITION
4.2 Ensure device is not obviously jailbroken or compromised	AirWatch - CIS Apple iPadOS 18 v1.0.0 L1 End User Owned	MDM	SYSTEM AND SERVICES ACQUISITION
6.5 Ensure that SKU Basic/Consumption is not used on artifacts that need to be monitored (Particularly for Production Workloads)	CIS Microsoft Azure Foundations v3.0.0 L2	microsoft_azure	SYSTEM AND SERVICES ACQUISITION
7.28 (L2) Virtual machines should have virtual machine hardware version 19 or newer	CIS VMware ESXi 8.0 v1.1.0 L2	VMware	SYSTEM AND SERVICES ACQUISITION
8.1 (L1) VMware Tools must be a version that has not reached End of General Support status	CIS VMware ESXi 8.0 v1.1.0 L1	VMware	SYSTEM AND SERVICES ACQUISITION
9.8 Ensure that 'Python version' is currently supported (if in use)	CIS Microsoft Azure Foundations v3.0.0 L1	microsoft_azure	SYSTEM AND SERVICES ACQUISITION
20.3 (L1) Ensure 'Microsoft Internet Explorer is not installed on the system'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
20.42 Ensure 'Operating System is maintained at a supported servicing level'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	SYSTEM AND SERVICES ACQUISITION
MS.TEAMS.5.1v1 - Agencies SHOULD only allow installation of Microsoft apps approved by the agency.	CISA SCuBA Microsoft 365 Teams v1.5.0	microsoft_azure	SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, RISK ASSESSMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND INFORMATION INTEGRITY
MS.TEAMS.5.2v1 - Agencies SHOULD only allow installation of third-party apps approved by the agency.	CISA SCuBA Microsoft 365 Teams v1.5.0	microsoft_azure	ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, RISK ASSESSMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND INFORMATION INTEGRITY
MS.TEAMS.5.3v1 - Agencies SHOULD only allow installation of custom apps approved by the agency.	CISA SCuBA Microsoft 365 Teams v1.5.0	microsoft_azure	ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, RISK ASSESSMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND INFORMATION INTEGRITY
MS.TEAMS.8.1v1 - URL comparison with a blocklist SHOULD be enabled.	CISA SCuBA Microsoft 365 Teams v1.5.0	microsoft_azure	ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
MS.TEAMS.8.2v1 - User click tracking SHOULD be enabled.	CISA SCuBA Microsoft 365 Teams v1.5.0	microsoft_azure	ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search