Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.6 Ensure /dev/shm is configured - /etc/fstabCIS Fedora 19 Family Linux Server L1 v1.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.1.8 Ensure nodev option set on /dev/shm partitionCIS Fedora 19 Family Linux Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.1.11 Ensure separate partition exists for /var/tmpCIS Fedora 19 Family Linux Workstation L2 v1.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.1.13 Ensure separate partition exists for /homeCIS SUSE Linux Enterprise Server 11 L2 v2.1.1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1.17 Ensure separate partition exists for /homeCIS Fedora 19 Family Linux Workstation L2 v1.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.1.18 Ensure nodev option set on /home partitionCIS Fedora 19 Family Linux Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.1.19.2 (L1) Ensure 'Do not allow proxy settings to be changed' is set to 'Enabled'CIS Mozilla Firefox ESR GPO v1.0.0 L1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

1.1.21 Ensure sticky bit is set on all world-writable directoriesCIS Debian 9 Server L1 v1.0.1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1.22 Ensure sticky bit is set on all world-writable directoriesCIS Fedora 19 Family Linux Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

1.1.22.2 (L1) Ensure 'Do not allow tracking protection preferences to be changed' is set to 'Enabled'CIS Mozilla Firefox ESR GPO v1.0.0 L1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

1.5.1 Ensure core dumps are restricted - sysctlCIS Debian 9 Workstation L1 v1.0.1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.3 Ensure permissions on all logfiles are configuredCIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure file deletion events by users are collected - 32-bitCIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure file deletion events by users are collected - 64-bitCIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure file deletion events by users are collected - 64-bitCIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure file deletion events by users are collected - 64-bitCIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure file deletion events by users are collected - auditctl (32-bit)CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure file deletion events by users are collected - auditctl (32-bit)CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure file deletion events by users are collected - auditctl (32-bit)CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure file deletion events by users are collected - auditctl delete x64CIS Debian Family Workstation L2 v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure file deletion events by users are collected - deleteCIS Debian Family Workstation L2 v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure successful file system mounts are collected - auditctl mountCIS Debian 9 Server L2 v1.0.1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure successful file system mounts are collected - auditctl mount x64CIS Debian 9 Workstation L2 v1.0.1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure successful file system mounts are collected - mountsCIS Debian 9 Workstation L2 v1.0.1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.13 Ensure successful file system mounts are collected - mounts x64CIS Debian 9 Workstation L2 v1.0.1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.15 Ensure file deletion events by users are collected - auditctl b32 unlinkCIS Distribution Independent Linux Workstation L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.15 Ensure file deletion events by users are collected - auditctl b32 unlinkCIS Distribution Independent Linux Server L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.15 Ensure file deletion events by users are collected - auditctl b64 unlinkCIS Distribution Independent Linux Workstation L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.15 Ensure file deletion events by users are collected - auditctl b64 unlinkCIS Distribution Independent Linux Server L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.15 Ensure file deletion events by users are collected - b32 unlinkCIS Distribution Independent Linux Server L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.15 Ensure file deletion events by users are collected - b32 unlinkCIS Distribution Independent Linux Workstation L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.15 Ensure file deletion events by users are collected - b64 unlinkCIS Distribution Independent Linux Server L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1.15 Ensure file deletion events by users are collected - b64 unlinkCIS Distribution Independent Linux Workstation L2 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.2 Include Cryptographic Key FilesCIS BIND DNS v1.0.0 L1 Caching Only Name ServerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

4.2 Include Cryptographic Key FilesCIS BIND DNS v1.0.0 L1 Authoritative Name ServerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

4.2.3 Ensure permissions on all logfiles are configuredCIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.2.3 Ensure permissions on all logfiles are configuredCIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.2.3 Ensure permissions on all logfiles are configuredCIS Debian Family Workstation L1 v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.2.3 Ensure permissions on all logfiles are configuredCIS Debian Family Server L1 v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.2.3 Ensure permissions on all logfiles are configuredCIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

4.4.1 Consider external secret storageCIS Google Kubernetes Engine (GKE) Autopilot v1.1.0 L2GCP

SYSTEM AND COMMUNICATIONS PROTECTION

4.4.2 Consider external secret storageCIS Google Kubernetes Engine (GKE) v1.7.0 L2GCP

SYSTEM AND COMMUNICATIONS PROTECTION

5.1.6 Ensure that Service Account Tokens are only mounted where necessary - serviceaccountsCIS Kubernetes v1.20 Benchmark v1.0.1 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.1.6 Ensure that Service Account Tokens are only mounted where necessary - serviceaccountsCIS Kubernetes v1.23 Benchmark v1.0.1 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.4.1 Prefer using secrets as files over secrets as environment variablesCIS Kubernetes v1.20 Benchmark v1.0.1 L2 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.4.4 Ensure default user umask is 027 or more restrictive - /etc/bash.bashrcCIS Debian 9 Workstation L1 v1.0.1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

5.4.4 Ensure default user umask is 027 or more restrictive - /etc/profileCIS Debian 9 Server L1 v1.0.1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

5.20 Ensure mount propagation mode is not set to sharedCIS Docker v1.7.0 L1 Docker - LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

6.1.10 Ensure no world writable files existCIS Fedora 19 Family Linux Server L1 v1.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

WatchGuard : Data Loss Prevention Signature Update - 'Enabled'TNS Best Practice WatchGuard Audit 1.0.0WatchGuard

SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY