Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.8 Ensure 'Attachment Filtering Agent' is configuredCIS Microsoft Exchange Server 2019 L1 Edge v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.1 Alter the Advertised server.info StringCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.1 Alter the Advertised server.info StringCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.1.2 Ensure the Common Attachment Types Filter is enabledCIS Microsoft 365 Foundations E3 L1 v3.1.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.1.4 Ensure Safe Attachments policy is enabledCIS Microsoft 365 Foundations E5 L2 v3.1.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.1.5 Ensure Safe Attachments for SharePoint, OneDrive, and Microsoft Teams is EnabledCIS Microsoft 365 Foundations E5 L2 v3.1.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.1.7 Ensure that an anti-phishing policy has been createdCIS Microsoft 365 Foundations E5 L1 v3.1.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.1.14 Ensure comprehensive attachment filtering is appliedCIS Microsoft 365 Foundations E3 L2 v3.1.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.2 Alter the Advertised server.number StringCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.2 Alter the Advertised server.number StringCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.3 Alter the Advertised server.built DateCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.3 Alter the Advertised server.built DateCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.4 Disable X-Powered-By HTTP Header and Rename the Server Value for all ConnectorsCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.4 Disable X-Powered-By HTTP Header and Rename the Server Value for all ConnectorsCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.4.1 Ensure Priority account protection is enabled and configuredCIS Microsoft 365 Foundations E5 L1 v3.1.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.4.2 Ensure Priority accounts have 'Strict protection' presets appliedCIS Microsoft 365 Foundations E5 L1 v3.1.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.5 Disable client facing Stack TracesCIS Apache Tomcat 10 L1 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.5 Disable client facing Stack TracesCIS Apache Tomcat 10 L1 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.5.1.5.1 Ensure 'Automatically download attachments' is set to 'Disabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.1.5.2 Ensure 'Do not include Internet Calendar integration in Outlook' is set to 'Enabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

2.5.1.6.1 Ensure 'Download full text of articles as HTML attachments' is set to 'Disabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.3.1.1 Ensure 'Allow users to demote attachments to Level 2' is set to 'Disabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.3.1.2 Ensure 'Display Level 1 attachments' is set to 'Disabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.3.1.3 Ensure 'Do not prompt about Level 1 attachments when closing an item' is set to 'Disabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.3.1.4 Ensure 'Do not prompt about Level 1 attachments when sending an item' is set to 'Disabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.3.1.5 Ensure 'Remove file extensions blocked as Level 1' is set to 'Disabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.3.1.6 Ensure 'Remove file extensions blocked as Level 2' is set to 'Disabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.4.1 Ensure 'Allow hyperlinks in suspected phishing e-mail messages' is set to 'Disabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.8 Ensure 'Prevent users from customizing attachment security settings' is set to 'Enabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.7 Ensure Sever Header is Modified To Prevent Information DisclosureCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.7 Ensure Sever Header is Modified To Prevent Information DisclosureCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

4.1 Block Mixed Active ContentCIS Mozilla Firefox 102 ESR Linux L1 v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

4.1 Block Mixed Active ContentCIS Mozilla Firefox 102 ESR Windows L1 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

4.3.1 Enable Botnet C&C Domain Blocking DNS FilterCIS Fortigate 7.0.x v1.3.0 L2FortiGate

SYSTEM AND INFORMATION INTEGRITY

6.3.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 13.0 Ventura v2.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

6.3.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 14.0 Sonoma v1.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 11.0 Big Sur v4.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 12.0 Monterey v3.1.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 10.15 Catalina v3.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

8.4 Ensure ETag Response Header Fields Do Not Include InodesCIS Apache HTTP Server 2.4 L2 v2.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

EX19-ED-000122 Active hyperlinks in messages from non .mil domains must be rendered unclickable.DISA Microsoft Exchange 2019 Edge Server STIG v2r1Windows

SYSTEM AND INFORMATION INTEGRITY

EX19-ED-000124 Exchange messages with a blank sender field must be filtered.DISA Microsoft Exchange 2019 Edge Server STIG v2r1Windows

SYSTEM AND INFORMATION INTEGRITY

EX19-ED-000126 The Exchange sender filter must block unaccepted domains.DISA Microsoft Exchange 2019 Edge Server STIG v2r1Windows

SYSTEM AND INFORMATION INTEGRITY

EX19-ED-000127 Exchange nonexistent recipients must not be blocked.DISA Microsoft Exchange 2019 Edge Server STIG v2r1Windows

SYSTEM AND INFORMATION INTEGRITY

EX19-ED-000128 The Exchange Sender Reputation filter must be enabled.DISA Microsoft Exchange 2019 Edge Server STIG v2r1Windows

SYSTEM AND INFORMATION INTEGRITY

EX19-ED-000129 The Exchange Sender Reputation filter must identify the spam block level.DISA Microsoft Exchange 2019 Edge Server STIG v2r1Windows

SYSTEM AND INFORMATION INTEGRITY

EX19-ED-000134 The Exchange Recipient filter must be enabled.DISA Microsoft Exchange 2019 Edge Server STIG v2r1Windows

SYSTEM AND INFORMATION INTEGRITY

EX19-ED-000138 The Exchange Simple Mail Transfer Protocol (SMTP) IP Allow List Connection filter must be enabled.DISA Microsoft Exchange 2019 Edge Server STIG v2r1Windows

SYSTEM AND INFORMATION INTEGRITY

EX19-MB-000139 Exchange must have anti-spam filtering configured.DISA Microsoft Exchange 2019 Mailbox Server STIG v2r1Windows

SYSTEM AND INFORMATION INTEGRITY

EX19-MB-000140 Exchange must not send automated replies to remote domains.DISA Microsoft Exchange 2019 Mailbox Server STIG v2r1Windows

SYSTEM AND INFORMATION INTEGRITY