Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2 Ensure 'host headers' are on all sitesCIS IIS 10 v1.1.1 Level 1Windows
1.3 Ensure 'Directory browsing' is set to Disabled - directory browsing is set to disabledCIS IIS 10 v1.2.0 Level 1Windows
1.4 Ensure 'application pool identity' is configured for all application poolsCIS IIS 10 v1.1.1 Level 1Windows
2.1 Ensure 'global authorization rule' is set to restrict accessCIS IIS 10 v1.1.1 Level 1Windows
2.1 Ensure 'global authorization rule' is set to restrict accessCIS IIS 10 v1.2.0 Level 1Windows
2.4 Ensure 'forms authentication' is set to use cookies - ApplicationCIS IIS 10 v1.2.0 Level 2Windows
2.4 Ensure 'forms authentication' is set to use cookies - ApplicationCIS IIS 10 v1.1.1 Level 2Windows
2.4 Ensure 'forms authentication' is set to use cookies - DefaultCIS IIS 10 v1.2.0 Level 2Windows
2.4 Ensure 'forms authentication' is set to use cookies - DefaultCIS IIS 10 v1.1.1 Level 2Windows
2.5 Ensure 'cookie protection mode' is configured for forms authentication - DefaultCIS IIS 10 v1.1.1 Level 1Windows
2.8 Ensure the default ulimit is configured appropriately - daemon.json nofile softCIS Docker v1.5.0 L1 Docker LinuxUnix
2.8 Ensure the default ulimit is configured appropriately - daemon.json nproc softCIS Docker v1.5.0 L1 Docker LinuxUnix
2.10 Ensure the default cgroup usage has been confirmed - daemon.jsonCIS Docker v1.5.0 L2 Docker LinuxUnix
2.10 Ensure the default cgroup usage has been confirmed - dockerdCIS Docker v1.5.0 L2 Docker LinuxUnix
2.11 Ensure base device size is not changed until needed - daemon.jsonCIS Docker v1.5.0 L2 Docker LinuxUnix
3.1 Ensure 'deployment method retail' is setCIS IIS 10 v1.1.1 Level 1Windows
3.1 Ensure 'deployment method retail' is setCIS IIS 10 v1.2.0 Level 1Windows
3.2 Ensure 'debug' is turned off - ApplicationsCIS IIS 10 v1.2.0 Level 2Windows
3.2 Ensure 'debug' is turned off - ApplicationsCIS IIS 10 v1.1.1 Level 2Windows
3.3 Ensure custom error messages are not off - ApplicationsCIS IIS 10 v1.1.1 Level 2Windows
3.4 Ensure IIS HTTP detailed errors are hidden from displaying remotely - ApplicationsCIS IIS 10 v1.2.0 Level 1Windows
3.4 Ensure IIS HTTP detailed errors are hidden from displaying remotely - DefaultCIS IIS 10 v1.2.0 Level 1Windows
3.5 Ensure ASP.NET stack tracing is not enabled - ApplicationsCIS IIS 10 v1.1.1 Level 2Windows
3.6 Ensure 'httpcookie' mode is configured for session state - ApplicationsCIS IIS 10 v1.1.1 Level 2Windows
3.6 Ensure 'httpcookie' mode is configured for session state - ApplicationsCIS IIS 10 v1.2.0 Level 2Windows
3.6 Ensure 'httpcookie' mode is configured for session state - DefaultCIS IIS 10 v1.1.1 Level 2Windows
3.7 Ensure 'cookies' are set with HttpOnly attribute - ApplicationsCIS IIS 10 v1.2.0 Level 1Windows
3.7 Ensure 'cookies' are set with HttpOnly attribute - DefaultCIS IIS 10 v1.2.0 Level 1Windows
3.7 Ensure 'cookies' are set with HttpOnly attribute - DefaultCIS IIS 10 v1.1.1 Level 1Windows
4.1 Ensure 'maxAllowedContentLength' is configured - ApplicationsCIS IIS 10 v1.1.1 Level 2Windows
4.2 Ensure 'maxURL request filter' is configured - ApplicationsCIS IIS 10 v1.2.0 Level 2Windows
4.2 Ensure 'maxURL request filter' is configured - DefaultCIS IIS 10 v1.1.1 Level 2Windows
4.4 Ensure non-ASCII characters in URLs are not allowed - ApplicationsCIS IIS 10 v1.2.0 Level 2Windows
4.4 Ensure non-ASCII characters in URLs are not allowed - DefaultCIS IIS 10 v1.1.1 Level 2Windows
4.4 Ensure non-ASCII characters in URLs are not allowed - DefaultCIS IIS 10 v1.2.0 Level 2Windows
4.5 Ensure Double-Encoded requests will be rejected - ApplicationsCIS IIS 10 v1.1.1 Level 1Windows
4.5.1 Configure Image Provenance using ImagePolicyWebhook admission controllerCIS Google Kubernetes Engine (GKE) v1.4.0 L2GCP
4.6 Ensure 'HTTP Trace Method' is disabled - ApplicationsCIS IIS 10 v1.1.1 Level 1Windows
4.6 Ensure 'HTTP Trace Method' is disabled - DefaultCIS IIS 10 v1.1.1 Level 1Windows
4.7 Ensure Unlisted File Extensions are not allowed - ApplicationsCIS IIS 10 v1.2.0 Level 1Windows
4.7 Ensure Unlisted File Extensions are not allowed - ApplicationsCIS IIS 10 v1.1.1 Level 1Windows
4.7 Ensure Unlisted File Extensions are not allowed - DefaultCIS IIS 10 v1.2.0 Level 1Windows
4.8 Ensure Handler is not granted Write and Script/Execute - ApplicationsCIS IIS 10 v1.2.0 Level 1Windows
4.8 Ensure Handler is not granted Write and Script/Execute - ApplicationsCIS IIS 10 v1.1.1 Level 1Windows
4.8 Ensure Handler is not granted Write and Script/Execute - DefaultCIS IIS 10 v1.2.0 Level 1Windows
4.9 Ensure 'notListedIsapisAllowed' is set to falseCIS IIS 10 v1.1.1 Level 1Windows
4.10 Ensure 'notListedCgisAllowed' is set to falseCIS IIS 10 v1.1.1 Level 1Windows
4.10 Ensure 'notListedCgisAllowed' is set to falseCIS IIS 10 v1.2.0 Level 1Windows
7.1 Ensure HSTS Header is set - ServerCIS IIS 10 v1.1.1 Level 2Windows
7.1 Ensure HSTS Header is set - SitesCIS IIS 10 v1.2.0 Level 2Windows