Item Search

Name	Audit Name	Plugin	Category
1.1.2.1.4 Have at least 1 number (1, 2, 3...)	CIS Zoom L1 v1.0.0	Zoom	CONFIGURATION MANAGEMENT
1.1.14 Ensure nodev option set on /home partition	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.16 Ensure nosuid option set on /dev/shm partition	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.8 Ensure DNS is servers are configured - nameserver 2	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
2 - Remove or Disable Example Content - enable-welcome-root	TNS Best Practice JBoss 7 Linux	Unix	CONFIGURATION MANAGEMENT
2.2.24 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.25 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.2.26 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.26 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2019 v3.0.1 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.26 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.27 (L1) Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.31 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.32 Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC	Windows	ACCESS CONTROL
2.2.33 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.33 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.8 Ensure Dbcreator and Securityadmin roles are only used as needed	CIS Microsoft SharePoint 2019 DB v1.0.0	MS_SQLDB	ACCESS CONTROL
2.9 Ensure Dbcreator and Securityadmin roles are only used as needed	CIS Microsoft SharePoint 2016 DB v1.1.0	MS_SQLDB	ACCESS CONTROL
3.1 Ensure DNS services are configured correctly	CIS Cisco ASA 9.x Firewall L1 v1.1.0	Cisco	CONFIGURATION MANAGEMENT, CONTINGENCY PLANNING, PLANNING, PROGRAM MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION
3.1 Ensure DNS services are configured correctly - domain-lookup	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	CONFIGURATION MANAGEMENT
3.3 Enable Strong TCP Sequence Number Generation - TCP_STRONG_ISS = 2	CIS Solaris 11.2 L1 v1.1.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.3 Enable Strong TCP Sequence Number Generation - TCP_STRONG_ISS = 2	CIS Solaris 11 L1 v1.1.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.3.2 Include TSIG key in named.conf 'TSIG key 2'	CIS ISC BIND 9.0/9.5 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
6.1 Ensure 'Attack Vectors' Runtime Parameters are Configured	CIS PostgreSQL 11 DB v1.0.0	PostgreSQLDB	CONFIGURATION MANAGEMENT
6.1 Ensure 'Attack Vectors' Runtime Parameters are Configured	CIS PostgreSQL 10 DB v1.0.0	PostgreSQLDB	CONFIGURATION MANAGEMENT
6.1 Ensure 'Attack Vectors' Runtime Parameters are Configured	CIS PostgreSQL 9.5 OS v1.1.0	Unix
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used	CIS PostgreSQL 14 OS v 1.2.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used	CIS PostgreSQL 15 OS v1.1.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
8 - Managing TLS and SSL - FIPS 140-2 Enabled	NetApp Security Hardening Guide for ONTAP 9 v1.7.0	Netapp_API	SYSTEM AND COMMUNICATIONS PROTECTION
10.2 SN.2 Remove Support for Internet Services (inetd)	CIS Solaris 11.2 L2 v1.1.0	Unix
10.2 SN.2 Remove Support for Internet Services (inetd)	CIS Solaris 11.1 L2 v1.0.0	Unix
10.2 SN.2 Remove Support for Internet Services (inetd)	CIS Oracle Solaris 11.4 L2 v1.1.0	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
20.21 Ensure 'DoD Root Certificate Authority (CA) certificates' are installed in the 'Trusted Root Store'	CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
20.21 Ensure 'DoD Root Certificate Authority (CA) certificates' are installed in the 'Trusted Root Store'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
20.21 Ensure 'DoD Root Certificate Authority (CA) certificates' are installed in the 'Trusted Root Store'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Apple OSX 10.11 El Capitan Level 2, version 1.1.0	CIS Apple OSX 10.11 El Capitan L2 v1.1.0	Unix
ARST-L2-000100 - The Arista MLS layer 2 switch must have IP Source Guard enabled on all user-facing or untrusted access switch ports.	DISA STIG Arista MLS EOS 4.2x L2S v2r1	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
CIS Google Android 4 Benchmark v1.0.0 - Level 2 - AirWatch	AirWatch - CIS Google Android 4 v1.0.0 L2	MDM
CIS_Aliyun_Linux_2_L1_v1.0.0.audit from CIS Aliyun Linux 2 Benchmark v1.0.0	CIS Aliyun Linux 2 L1 v1.0.0	Unix
CIS_Amazon_Linux_2_v3.0.0_L1.audit from CIS Amazon Linux 2 Benchmark v3.0.0	CIS Amazon Linux 2 v3.0.0 L1	Unix
CIS_Amazon_Linux_2_v3.0.0_L2.audit from CIS Amazon Linux 2 Benchmark v3.0.0	CIS Amazon Linux 2 v3.0.0 L2	Unix
CISC-L2-000140 - The Cisco switch must have IP Source Guard enabled on all user-facing or untrusted access switch ports.	DISA STIG Cisco IOS XE Switch L2S v3r1	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
CISC-L2-000140 - The Cisco switch must have IP Source Guard enabled on all user-facing or untrusted access switch ports.	DISA STIG Cisco IOS Switch L2S v3r1	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
EP11-00-012700 - The EDB Postgres Advanced Server must implement NIST FIPS 140-2 or 140-3 validated cryptographic modules to provision digital signatures.	EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r4	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
EPAS-00-012700 - The EDB Postgres Advanced Server must implement NIST FIPS 140-2 or 140-3 validated cryptographic modules to provision digital signatures.	EnterpriseDB PostgreSQL Advanced Server OS Linux v2r1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
FNFG-FW-000050 - The FortiGate firewall must protect traffic log records from unauthorized access while in transit to the central audit server - enc-algorithm	DISA Fortigate Firewall STIG v1r3	FortiGate	AUDIT AND ACCOUNTABILITY
FNFG-FW-000050 - The FortiGate firewall must protect traffic log records from unauthorized access while in transit to the central audit server. - set server	DISA Fortigate Firewall STIG v1r3	FortiGate	AUDIT AND ACCOUNTABILITY
JUEX-L2-000130 - The Juniper EX switch must be configured to enable IP Source Guard on all user-facing or untrusted access VLANs.	DISA Juniper EX Series Layer 2 Switch v2r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
MobileIron - CIS Google Android 4 Benchmark v1.0.0 - Level 2	MobileIron - CIS Google Android 4 v1.0.0 L2	MDM	ACCESS CONTROL
OH12-1X-000222 - OHS must have the ScoreBoardFile directive disabled.	DISA STIG Oracle HTTP Server 12.1.3 v2r2	Unix	CONFIGURATION MANAGEMENT
WA000-WWA026 A22 - The httpd.conf StartServers directive must be set properly.	DISA STIG Apache Server 2.2 Unix v1r11 Middleware	Unix

Detections

Analytics

Item Search