Detections
Analytics

Item Search

NameAudit NamePluginCategory
3.077 - The system is not configured to use FIPS compliant Algorithms for Encryption, Hashing, and Signing.DISA Windows Server 2008 DC STIG v6r47Windows

SYSTEM AND COMMUNICATIONS PROTECTION

3.077 - The system is not configured to use FIPS compliant Algorithms for Encryption, Hashing, and Signing.DISA Windows Vista STIG v6r41Windows

SYSTEM AND COMMUNICATIONS PROTECTION

3.077 - The system will be configured to use FIPS-compliant algorithms for encryption, hashing, and signing.DISA Windows Server 2008 R2 MS STIG v1r33Windows

SYSTEM AND COMMUNICATIONS PROTECTION

AMLS-NM-200825 - Arista MLS must use FIPS-compliant mechanisms for authentication to a cryptographic module - entropy sourceDISA STIG Arista MLS DCS-7000 Series NDM V1R2Arista

SYSTEM AND COMMUNICATIONS PROTECTION

Catalina - Limit SSH to FIPS 140 Validated CiphersNIST macOS Catalina v1.5.0 - 800-171Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

Catalina - Limit SSH to FIPS 140 Validated CiphersNIST macOS Catalina v1.5.0 - 800-53r5 LowUnix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

DTBI014-IE11 - Turn off Encryption Support must be enabled.DISA STIG IE 11 v1r18Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI014-IE11 - Turn off Encryption Support must be enabled.DISA STIG IE 11 v1r19Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI1100-IE11 - Allow Fallback to SSL 3.0 (Internet Explorer) must be disabled.DISA STIG IE 11 v1r19Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI1100-IE11 - Allow Fallback to SSL 3.0 (Internet Explorer) must be disabled.DISA STIG IE 11 v1r18Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO188 - Document metadata for password protected files must be protected.DISA STIG Microsoft Office System 2013 v1r9Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO190 - The encryption type for password protected Office 97 thru Office 2003 must be setDISA STIG Microsoft Office System 2016 v1r1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO227 - The ability to add signatures to email messages must be allowed.DISA STIG Microsoft Outlook 2013 v1r13Windows

SYSTEM AND COMMUNICATIONS PROTECTION

EX13-EG-000085 - Exchange internal Send connectors must use domain security (mutual authentication Transport Layer Security).DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

EX13-EG-000335 - Exchange internal Send connectors must use an authentication level.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

GEN000585 - The system must enforce the correctness of the entire password during authentication - 'CRYPT_DEFAULT=6'DISA STIG HP-UX 11.31 v1r19Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN000590 - The system must use a FIPS 140-2 approved cryptographic hashing algorithm for generating account password hashes.DISA STIG for Red Hat Enterprise Linux 5 v1r17 AuditUnix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN000590 - The system must use FIPS 140-2 approved algorithm for generating password hashesDISA STIG HP-UX 11.31 v1r19Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN000595 - The password hashes stored on the system must have been generated using a FIPS 140-2 approved cryptographic hashing algorithm - '/etc/shadow'DISA STIG for Oracle Linux 5 v1r14Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005306 - SNMP service must require a FIPS 140-2 approved hash algorithm as part of its authentication and integrity methodsDISA STIG AIX 6.1 v1r13Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005306 - The SNMP service must require the use of a FIPS 140-2 approved cryptographic hash algorithm as part of its authentication and integrity methods.DISA STIG for Oracle Linux 5 v1r14Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005505 - The SSH daemon must be configured to only use FIPS 140-2 approved ciphers.DISA STIG for Oracle Linux 5 v1r14Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005505 M6 - The SSH daemon must be configured to only use FIPS 140-2 approved ciphers - 'CIPHERS configured'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005505 M6 - The SSH daemon must be configured to only use FIPS 140-2 approved ciphers - 'CIPHERS does not include ARCFOUR/BLOWFISH/CAST'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005506 M6 - The SSH daemon must be configured to not use CBC ciphers - 'CIPHERS configured'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005506 M6 - The SSH daemon must be configured to not use CBC ciphers - 'CIPHERS does not include -CBC'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005507 - SSH daemon must be configured to only use MACs employing FIPS 140-2 approved cryptographic hash algorithmsDISA STIG AIX 6.1 v1r13Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005507 - The SSH daemon must only use message authentication codes (MACs) that employ FIPS 140-2 cryptographic hash algorithms.DISA STIG for Red Hat Enterprise Linux 5 v1r17 AuditUnix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005507 M6 - SSH MACs must use FIPS 140-2 approved algorithms - 'MACS doesn't include HMAC-MD5/HMAC-RIPEMD160/HMAC-SHA1-96/HMAC-MD5-96'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005507 M6 - SSH Server MACs use FIPS 140-2 approved algorithms - 'MACS doesn't include HMAC-MD5/HMAC-RIPEMD160/HMAC-SHA1-96/HMAC-MD5-96'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005510 - The SSH client must be configured to only use FIPS 140-2 approved ciphersDISA STIG HP-UX 11.31 v1r19Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005510 M6 - The SSH client must be configured to only use FIPS 140-2 approved ciphers - 'CIPHERS configured'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005510 M6 - The SSH client must be configured to only use FIPS 140-2 approved ciphers - 'CIPHERS does not include ARCFOUR/BLOWFISH/CAST'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005511 - The SSH client must be configured to not use CBC-based ciphers.DISA STIG AIX 6.1 v1r13Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005511 - The SSH client must be configured to not use CBC-based ciphers.DISA STIG for Red Hat Enterprise Linux 5 v1r17 AuditUnix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005511 M6 - The SSH client must be configured to not use CBC-based ciphers - 'CIPHERS configured'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005511 M6 - The SSH client must be configured to not use CBC-based ciphers - 'CIPHERS does not include -CBC'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005512 - The SSH client must only use message authentication codes (MACs) that employ FIPS 140-2 cryptographic hash algorithms.DISA STIG for Red Hat Enterprise Linux 5 v1r17 AuditUnix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005512 M6 - SSH client MACs use FIPS 140-2 approved algorithms - 'MACS configured'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN005512 M6 - SSH client MACs use FIPS 140-2 approved algorithms - 'MACS doesn't include HMAC-MD5/HMAC-RIPEMD160/HMAC-SHA1-96/HMAC-MD5-96'DISA STIG Apple Mac OSX 10.6 v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN007980 - If the system is using LDAP for authentication or account information, the system must use a TLS connection using FIPS 140-2 approved cryptographic algorithms - 'tls_ciphers'DISA STIG for Oracle Linux 5 v1r14Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN007980 - If using LDAP for auth or account information, must use a TLS connection using FIPS 140-2 approved algorithms - 'tls_ciphers'DISA STIG for Red Hat Enterprise Linux 5 v1r17 AuditUnix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN007980 - If using LDAP, the system must use a TLS connection using FIPS 140-2 approved cryptographic algorithmsDISA STIG HP-UX 11.31 v1r19Unix

SYSTEM AND COMMUNICATIONS PROTECTION

IISW-SI-000204 - A public IIS 8.5 website must only accept Secure Socket Layer connections when authentication is required.DISA IIS 8.5 Site v1r9Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IISW-SI-000246 - Cookies exchanged between the IIS 8.5 website and the client must use SSL/TLS, have cookie properties set to prohibit client-side scripts from reading the cookie data and must not be compressed - compressionEnabledDISA IIS 8.5 Site v1r9Windows

SYSTEM AND COMMUNICATIONS PROTECTION

NET1660 - The network device must use SNMP Version 3 Security Model with FIPS 140-2 cryptography - 'snmp v3 interface'DISA STIG Cisco Firewall v8r24Cisco

AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION

NET1660 - The network device must use SNMP Version 3 Security Model with FIPS 140-2 cryptography - 'snmp v3 user'DISA STIG Cisco Firewall v8r24Cisco

AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION

PPS9-00-012700 - The EDB Postgres Advanced Server must implement NIST FIPS 140-2 validated cryptographic modules to provision digital signatures.EDB PostgreSQL Advanced Server OS Linux Audit v1r7Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SQL2-00-019800 - SQL Server must employ NSA-approved cryptography to protect classified information.DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

WBSP-AS-001370 - The WebSphere Application Server must use DoD-approved Signer Certificates.DISA IBM WebSphere Traditional 9 STIG v1r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION