Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 9.6 OS v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.6 Ensure overlay kernel module is not available	CIS AlmaLinux OS 8 v4.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
1.1.1.6 Ensure overlay kernel module is not available	CIS Oracle Linux 8 v4.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
1.1.1.6 Ensure overlay kernel module is not available	CIS Red Hat Enterprise Linux 8 v4.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
1.1.1.6 Ensure overlay kernel module is not available	CIS Rocky Linux 8 v3.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
1.1.1.6 Ensure overlay kernel module is not available	CIS Red Hat Enterprise Linux 8 v4.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
1.1.1.6 Ensure overlay kernel module is not available	CIS Red Hat Enterprise Linux 10 v1.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
1.1.1.6 Ensure overlay kernel module is not available	CIS Oracle Linux 8 v4.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
1.1.1.6 Ensure overlay kernel module is not available	CIS Red Hat Enterprise Linux 10 v1.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
1.1.1.6 Ensure overlay kernel module is not available	CIS AlmaLinux OS 8 v4.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
2.2.1 Ensure X Window System is not installed	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
2.2.2 Ensure X11 Server components are not installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
2.2.2 Ensure X11 Server components are not installed	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT
2.2.2 Ensure X11 Server components are not installed	CIS SUSE Linux Enterprise 12 v3.2.1 L1 Server	Unix	CONFIGURATION MANAGEMENT
2.2.2 Ensure xorg-x11-server-common is not installed	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.3.4 Ensure 'ALLOW_GROUP_ACCESS_TO_SGA' Is Set To `FALSE`	CIS Oracle Database 23ai v1.0.0 L1 RDBMS	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
2.4 Password Security - 'security.passwd.rules.minimum.alphabetic = 2'	TNS NetApp Data ONTAP 7G	NetApp	IDENTIFICATION AND AUTHENTICATION
3.4.1.1 Ensure iptables is installed	CIS Oracle Linux 7 v4.0.0 L1 Workstation	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.1.1 Ensure iptables is installed	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.1.1 Ensure iptables is installed	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.1.1 Ensure a single firewall configuration utility is in use	CIS SUSE Linux Enterprise 15 v2.0.1 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.1.1 Ensure a single firewall configuration utility is in use	CIS SUSE Linux Enterprise 15 v2.0.1 L1 Workstation	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.1.7 Ensure events that modify the system's network environment are collected - /etc/issue	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's network environment are collected - /etc/issue.net	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's network environment are collected - /etc/sysconfig/network	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's network environment are collected - auditctl /etc/hosts	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's network environment are collected - auditctl /etc/issue.net	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's network environment are collected - auditctl /etc/issue.net	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's network environment are collected - auditctl b32 sethostname	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.8 Enable IP6tables	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.1 Verify AppArmor	CIS Docker 1.6 v1.0.0 L2 Docker	Unix	ACCESS CONTROL
5.4 Restrict Linux Kernel Capabilities within containers	CIS Docker 1.6 v1.0.0 L1 Docker	Unix	ACCESS CONTROL
5.16 Do not share the host's IPC namespace	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
6.1 Setup Client-cert Authentication	CIS Apache Tomcat 10.1 v1.1.0 L2	Unix	IDENTIFICATION AND AUTHENTICATION
7.7 Ensure Firewall is active	CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
DTAVSEL-005 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to find unknown program viruses.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-010 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to scan all file types.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-015 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Clean as first action when programs and jokes are found.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-017 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to deny access to the file if an error occurs during scanning.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-018 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to allow access to files if scanning times out.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-019 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be enabled to scan mounted volumes when mounted volumes point to a network server without an anti-virus solution installed.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
Ensure IMAP and POP3 server is not enabled	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix	CONFIGURATION MANAGEMENT
FFOX-00-000004 - Firefox must be configured to not automatically check for updated versions of installed search plugins.	DISA STIG Mozilla Firefox Windows v6r6	Windows	CONFIGURATION MANAGEMENT
FFOX-00-000010 - Firefox must be configured to prevent JavaScript from moving or resizing windows.	DISA STIG Mozilla Firefox Windows v6r6	Windows	CONFIGURATION MANAGEMENT
FFOX-00-000011 - Firefox must be configured to prevent JavaScript from raising or lowering windows.	DISA STIG Mozilla Firefox Windows v6r6	Windows	CONFIGURATION MANAGEMENT
FFOX-00-000025 - Firefox Enhanced Tracking Protection must be enabled.	DISA STIG Mozilla Firefox Linux v6r6	Unix	CONFIGURATION MANAGEMENT
FFOX-00-000026 - Firefox extension recommendations must be disabled.	DISA STIG Mozilla Firefox Windows v6r6	Windows	CONFIGURATION MANAGEMENT
OL6-00-000011 - System security patches and updates must be installed and up-to-date.	DISA STIG Oracle Linux 6 v2r7	Unix	SYSTEM AND INFORMATION INTEGRITY
Salesforce.com : Email Services - 'AuthorizationFailureAction != 2'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Select the channel for Microsoft Defender daily security intelligence updates	MSCT Windows Server 2025 DC v1.0.0	Windows

Detections

Analytics

Item Search