Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.5.1 Ensure core dumps are restricted - /etc/sysctl.conf, /etc/sysctl.d/*CIS Amazon Linux v2.1.0 L1Unix

ACCESS CONTROL, CONFIGURATION MANAGEMENT

1.5.1 Ensure core dumps are restricted - sysctlCIS Amazon Linux v2.1.0 L1Unix

ACCESS CONTROL

2.1.2 Front Panel SecurityCIS HPE Aruba Networking CX Switch v1.0.1 L1ArubaOS

PHYSICAL AND ENVIRONMENTAL PROTECTION

2.3.7.7 (L1) Ensure 'Interactive logon: Prompt user to change password before expiration' is set to 'between 5 and 14 days'CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NGWindows

IDENTIFICATION AND AUTHENTICATION

2.3.7.7 (L1) Ensure 'Interactive logon: Prompt user to change password before expiration' is set to 'between 5 and 14 days'CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NGWindows

IDENTIFICATION AND AUTHENTICATION

3.1 Ensure 'FAILED_LOGIN_ATTEMPTS' Is Less than or Equal to '5'CIS Oracle Server 18c DB Unified Auditing v1.1.0OracleDB

ACCESS CONTROL

3.1.22 Set archive log failover retry limitCIS IBM DB2 v10 v1.1.0 Windows OS Level 2Windows

CONFIGURATION MANAGEMENT

3.1.22 Set archive log failover retry limitCIS IBM DB2 v10 v1.1.0 Windows OS Level 1Windows

CONFIGURATION MANAGEMENT

3.1.22 Set archive log failover retry limitCIS IBM DB2 v10 v1.1.0 Linux OS Level 2Unix

CONFIGURATION MANAGEMENT

3.6 Ensure 'PASSWORD_GRACE_TIME' Is Less than or Equal to '5'CIS Oracle Server 18c DB Unified Auditing v1.1.0OracleDB

ACCESS CONTROL

4.1.3.7 Ensure kernel module loading and unloading is collected - init_module 64 bitCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

AUDIT AND ACCOUNTABILITY

4.1.3.7 Ensure kernel module loading and unloading is collected - insmodCIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

4.1.16 Ensure kernel module loading and unloading is collected - /etc/audit/rules.d modulesCIS Fedora 19 Family Linux Server L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/insmodCIS Debian Family Workstation L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/modprobeCIS Oracle Linux 6 Workstation L2 v2.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/rmmodCIS Oracle Linux 6 Server L2 v2.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/rmmodCIS Red Hat 6 Server L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - auditctl init_moduleCIS Debian Family Workstation L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - auditctl init_module/delete_module (32-bit)CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - auditctl insmodCIS Fedora 19 Family Linux Server L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - auditctl modulesCIS Fedora 19 Family Linux Workstation L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - auditctl modulesCIS Red Hat 6 Server L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - init_module/delete_module (64-bit)CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - rmmodCIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/modprobeCIS Oracle Linux 6 Workstation L2 v2.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/modprobeCIS Red Hat 6 Server L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/rmmodCIS Oracle Linux 6 Workstation L2 v2.0.0Unix

CONFIGURATION MANAGEMENT

4.1.17 Ensure kernel module loading and unloading is collected - /sbin/insmodCIS Debian 9 Workstation L2 v1.0.1Unix

CONFIGURATION MANAGEMENT

4.1.17 Ensure kernel module loading and unloading is collected - /sbin/modprobeCIS Debian 9 Workstation L2 v1.0.1Unix

CONFIGURATION MANAGEMENT

4.1.17 Ensure kernel module loading and unloading is collected - /sbin/rmmodCIS Debian 9 Server L2 v1.0.1Unix

CONFIGURATION MANAGEMENT

4.1.17 Ensure kernel module loading and unloading is collected - auditctl /sbin/insmodCIS Debian 9 Workstation L2 v1.0.1Unix

CONFIGURATION MANAGEMENT

4.1.17 Ensure kernel module loading and unloading is collected - auditctl /sbin/rmmodCIS Debian 9 Server L2 v1.0.1Unix

CONFIGURATION MANAGEMENT

4.1.17 Ensure kernel module loading and unloading is collected - init_moduleCIS Debian 9 Server L2 v1.0.1Unix

CONFIGURATION MANAGEMENT

4.3 Ensure unnecessary packages are not installed in the containerCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.4.11 Ensure password prohibited reuse is at a minimum 5CIS Amazon Linux 2 STIG v2.0.0 STIGUnix

IDENTIFICATION AND AUTHENTICATION

5.6 Enable OCSP and CRL certificate checking - CRLCIS Apple OSX 10.9 L2 v1.3.0Unix

IDENTIFICATION AND AUTHENTICATION

5.26 Ensure fewer than 5 users have global administrator assignmentCIS Microsoft Azure Foundations v5.0.0 L1microsoft_azure

ACCESS CONTROL

6.12 Ensure all HTTP Header Logging options are enabled - X-Forwarded-ForCIS Palo Alto Firewall 9 v1.1.0 L1Palo_Alto

AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION

7.7 Ensure Firewall is active - iptables-persistent run level 5CIS Debian Linux 7 L1 v1.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

89.21 (L1) Ensure 'Increase Scheduling Priority' is set to 'Administrators, Window Manager\Window Manager Group'CIS Microsoft Intune for Windows 11 v4.0.0 L1Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

ARST-RT-000560 - The Arista BGP router must be configured to use the maximum prefixes feature to protect against route table flooding and prefix de-aggregation attacks.DISA STIG Arista MLS EOS 4.2x Router v2r1Arista

SYSTEM AND COMMUNICATIONS PROTECTION

CISC-RT-000520 - The Cisco BGP router must be configured to reject outbound route advertisements for any prefixes that do not belong to any customers or the local autonomous system (AS).DISA Cisco IOS XE Router RTR STIG v3r5Cisco

ACCESS CONTROL

DTAVSEL-015 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Clean as first action when programs and jokes are found.McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6Unix

SYSTEM AND INFORMATION INTEGRITY

GEN000000-LNX00360 - The X server must have the correct options enabled - '-auth'DISA STIG for Oracle Linux 5 v2r1Unix

CONFIGURATION MANAGEMENT

GEN000000-LNX00360 - The X server must have the correct options enabled - '-auth'DISA STIG for Red Hat Enterprise Linux 5 v1r18 AuditUnix

CONFIGURATION MANAGEMENT

SLEM-05-214010 - Vendor-packaged SLEM 5 security patches and updates must be installed and up to date.DISA SUSE Linux Enterprise Micro SLEM 5 STIG v1r3Unix

CONFIGURATION MANAGEMENT

SLEM-05-215015 - SLEM 5 must not have the telnet-server package installed.DISA SUSE Linux Enterprise Micro SLEM 5 STIG v1r3Unix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

SLEM-05-411055 - SLEM 5 must not have unnecessary accounts.DISA SUSE Linux Enterprise Micro SLEM 5 STIG v1r3Unix

CONFIGURATION MANAGEMENT

SLEM-05-432015 - SLEM 5 must reauthenticate users when changing authenticators, roles, or escalating privileges.DISA SUSE Linux Enterprise Micro SLEM 5 STIG v1r3Unix

IDENTIFICATION AND AUTHENTICATION

SYMP-AG-000190 - Symantec ProxySG must produce audit records containing information to establish the outcome of the events.DISA Symantec ProxySG Benchmark ALG v1r3BlueCoat

AUDIT AND ACCOUNTABILITY