Item Search

Name	Audit Name	Plugin	Category
1.6.3 Create network segmentation using Network Policies	CIS Kubernetes 1.13 Benchmark v1.4.1 L2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.3.10.6 (L1) Ensure 'Network access: Named Pipes that can be accessed anonymously' is set to 'None'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
3.3.1 Ensure TCP Wrappers is installed	CIS Debian 8 Workstation L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.3.2 Ensure /etc/hosts.allow is configured	CIS Debian 8 Workstation L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.3 Ensure RDS is disabled - modprobe	CIS Debian 8 Workstation L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.3.2.3 Ensure iptables rules exist for all open ports	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.3.2.3 Ensure iptables rules exist for all open ports	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.4 Ensure TIPC is disabled - lsmod	CIS Debian 8 Server L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.4.2.3 Ensure iptables rules exist for all open ports	CIS Amazon Linux 2 v3.0.0 L1	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.4.2.3 Ensure iptables rules exist for all open ports	CIS Oracle Linux 7 v4.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.4.2.3 Ensure iptables rules exist for all open ports	CIS CentOS Linux 7 v4.0.0 L1 Workstation	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.3 Ensure outbound and established connections are configured	CIS Debian 8 Server L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.4 Ensure firewall rules exist for all open ports	CIS Debian 8 Server L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.4 Ensure firewall rules exist for all open ports	CIS Debian 8 Workstation L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.4 Ensure firewalld service enabled and running - enabled	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.4 Ensure firewalld service enabled and running - enabled	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.4 Ensure firewalld service enabled and running - running	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.4 Ensure firewalld service enabled and running - running	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.5 Ensure firewalld default zone is set	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.5 Ensure firewalld default zone is set	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.2.1 Ensure IPv6 default deny firewall policy - Chain INPUT	CIS Debian 8 Workstation L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.2.1 Ensure IPv6 default deny firewall policy - Chain OUTPUT	CIS Debian 8 Server L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.2.2 Ensure IPv6 loopback traffic is configured	CIS Debian 8 Workstation L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.2.3 Ensure firewall rules exist for all open ports	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Workstation	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.2.3 Ensure IPv6 outbound and established connections are configured	CIS Debian 8 Workstation L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.3.2.4 Ensure firewall rules exist for all open ports	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.7 Ensure That RDP Access Is Restricted From the Internet	CIS Google Cloud Platform v3.0.0 L2	GCP	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.8 Logging should be enable for all Firewall Rules	CIS Check Point Firewall L2 v1.1.0	CheckPoint	AUDIT AND ACCOUNTABILITY, SECURITY ASSESSMENT AND AUTHORIZATION
6.3 Ensure storage area network (SAN) resources are segregated properly	CIS VMware ESXi 6.5 v1.0.0 Level 1	VMware	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
6.7 Ensure the OWASP ModSecurity Core Rule Set Is Installed and Enabled - Active Rules	CIS Apache HTTP Server 2.4 L2 v2.1.0	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.7 Ensure the OWASP ModSecurity Core Rule Set Is Installed and Enabled - Active Rules	CIS Apache HTTP Server 2.4 L2 v2.1.0 Middleware	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.7 Ensure the OWASP ModSecurity Core Rule Set Is Installed and Enabled - Inbound Anomaly Threshold	CIS Apache HTTP Server 2.4 L2 v2.1.0 Middleware	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.7 Ensure the OWASP ModSecurity Core Rule Set Is Installed and Enabled - Outbound Anomaly Threshold	CIS Apache HTTP Server 2.4 L2 v2.1.0	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.7 Ensure the OWASP ModSecurity Core Rule Set Is Installed and Enabled - Paranoia Level	CIS Apache HTTP Server 2.4 L2 v2.1.0 Middleware	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.5 Ensure port groups are not configured to VLAN values reserved by upstream physical switches	CIS VMware ESXi 6.7 v1.3.0 Level 1	VMware	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.6 (L1) Ensure port groups are not configured to VLAN 4095 and 0 except for Virtual Guest Tagging (VGT)	CIS VMware ESXi 7.0 v1.4.0 L1	VMware	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.8 (L1) Ensure port-level configuration overrides are disabled.	CIS VMware ESXi 7.0 v1.4.0 L1	VMware	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.8 Ensure port-level configuration overrides are disabled.	CIS VMware ESXi 6.7 v1.3.0 Level 1	VMware	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.1.2 (L1) Ensure 'Windows Firewall: Domain: Inbound connections' is set to 'Block (default)'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.1.3 (L1) Ensure 'Windows Firewall: Domain: Outbound connections' is set to 'Allow (default)'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.2.1 (L1) Ensure 'Windows Firewall: Private: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.2.2 (L1) Ensure 'Windows Firewall: Private: Inbound connections' is set to 'Block (default)'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.2.3 (L1) Ensure 'Windows Firewall: Private: Outbound connections' is set to 'Allow (default)'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.3.1 (L1) Ensure 'Windows Firewall: Public: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.3.2 (L1) Ensure 'Windows Firewall: Public: Inbound connections' is set to 'Block (default)'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.3.3 (L1) Ensure 'Windows Firewall: Public: Outbound connections' is set to 'Allow (default)'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.3.4 Ensure 'Windows Firewall: Public: Settings: Display a notification' is set to 'No'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT
9.3.5 (L1) Ensure 'Windows Firewall: Public: Settings: Apply local firewall rules' is set to 'No'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT
9.3.6 (L1) Ensure 'Windows Firewall: Public: Settings: Apply local connection security rules' is set to 'No'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT
18.9.35.1 (L1) Ensure 'Prevent the computer from joining a homegroup' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search