Item Search

Name	Audit Name	Plugin	Category
1.2 Set 'Allow Active X One Off Forms' to 'Enabled:Load only Outlook Controls'	CIS MS Office Outlook 2010 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.2.1.3 Ensure repo_gpgcheck is globally activated	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.2.1.3 Ensure repo_gpgcheck is globally activated	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.2.3 Ensure repo_gpgcheck is globally activated	CIS Oracle Linux 8 Workstation L2 v3.0.0	Unix	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.5.1.8 Ensure SETroubleshoot is not installed	CIS Rocky Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.1.8 Ensure SETroubleshoot is not installed	CIS Oracle Linux 8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.1.8 Ensure SETroubleshoot is not installed	CIS Red Hat EL8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
3.1.22 Set archive log failover retry limit	CIS IBM DB2 v10 v1.1.0 Linux OS Level 1	Unix	CONFIGURATION MANAGEMENT
3.1.22 Set archive log failover retry limit	CIS IBM DB2 v10 v1.1.0 Linux OS Level 2	Unix	CONFIGURATION MANAGEMENT
3.1.22 Set archive log failover retry limit	CIS IBM DB2 v10 v1.1.0 Windows OS Level 2	Windows	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl init_module	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl init_module	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl insmod	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl insmod	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl modprobe	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl modprobe	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - init_module	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - init_module	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - insmod	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - insmod	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - modprobe	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - modprobe	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - rmmod	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - rmmod	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.3 Ensure excessive function privileges are revoked	CIS PostgreSQL 15 DB v1.1.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.3 Ensure excessive function privileges are revoked	CIS PostgreSQL 16 DB v1.0.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.3 Ensure excessive function privileges are revoked	CIS PostgreSQL 12 DB v1.1.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5 Ensure excessive function privileges are revoked	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5 Ensure excessive function privileges are revoked	CIS PostgreSQL 14 DB v 1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5. OpenStack Compute - Policy.json - 'os_compute_api:os-migrate-server:migrate_live'	TNS OpenStack Nova/Compute Security Guide	Unix	ACCESS CONTROL
5.1.1 Ensure Home Folders Are Secure	CIS Apple macOS 12.0 Monterey v4.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.6 Enable OCSP and CRL certificate checking - CRL	CIS Apple OSX 10.9 L2 v1.3.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.6 Enable OCSP and CRL certificate checking - OCSP	CIS Apple OSX 10.9 L2 v1.3.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.14 Set the 'on-failure' container restart policy to 5 - RestartPolicyName	CIS Docker 1.13.0 v1.0.0 L1 Docker	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
AIX7-00-002130 - If csh/tcsh shell is used, AIX must display logout messages.	DISA STIG AIX 7.x v3r1	Unix	ACCESS CONTROL
BIND-9X-001059 - On the BIND 9.x server the platform on which the name server software is hosted must be configured to send outgoing DNS messages from a random port.	DISA BIND 9.x STIG v2r3	Unix	CONFIGURATION MANAGEMENT
CIS_mongodb_5_Benchmark_Level_1_OS_Linux_v1.2.0.audit from CIS MongoDB 5 Benchmark	CIS MongoDB 5 L1 OS Linux v1.2.0	Unix
DTAVSEL-013 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Clean as first action when a virus or Trojan is detected.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-015 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Clean as first action when programs and jokes are found.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-017 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to deny access to the file if an error occurs during scanning.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
Ensure 'logging trap severity ' is greater than or equal to '5'	Tenable Cisco Firepower Threat Defense Best Practices Audit	Cisco_Firepower	AUDIT AND ACCOUNTABILITY
GEN000000-LNX00360 - The X server must have the correct options enabled - '-audit = 4'	DISA STIG for Oracle Linux 5 v2r1	Unix	CONFIGURATION MANAGEMENT
GEN000000-LNX00360 - The X server must have the correct options enabled - '-audit = 4'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	CONFIGURATION MANAGEMENT
GEN000000-LNX00360 - The X server must have the correct options enabled - '-s <= 15'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	CONFIGURATION MANAGEMENT
GEN000800 - The system must prohibit the reuse of passwords within five iterations.	DISA STIG AIX 6.1 v1r14	Unix	IDENTIFICATION AND AUTHENTICATION
GEN000800 - The system must prohibit the reuse of passwords within five iterations.	DISA STIG AIX 5.3 v1r2	Unix	IDENTIFICATION AND AUTHENTICATION
GEN002753 - The audit system must be configured to audit account termination - 'groupdel'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL
GEN002753 - The audit system must be configured to audit account termination - 'userdel'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL

Detections

Analytics

Item Search