Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure Latest SQL Server Service Packs and Hotfixes are Installed	CIS SQL Server 2008 R2 DB Engine L1 v1.7.0	MS_SQLDB	CONFIGURATION MANAGEMENT
1.1.1 Ensure that the --anonymous-auth argument is set to false	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.1.11 Ensure that the admission control policy is set to DenyEscalatingExec	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	ACCESS CONTROL
1.1.19 Ensure that the --token-auth-file parameter is not set	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.1.32 Ensure that the admission control policy is set to NodeRestriction	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	ACCESS CONTROL
1.4.2 Ensure that the API server pod specification file ownership is set to root:root	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.7 Ensure that the etcd pod specification file permissions are set to 644 or more restrictive	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.9 Ensure that the Container Network Interface file permissions are set to 644 or more restrictive	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.10 Ensure that the Container Network Interface file ownership is set to root:root	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.11 Ensure that the etcd data directory permissions are set to 700 or more restrictive	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix
1.4.12 Ensure that the etcd data directory ownership is set to etcd:etcd	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix
1.4.17 Ensure that the controller-manager.conf file permissions are set to 644 or more restrictive	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.5.1 Ensure that the --cert-file and --key-file arguments are set as appropriate - ca-file	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.5.2 Ensure that the --client-cert-auth argument is set to true	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2 Ensure External File System Access is disabled - enable file access	CIS Sybase 15.0 L1 DB v1.1.0	SybaseDB
18.8.48.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 2 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.8.48.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Member Server Level 2 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.9.18.2 Ensure 'Turn Off user-installed desktop gadgets' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.9.46.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Windows Server 2012 R2 MS L2 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.10.9.1.12 (L1) Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.1.9 (BL) Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.1.9 (BL) Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.3.9 (BL) Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.3.12 (BL) Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.29.2 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.29.3 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.44.6 (NG) Ensure 'Turn on Microsoft Defender Application Guard in Managed Mode' is set to 'Enabled: 1'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
CIS Control 6 (6.2(a)) Activate Audit Logging	CAS Implementation Group 1 Audit File	Unix	AUDIT AND ACCOUNTABILITY
CIS Control 10 (10.1) Ensure Regular Automated Backups	CAS Implementation Group 1 Audit File	Unix	CONTINGENCY PLANNING
CIS_AlmaLinux_OS_8_v4.0.0_L1_Server.audit from CIS AlmaLinux OS 8 Benchmark v4.0.0	CIS AlmaLinux OS 8 v4.0.0 L1 Server	Unix
CIS_AlmaLinux_OS_8_v4.0.0_L1_Workstation.audit from CIS AlmaLinux OS 8 Benchmark v4.0.0	CIS AlmaLinux OS 8 v4.0.0 L1 Workstation	Unix
CIS_AlmaLinux_OS_9_v2.0.0_L1_Server.audit from CIS AlmaLinux OS 9 Benchmark v2.0.0	CIS AlmaLinux OS 9 v2.0.0 L1 Server	Unix
CIS_AlmaLinux_OS_9_v2.0.0_L2_Server.audit from CIS AlmaLinux OS 9 Benchmark v2.0.0	CIS AlmaLinux OS 9 v2.0.0 L2 Server	Unix
CIS_AlmaLinux_OS_9_v2.0.0_L2_Workstation.audit from CIS AlmaLinux OS 9 Benchmark v2.0.0	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix
CIS_Apache_Cassandra_3.11_v1.0.0_L1_OS_Unix.audit from CIS Apache Cassandra 3.11 Benchmark v1.0.0	CIS Apache Cassandra 3.11 L2 Unix Audit v1.0.0	Unix
CIS_Apache_Tomcat_9_L1_v1.2.0.audit from CIS Apache Tomcat 9 Benchmark	CIS Apache Tomcat 9 L1 v1.2.0	Unix
CIS_Bottlerocket_v1.0.0_L2.audit from CIS Bottlerocket Benchmark Level 2	CIS Bottlerocket L2	Unix
CIS_Debian_Linux_11_v2.0.0_L2_Server.audit from CIS Debian Linux 11 Benchmark v2.0.0	CIS Debian Linux 11 v2.0.0 L2 Server	Unix
CIS_Debian_Linux_12_v1.1.0_L2_Workstation.audit from CIS Debian Linux 12 Benchmark v1.1.0	CIS Debian Linux 12 v1.1.0 L2 Workstation	Unix
CIS_IBM_DB2_11_v1.1.0_Level_1_OS_Linux.audit from CIS IBM DB2 11 v1.1.0 Benchmark	CIS IBM DB2 11 v1.1.0 Linux OS Level 1	Unix
CIS_Linux_Mint_22_v1.0.0_L2_Workstation.audit from CIS Linux Mint 22 Benchmark v1.0.0	CIS Linux Mint 22 v1.0.0 L2 Workstation	Unix
CIS_MacOS_Safari_Benchmark_v2.0.0_L2.audit from CIS MacOS Safari Benchmark v2.0.0	CIS MacOS Safari v2.0.0 L2	Unix
CIS_Oracle_Linux_7_v4.0.0_L1_Workstation.audit from CIS Oracle Linux 7 Benchmark v4.0.0	CIS Oracle Linux 7 v4.0.0 L1 Workstation	Unix
CIS_Oracle_Linux_7_v4.0.0_L2_Workstation.audit from CIS Oracle Linux 7 Benchmark v4.0.0	CIS Oracle Linux 7 v4.0.0 L2 Workstation	Unix
CIS_Oracle_Linux_8_v4.0.0_L2_Workstation.audit from CIS Oracle Linux 8 Benchmark v4.0.0	CIS Oracle Linux 8 v4.0.0 L2 Workstation	Unix
CIS_Oracle_Server_18c_v1.1.0_L1_Linux.audit from CIS Oracle Database 18c Benchmark v1.1.0	CIS Oracle Server 18c Linux v1.1.0	Unix
CIS_Rocky_Linux_10_v1.0.0_L1_Workstation.audit from CIS Rocky Linux 10 Benchmark v1.0.0	CIS Rocky Linux 10 v1.0.0 L1 Workstation	Unix

Detections

Analytics

Item Search