Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.5 Ensure that the --insecure-bind-address argument is not setCIS Kubernetes 1.11 Benchmark v1.3.0 L1Unix

CONFIGURATION MANAGEMENT

1.1.6 Ensure that the --insecure-port argument is set to 0CIS Kubernetes 1.11 Benchmark v1.3.0 L1Unix

CONFIGURATION MANAGEMENT

1.2 Do Not Install a Multi-Use System - systemctlCIS BIND DNS v3.0.1 Caching Only Name ServerUnix

CONFIGURATION MANAGEMENT

1.3 Ensure 'Make pattern visible' is set to 'Disabled' (if using a pattern as device lock mechanism)AirWatch - CIS Google Android v1.3.0 L1MDM

CONFIGURATION MANAGEMENT

1.5.2 Unset 'private' for 'snmp-server community'CIS Cisco IOS XE 17.x v2.1.0 L1Cisco

CONFIGURATION MANAGEMENT

1.7.1.8 Ensure the MCS Translation Service (mcstrans) is not installedCIS Fedora 19 Family Linux Server L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.8 Ensure 'Show passwords' is set to 'Disabled'AirWatch - CIS Google Android v1.3.0 L2MDM

CONFIGURATION MANAGEMENT

1.12 Ensure 'Smart Lock' is set to 'Disabled'MobileIron - CIS Google Android v1.3.0 L2MDM

CONFIGURATION MANAGEMENT

1.22 Ensure 'Wi-Fi assistant' is set to 'Disabled'MobileIron - CIS Google Android v1.3.0 L1MDM

CONFIGURATION MANAGEMENT

1.24 Ensure 'Add users from lock screen' is set to 'Disabled'AirWatch - CIS Google Android v1.3.0 L1MDM

CONFIGURATION MANAGEMENT

1.27 Ensure 'Instant apps' is set to 'Disabled'MobileIron - CIS Google Android v1.3.0 L1MDM

CONFIGURATION MANAGEMENT

2.0 Install & Config - 'Disable TFTP'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

2.2 Only enable telnetd if absolutely necessaryCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

2.2.3 Ensure Avahi Server is not installed - avahiCIS CentOS 6 Workstation L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

2.2.3 Ensure Avahi Server is not installed - avahiCIS Fedora 19 Family Linux Server L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.2.5 Ensure DHCP Server is not installedCIS CentOS 6 Server L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

2.2.9 Ensure HTTP server is not installedCIS CentOS 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

2.2.10 Ensure IMAP and POP3 server is not installedCIS CentOS 6 Server L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

2.2.14 Ensure HTTP Proxy Server is not installedCIS Fedora 19 Family Linux Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.2.17 Ensure rsync is not installed or the rsyncd service is maskedCIS Fedora 19 Family Linux Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.3 Ensure nonessential services are removed or maskedCIS Debian Family Server L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.4 Ensure 'Web and App Activity' is set to 'Disabled'AirWatch - CIS Google Android v1.3.0 L1MDM

CONFIGURATION MANAGEMENT

2.4 Ensure 'Web and App Activity' is set to 'Disabled'MobileIron - CIS Google Android v1.3.0 L1MDM

CONFIGURATION MANAGEMENT

2.4 Only enable rlogin/rsh/rcp if absolutely necessary (shell)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

2.5 Ensure 'Device Information' is set to 'Disabled'AirWatch - CIS Google Android v1.3.0 L1MDM

CONFIGURATION MANAGEMENT

2.5 Ensure 'Device Information' is set to 'Disabled'MobileIron - CIS Google Android v1.3.0 L1MDM

CONFIGURATION MANAGEMENT

2.5 Only enable TFTP if absolutely necessaryCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

2.7 Network & IP Options - 'ip.fastpath.enable = off'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

2.7 Network & IP Options - 'ip.icmp_ignore_redirect.enable = on'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

2.13 Ensure operations on legacy registry (v1) are DisabledCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.1 Disable login prompts on serial ports (ttyd0)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.1.1 Disable IPv6CIS CentOS 6 Workstation L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

3.4.1 Ensure DCCP is disabled - lsmodCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

3.6 Disable IPv6CIS Amazon Linux 2 STIG v1.0.0 L2Unix

CONFIGURATION MANAGEMENT

3.7 Only enable other RPC-based services if absolutely necessary (rpc_lockd_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.8 Only enable the NFS server if absolutely necessary (mountd_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.8 Only enable the NFS server if absolutely necessary (nfs_server_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.12 Only enable NIS if absolutely necessary (nis_ypxfrd_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.13 Only enable NIS client daemons if absolutely necessary (nis_client_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.14 Only enable the printer daemons if absolutely necessaryCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

4.12.1 Ensure LLDP is Disabled if not RequiredCIS Juniper OS Benchmark v2.1.0 L2Juniper

CONFIGURATION MANAGEMENT

5.1.6 Ensure telnet server is not enabledCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

5.2.7 Ensure SSH IgnoreRhosts is enabledCIS Debian Family Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

5.2.8 Ensure SSH IgnoreRhosts is enabledCIS Fedora 19 Family Linux Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

5.2.8 Ensure SSH X11 forwarding is disabledCIS Amazon Linux 2 STIG v1.0.0 L2Unix

CONFIGURATION MANAGEMENT

5.3.7 Ensure SSH X11 forwarding is disabled - sshd_configCIS CentOS 6 Server L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

5.6 Ensure ssh is not run within containersCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.19 Ensure mount propagation mode is not set to sharedCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.29 Ensure Docker's default bridge docker0 is not usedCIS Docker Community Edition v1.1.0 L2 DockerUnix

CONFIGURATION MANAGEMENT

13.10 Check for Presence of User .rhosts FilesCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT