Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.6.1.2 Ensure the SELinux state is enforcing - 'Current mode'CIS Ubuntu Linux 14.04 LTS Workstation L2 v2.0.0Unix

ACCESS CONTROL

1.6.1.2 Ensure the SELinux state is enforcing - 'SELINUX'CIS Ubuntu Linux 14.04 LTS Server L2 v2.0.0Unix

ACCESS CONTROL

1.6.1.3 Ensure SELinux policy is configuredCIS Amazon Linux v2.0.0 L2Unix

ACCESS CONTROL

1.6.1.3 Ensure SELinux policy is configuredCIS SUSE Linux Enterprise Server 11 L2 v2.0.0Unix

ACCESS CONTROL

1.6.1.3 Ensure SELinux policy is configured - 'Policy from config file'CIS Ubuntu Linux 14.04 LTS Server L2 v2.0.0Unix

ACCESS CONTROL

1.6.1.3 Ensure SELinux policy is configured - 'SELINUXTYPE'CIS Ubuntu Linux 14.04 LTS Server L2 v2.0.0Unix

ACCESS CONTROL

1.6.2.2 Ensure all AppArmor Profiles are enforcing - 'complian mode'CIS Ubuntu Linux 14.04 LTS Workstation L2 v2.0.0Unix

ACCESS CONTROL

1.6.2.2 Ensure all AppArmor Profiles are enforcing - profiles loadedCIS SUSE Linux Enterprise Workstation 11 L2 v2.0.0Unix

ACCESS CONTROL

1.19 Oracle software owner host account - 'Lock account'CIS Oracle 9/10 OS Audit L2 v2.01Unix

ACCESS CONTROL

2.1 Ensure 'global authorization rule' is set to restrict accessCIS IIS 8.0 v1.5.1 Level 1Windows

ACCESS CONTROL

2.2.27 Ensure 'Deny log on as a service' to include 'Enterprise Admins Group and Domain Admins Group' (STIG MS only)CIS Microsoft Windows Server 2016 STIG v2.0.0 STIG MSWindows

ACCESS CONTROL

2.2.31 Ensure 'Deny log on locally' to include 'Guests, Enterprise Admins group, and Domain Admins group' (STIG MS only)CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MSWindows

ACCESS CONTROL

2.2.32 Ensure 'Deny log on locally' to include 'Guests, Enterprise Admins group, and Domain Admins group' (STIG MS only)CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG MSWindows

ACCESS CONTROL

2.7 Prevent unintended use of dvfilter network APIsCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

ACCESS CONTROL

2.17.5 Ensure 'Allow Users With Earlier Versions of Office to Read with Browsers....' is set to DisabledCIS Microsoft Office 2016 v1.1.0Windows

ACCESS CONTROL

3.1.11 Authenticate federated users at the instance levelCIS IBM DB2 9 Benchmark v3.0.1 Level 2 DBIBM_DB2DB

ACCESS CONTROL

4.2.7 Ensure 'Allow Window Management permission on these sites' Is ConfiguredCIS Google Chrome L2 v3.0.0Windows

ACCESS CONTROL

4.4.2 Remote command lockdownCIS IBM AIX 7.2 L2 v1.1.0Unix

ACCESS CONTROL

4.5.1.5 CDE - sgid/suid binary lockdownCIS IBM AIX 7.2 L1 v1.1.0Unix

ACCESS CONTROL

4.5.1.11 CDE - /etc/dt/config/*/Xresources permissions and ownershipCIS IBM AIX 7.2 L1 v1.1.0Unix

ACCESS CONTROL

4.5.4.6 /var/spool/mqueue - access controlCIS IBM AIX 7.2 L1 v1.1.0Unix

ACCESS CONTROL

4.08 init.ora - 'os_authent_prefix = NULL String'CIS Oracle 9/10 OS Audit L1 v2.01Unix

ACCESS CONTROL

4.42 listener.ora - 'dynamic_registration_listener_name = OFF'CIS v1.1.0 Oracle 11g OS L2Unix

ACCESS CONTROL

5.6 Ensure access to the su command is restrictedCIS Oracle Linux 7 Server L1 v3.0.0Unix

ACCESS CONTROL

5.6 Ensure access to the su command is restrictedCIS Oracle Linux 7 Workstation L1 v3.0.0Unix

ACCESS CONTROL

6.1.3 Disable guest account loginCIS Apple macOS 10.13 L1 v1.1.0Unix

ACCESS CONTROL

6.1.3 Disable guest account loginCIS Apple OSX 10.9 Mavericks L1 v1.0.0Unix

ACCESS CONTROL

7.7 Set Default umask for FTP Users - Check if 'defumask' is set to 077.CIS Solaris 10 v5.2Unix

ACCESS CONTROL

8.1 Block system accounts, Ensure account 'adm' is locked.CIS Solaris 9 v1.3Unix

ACCESS CONTROL

8.1 Block system accounts, Ensure account 'lp' is locked.CIS Solaris 9 v1.3Unix

ACCESS CONTROL

8.1 Block system accounts, Ensure account 'nobody' is locked.CIS Solaris 9 v1.3Unix

ACCESS CONTROL

8.1 Block system accounts, Ensure account 'nuucp' is locked.CIS Solaris 9 v1.3Unix

ACCESS CONTROL

8.1 Block System Accounts, should pass if the default shell for 'nobody4' is set to /dev/null.CIS Solaris 9 v1.3Unix

ACCESS CONTROL

8.1 Block System Accounts, should pass if the default shell for 'nuucp' is set to /dev/null.CIS Solaris 9 v1.3Unix

ACCESS CONTROL

8.1 Block System Accounts, should pass if the default shell for 'smtp' is set to /dev/null.CIS Solaris 9 v1.3Unix

ACCESS CONTROL

8.4.1 Control access to VMs through the dvfilter network APIsCIS VMware ESXi 5.5 v1.2.0 Level 1VMware

ACCESS CONTROL

20.37 Ensure 'Non-administrative accounts or groups only have print permissions on printer shares'CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG DCWindows

ACCESS CONTROL

20.37 Ensure 'Non-administrative accounts or groups only have print permissions on printer shares'CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG MSWindows

ACCESS CONTROL

ESXi : set-dcui-accessVMWare vSphere 6.5 Hardening GuideVMware

ACCESS CONTROL

IBM i : Authority for New Objects (QCRTAUT) - '*CHANGE'IBM System i Security Reference for V7R1 and V6R1AS/400

ACCESS CONTROL

IBM i : Authority for New Objects (QCRTAUT) - '*CHANGE'IBM System i Security Reference for V7R3AS/400

ACCESS CONTROL

Logon options - Internet ZoneMSCT Windows 10 v1703 v1.0.0Windows

ACCESS CONTROL

Logon options - Restricted Sites ZoneMSCT Windows 10 v1511 v1.0.0Windows

ACCESS CONTROL

Logon options - Restricted Sites ZoneMSCT Windows Server 1903 DC v1.0.0Windows

ACCESS CONTROL

Logon options - Restricted Sites ZoneMSCT Windows 10 v1709 v1.0.0Windows

ACCESS CONTROL

Network access: Allow anonymous SID/Name translationMSCT Windows 10 v1507 v1.0.0Windows

ACCESS CONTROL

Network access: Allow anonymous SID/Name translationMSCT Windows 10 v21H1 v1.0.0Windows

ACCESS CONTROL

Network access: Allow anonymous SID/Name translationMSCT Windows 11 v1.0.0Windows

ACCESS CONTROL

Network access: Allow anonymous SID/Name translationMSCT Windows 10 v1703 v1.0.0Windows

ACCESS CONTROL

WG470 - Wscript.exe and Cscript.exe are accessible by users other than the SA and Web Manager. - 'wscript.exe'DISA STIG IIS 6.0 Installation v6r1Windows

ACCESS CONTROL