Item Search

Name	Audit Name	Plugin	Category
1.1.13 Ensure nodev option set on /var/tmp partition	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.1.19 Ensure noexec option set on removable media partitions	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.3.1 Ensure authentication required for single user mode	CIS Amazon Linux 2 v3.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.3.3 Ensure authentication required for single user mode	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.6.4 Ensure prelink is disabled	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.6.4 Ensure prelink is disabled	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.1.1.1 Authentication	CIS Cisco IOS XR 7.x v1.0.0 L2	Cisco	ACCESS CONTROL, CONFIGURATION MANAGEMENT
2.2.3 Ensure the NGINX service account has an invalid shell	CIS NGINX Benchmark v2.1.0 L1 Webserver	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.2.1 Ensure IP forwarding is disabled	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.2.2 Ensure packet redirect sending is disabled	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.8 Ensure TCP SYN Cookies is enabled	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.9 Ensure IPv6 router advertisements are not accepted	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.9 Ensure IPv6 router advertisements are not accepted	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.8 Ensure SSH HostbasedAuthentication is disabled	CIS Amazon Linux 2023 Server L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.17 Ensure SSH MaxStartups is configured	CIS Amazon Linux 2023 Server L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.17 Ensure sshd MaxStartups is configured	CIS AlmaLinux OS 8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.17 Ensure sshd MaxStartups is configured	CIS Ubuntu Linux 18.04 LTS v2.2.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.18 Ensure sshd MaxStartups is configured	CIS Amazon Linux 2 v3.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.18 Ensure sshd MaxStartups is configured	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.19 Ensure SSH MaxStartups is configured	CIS Debian 10 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.4.2 Ensure authselect includes with-faillock	CIS Amazon Linux 2023 Server L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.4.2.2 Ensure pam_faillock module is enabled	CIS Oracle Linux 8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.4.2.2 Ensure pam_faillock module is enabled	CIS Rocky Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.2 Ensure password expiration is 365 days or less	CIS AlmaLinux OS 8 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.2 Ensure password expiration is 365 days or less	CIS Oracle Linux 8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.2 Ensure password expiration is 365 days or less	CIS Oracle Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.2 Ensure password expiration is 365 days or less	CIS AlmaLinux OS 8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.2 Ensure password expiration is 365 days or less	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.2 Ensure password expiration is 365 days or less	CIS Rocky Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.1.3 Ensure password expiration warning days is 7 or more	CIS Oracle Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.2.1 Ensure default group for the root account is GID 0	CIS AlmaLinux OS 8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.2.1 Ensure default group for the root account is GID 0	CIS Oracle Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.2.1 Ensure default group for the root account is GID 0	CIS AlmaLinux OS 8 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.6.1.1 Ensure password expiration is 365 days or less	CIS Amazon Linux 2023 Server L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.1.1 Ensure cron daemon is enabled and running	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.16 Ensure SSH Idle Timeout Interval is configured	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.16 Ensure SSH Idle Timeout Interval is configured	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.3.2 Ensure lockout for failed password attempts is configured	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.4.1.3 Ensure minimum days between password changes is configured	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.4.1.3 Ensure minimum days between password changes is configured	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.4.1.3 Ensure password expiration warning days is configured	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.4.1.3 Ensure password expiration warning days is configured	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.4.1.4 Ensure password expiration warning days is 7 or more	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.1.9 Ensure no unowned files or directories exist	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.1.11 Audit SUID executables	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.4 Ensure root PATH Integrity	CIS SUSE Linux Enterprise 15 Server L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.5 Ensure all users' home directories exist	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.9 Ensure no users have .forward files	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.12 Ensure no users have .rhosts files	CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.18 Ensure shadow group is empty	CIS SUSE Linux Enterprise 12 v3.1.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

Detections

Analytics

Item Search