Item Search

Name	Audit Name	Plugin	Category
AS24-U1-000440 - Apache web server application directories, libraries, and configuration files must only be accessible to privileged users.	DISA STIG Apache Server 2.4 Unix Server v3r1 Middleware	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
AS24-U1-000440 - Apache web server application directories, libraries, and configuration files must only be accessible to privileged users.	DISA STIG Apache Server 2.4 Unix Server v3r1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
AS24-W1-000280 - Apache web server application directories, libraries, and configuration files must only be accessible to privileged users.	DISA STIG Apache Server 2.4 Windows Server v2r3	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
AS24-W1-000280 - Apache web server application directories, libraries, and configuration files must only be accessible to privileged users.	DISA STIG Apache Server 2.4 Windows Server v3r1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
AS24-W2-000440 - Anonymous user access to the Apache web server application directories must be prohibited.	DISA STIG Apache Server 2.4 Windows Site v2r1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
MD3X-00-000390 - MongoDB must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	DISA STIG MongoDB Enterprise Advanced 3.x v2r3 DB	MongoDB	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
MS.POWERPLATFORM.3.1v1 - Power Platform tenant isolation SHALL be enabled.	CISA SCuBA Microsoft 365 Power Platform v1.5.0	microsoft_azure	ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, RISK ASSESSMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
MS.POWERPLATFORM.4.1v1 - Content Security Policy (CSP) SHALL be enforced for model-driven and canvas Power Apps.	CISA SCuBA Microsoft 365 Power Platform v1.5.0	microsoft_azure	ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, RISK ASSESSMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
MS.POWERPLATFORM.5.1v1 - The ability to create Power Pages sites SHOULD be restricted to admins.	CISA SCuBA Microsoft 365 Power Platform v1.5.0	microsoft_azure	ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, RISK ASSESSMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
MS.TEAMS.8.1v1 - URL comparison with a blocklist SHOULD be enabled.	CISA SCuBA Microsoft 365 Teams v1.5.0	microsoft_azure	ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
MS.TEAMS.8.2v1 - User click tracking SHOULD be enabled.	CISA SCuBA Microsoft 365 Teams v1.5.0	microsoft_azure	ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
VCLD-70-000009 - VAMI server binaries and libraries must be verified for their integrity.	DISA STIG VMware vSphere 7.0 VAMI v1r2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
VCSA-70-000095 - The vCenter Server users must have the correct roles assigned.	DISA STIG VMware vSphere 7.0 vCenter v1r3	VMware	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
VCSA-80-000095 - The vCenter Server user roles must be verified.	DISA VMware vSphere 8.0 vCenter STIG v2r2	VMware	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search