| 1.1 Remove extraneous files and directories - /conf/Catalina/localhost/host-manager.xml | CIS Apache Tomcat 8 L2 v1.1.0 Middleware | Unix | CONFIGURATION MANAGEMENT |
| 1.1 Remove extraneous files and directories - /webapps/ROOT/admin | CIS Apache Tomcat 8 L2 v1.1.0 Middleware | Unix | CONFIGURATION MANAGEMENT |
| 1.1 Remove extraneous files and directories - /webapps/webdav | CIS Apache Tomcat 8 L2 v1.1.0 Middleware | Unix | CONFIGURATION MANAGEMENT |
| 1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/webdav | CIS Apache Tomcat 8 L2 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.1.3 Disable Local Graphical Login Environment - Make sure that /application/graphical-login/cde-login is disabled | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.1.3 Disable Local Graphical Login Environment - Make sure that /application/graphical-login/gdm2-login is disabled | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.1.5 Disable Local WBEM - Make sure that application/management/wbem is disabled | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.1.6 Disable Local BSD Print Protocol Adapter - Make sure that /application/print/rfc1179 is disabled | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.1.6 Ensure rsh server is not enabled - rlogin | CIS Amazon Linux v2.1.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 2.1.7 Ensure talk server is not enabled | CIS Amazon Linux v2.1.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 2.1.8 Ensure telnet server is not enabled | CIS Amazon Linux v2.1.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 2.1.10 Ensure rsync service is not enabled | CIS Amazon Linux v2.1.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 2.1.11 Ensure xinetd is not enabled | CIS Amazon Linux v2.1.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 2.2.4 Disable NIS+ daemons - Make sure that /network/rpc/nisplus is disabled | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.2.5 Ensure DHCP Server is not enabled | CIS Amazon Linux v2.1.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 2.2.6 Disable Kerberos TGT Expiration Warning - Make sure that /network/security/ktkt_warn is disabled | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.2.7 Disable Generic Security Services (GSS) daemons - Make sure that /network/rpc/gss is disabled | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.2.7 Ensure NFS and RPC are not enabled - RPC | CIS Amazon Linux v2.1.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 2.2.9 Ensure FTP Server is not enabled | CIS Amazon Linux v2.1.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 2.2.13 Disable Solaris Volume Manager GUI - Make sure that network/rpc/meta is disabled. | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.2.13 Disable Solaris Volume Manager GUI - Make sure that network/rpc/metamed is disabled. | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.2.14 Ensure SNMP Server is not enabled | CIS Amazon Linux v2.1.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 2.3 Establish a Secure Baseline - Make sure that /network/rpc/bind only allows local connections (netservices limited) | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.3 Establish a Secure Baseline - Make sure that application/management/sma:default is disabled (netservices limited) | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.3 Establish a Secure Baseline - Make sure that application/x11/xfs:default is disabled (netservices limited) | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.3 Establish a Secure Baseline - Make sure that network/nfs/client:default is disabled (netservices limited) | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.3 Establish a Secure Baseline - Make sure that network/rpc/rstat:default is disabled (netservices limited) | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.3 Establish a Secure Baseline - Make sure that network/shell:default is disabled (netservices limited) | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.3 Establish a Secure Baseline - Make sure that network/telnet:default is disabled (netservices limited) | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.3 Establish a Secure Baseline - Make sure that system/webconsole:console only allows local connections (netservices limited) | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.4 Configure TCP Wrappers - enable tcp_wrappers for inetd | CIS Solaris 10 L1 v5.2 | Unix | |
| 2.4 Disable NIS Server Services - domain | CIS Solaris 11 L1 v1.1.0 | Unix | |
| 2.4 Disable NIS Server Services - server | CIS Solaris 11 L1 v1.1.0 | Unix | |
| 2.4 Disable NIS Server Services - server | CIS Solaris 11.2 L1 v1.1.0 | Unix | |
| 2.5 Disable NIS Client Services - client | CIS Solaris 11 L1 v1.1.0 | Unix | |
| 2.5 Disable NIS Client Services - domain | CIS Solaris 11 L1 v1.1.0 | Unix | |
| 2.6 Disable Kerberos TGT Expiration Warning | CIS Solaris 11 L1 v1.1.0 | Unix | |
| 2.7 Disable Generic Security Services (GSS) | CIS Solaris 11 L1 v1.1.0 | Unix | |
| 2.7 Disable Generic Security Services (GSS) | CIS Solaris 11.1 L1 v1.0.0 | Unix | |
| 2.8 Disable Removable Volume Manager - smserver | CIS Solaris 11.2 L1 v1.1.0 | Unix | |
| 2.9 Disable automount Service | CIS Solaris 11.2 L1 v1.1.0 | Unix | |
| 2.11 Disable Local-only RPC Port Mapping Service | CIS Solaris 11 L1 v1.1.0 | Unix | |
| 2.13 Disable Telnet Service | CIS Solaris 11 L1 v1.1.0 | Unix | |
| 3.5 Disable Network Routing - Make sure that ipv6-forwarding is disabled | CIS Solaris 10 L1 v5.2 | Unix | |
| 4.2.1.5 Ensure remote rsyslog messages are only accepted on designated log hosts. - InputTCPServerRun 514 | CIS Amazon Linux v2.1.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 10.2 SN.2 Remove Support for Internet Services (inetd) | CIS Solaris 11.1 L2 v1.0.0 | Unix | |
| 10.2 SN.2 Remove Support for Internet Services (inetd) | CIS Solaris 11.2 L2 v1.1.0 | Unix | |
| SonicWALL - Disable insecure services - HTTP | TNS SonicWALL v5.9 | SonicWALL | |
| XenServer - Disable promiscuous mode on all network interfaces | TNS Citrix XenServer | Unix | |
| XenServer - Disallow unplug detection on the storage network interface | TNS Citrix XenServer | Unix | |
