Item Search

Name	Audit Name	Plugin	Category
1.4.1 Ensure permissions on bootloader config are not overridden - chmod	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	ACCESS CONTROL
1.4.1 Ensure permissions on bootloader config are not overridden - if line	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	ACCESS CONTROL
1.4.2 Set the SELinux State - SELINUX=enforcing	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL
1.4.3 Set the SELinux Policy - SELINUXTYPE=targeted	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	ACCESS CONTROL
1.6.1.1 Ensure AppArmor is installed	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	ACCESS CONTROL
1.6.1.1 Ensure SELinux is not disabled in bootloader configuration - enforcing	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL
1.6.1.2 Ensure the SELinux state is enforcing - sestatus	CIS Debian 9 Workstation L2 v1.0.1	Unix	ACCESS CONTROL
1.6.1.3 Ensure all AppArmor Profiles are in enforce or complain mode - unconfined	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	ACCESS CONTROL
1.6.1.3 Ensure SELinux policy is configured	CIS Debian 9 Workstation L2 v1.0.1	Unix	ACCESS CONTROL
1.6.1.4 Ensure the SELinux mode is enforcing or permissive - config	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
1.6.1.4 Ensure the SELinux mode is enforcing or permissive - getenforce	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
1.6.1.5 Ensure the SELinux mode is enforcing - getenforce	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	ACCESS CONTROL
1.6.2.1 Ensure AppArmor is enabled in the bootloader configuration - security=apparmor	CIS Debian 9 Workstation L2 v1.0.1	Unix	ACCESS CONTROL
1.6.2.2 Ensure all AppArmor Profiles are enforcing - 0 processes are unconfined	CIS Debian 9 Workstation L2 v1.0.1	Unix	ACCESS CONTROL
1.7.1.1 Ensure AppArmor is installed	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
1.7.1.1 Ensure SELinux is installed	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	ACCESS CONTROL
1.7.1.2 Ensure SELinux is not disabled in bootloader configuration - enforcing	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
1.7.1.2 Ensure SELinux is not disabled in bootloader configuration - selinux	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	ACCESS CONTROL
1.7.1.3 Ensure SELinux policy is configured - SELINUXTYPE	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
1.7.1.5 Ensure the SELinux mode is enforcing - getenforce	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	ACCESS CONTROL
1.8.1.5 Ensure permissions on /etc/issue are configured	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
1.8.1.6 Ensure permissions on /etc/issue.net are configured	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
2.3.10.12 (L1) Ensure 'Network access: Shares that can be accessed anonymously' is set to 'None'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.14 Ensure 'Network access: Shares that can be accessed anonymously' is set to 'None'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
4.3 Ensure logrotate assigns appropriate permissions	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	ACCESS CONTROL
4.4 Ensure logrotate assigns appropriate permissions	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	ACCESS CONTROL
4.4 Ensure logrotate assigns appropriate permissions	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	ACCESS CONTROL
5.1.5 Ensure permissions on /etc/cron.weekly are configured	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	ACCESS CONTROL
5.1.8 Ensure cron is restricted to authorized users - '/etc/cron.allow'	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	ACCESS CONTROL
5.1.8 Ensure cron is restricted to authorized users - '/etc/cron.deny'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	ACCESS CONTROL
5.2.2 Ensure permissions on SSH private host key files are configured	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	ACCESS CONTROL
5.2.3 Ensure permissions on SSH public host key files are configured	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	ACCESS CONTROL
5.3.2 Ensure permissions on SSH private host key files are configured	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	ACCESS CONTROL
5.5.4 Ensure default user umask is 027 or more restrictive - '/etc/bash.bashrc'	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	ACCESS CONTROL
5.5.4 Ensure default user umask is 027 or more restrictive - /etc/profile /etc/profile.d	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	ACCESS CONTROL
6.1.1 Audit system file permissions	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	ACCESS CONTROL
6.1.3 Ensure permissions on /etc/shadow are configured	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
6.1.4 Ensure permissions on /etc/group are configured	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
6.1.5 Ensure permissions on /etc/gshadow are configured	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	ACCESS CONTROL
6.1.6 Ensure permissions on /etc/passwd- are configured	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
6.1.7 Ensure permissions on /etc/shadow- are configured	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
6.2.6 Ensure users' home directories permissions are 750 or more restrictive	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
6.2.7 Ensure users' dot files are not group or world writable	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	ACCESS CONTROL
6.2.8 Ensure no users have .netrc files	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	ACCESS CONTROL
6.2.8 Ensure users' dot files are not group or world writable	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
6.2.17 Ensure shadow group is empty	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	ACCESS CONTROL
6.2.20 Ensure shadow group is empty - /etc/passwd	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
7.4 Ensure directory in context.xml is a secure location - configuration	CIS Apache Tomcat 8 L1 v1.1.0	Unix	ACCESS CONTROL
9.2.7 Check Permissions on User Home Directories	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
9.5 Ensure No Replication Users Have Wildcard Hostnames	CIS MySQL 5.6 Enterprise Database L1 v2.0.0	MySQLDB	ACCESS CONTROL

Detections

Analytics

Item Search