| 1.1.2 Ensure /tmp is configured | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.2.3 Ensure gpgcheck is globally activated | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| 1.3.1 Ensure AIDE is installed | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
| 1.4.2 Ensure authentication required for single user mode - emergency.service | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.5.2 Ensure address space layout randomization (ASLR) is enabled - sysctl | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.1.1.2 Ensure ntp is configured - restrict -6 | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | AUDIT AND ACCOUNTABILITY |
| 2.1.10 Ensure HTTP server is not enabled | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.1.12 Ensure Samba is not enabled - status | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.1.13 Ensure HTTP Proxy Server is not enabled - status | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.2.30 (L1) Ensure 'Generate security audits' is set to 'LOCAL SERVICE, NETWORK SERVICE' | CIS Windows Server 2012 R2 MS L1 v3.0.0 | Windows | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY |
| 2.2.30 (L1) Ensure 'Generate security audits' is set to 'LOCAL SERVICE, NETWORK SERVICE' | CIS Windows Server 2012 R2 DC L1 v3.0.0 | Windows | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY |
| 2.2.31 (L1) Ensure 'Generate security audits' is set to 'LOCAL SERVICE, NETWORK SERVICE' | CIS Microsoft Windows Server 2019 v3.0.1 L1 MS | Windows | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY |
| 2.2.36 Ensure 'Generate security audits' is set to 'LOCAL SERVICE, NETWORK SERVICE' | CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC | Windows | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY |
| 2.2.38 Ensure 'Generate security audits' is set to 'LOCAL SERVICE, NETWORK SERVICE' | CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS | Windows | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY |
| 2.2.38 Ensure 'Generate security audits' is set to 'LOCAL SERVICE, NETWORK SERVICE' | CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC | Windows | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY |
| 2.2.39 (L1) Ensure 'Generate security audits' is set to 'LOCAL SERVICE, NETWORK SERVICE' | CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 DC | Windows | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY |
| check if firewalld is not active | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| CISC-ND-000210 - The Cisco switch must be configured to protect against an individual falsely denying having performed organization-defined actions to be covered by non-repudiation. | DISA STIG Cisco NX-OS Switch NDM v3r2 | Cisco | AUDIT AND ACCOUNTABILITY |
| CISC-ND-000940 - The Cisco switch must be configured to audit the execution of privileged functions. | DISA STIG Cisco NX-OS Switch NDM v3r2 | Cisco | ACCESS CONTROL |
| config file maxauthtries setting | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| cups.socket cups.service active | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| cups.socket cups.service enabled | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| dhcpd.service dhcpd6.service enabled | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| dovecot exist on the system | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| dovecot.socket dovecot.service cyrus-imapd.service active | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| DTOO189 - The encryption type for password protected Open XML files must be set. | DISA STIG Microsoft Office System 2016 v2r3 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| firewalld check - active | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| ip6tables input | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| ip6tables output | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| iptables Chain OUTPUT | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| iptables enabled | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| login.defs | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| New format input imtcp | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| nfs-server.service enabled | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| O365-CO-000009 - Office applications must be configured to specify encryption type in password-protected Office Open XML files. | DISA STIG Microsoft Office 365 ProPlus v3r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| On disk timestamp_timeout | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| pam.d | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| review /etc/sysconfig/ip6tables | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| rsyslog check - active | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| shadow password max days | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| snmpd.service enabled | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| sshd maxauthtries setting | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| system-auth authfail deny | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| system-auth authfail unlock_time | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| telnet.socket active | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| tftp-server is installed | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| URL | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| vsftpd.service enabled | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| ypserv installed | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
| ypserv.service enabled | CIS Amazon Linux 2 v3.0.0 L1 | Unix | |
