Item Search

Name	Audit Name	Plugin	Category
1.3.2 Implement Periodic Execution of File Integrity - 0 5 * * * /usr/sbin/aide --check'	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
1.8.2 Ensure 'SSH session timeout' is less than or equal to '5' minutes	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	CONFIGURATION MANAGEMENT
1.8.3 Ensure 'HTTP session timeout' is less than or equal to '5' minutes	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	CONFIGURATION MANAGEMENT
2.1 Disable Local-only Graphical Login Environment	CIS Solaris 11 L1 v1.1.0	Unix	CONFIGURATION MANAGEMENT
2.4 Disable X-Powered-By HTTP Header and Rename the Server Value for all Connectors	CIS Apache Tomcat 10 L2 v1.1.0 Middleware	Unix	SYSTEM AND INFORMATION INTEGRITY
3.2.9 Set archive log failover retry limit	CIS IBM DB2 9 Benchmark v3.0.1 Level 2 DB	IBM_DB2DB
5.16 Ensure Browser Framing Is Restricted	CIS Apache HTTP Server 2.4 v2.2.0 L2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
6.12 Ensure all HTTP Header Logging options are enabled - Log Container Page	CIS Palo Alto Firewall 6 Benchmark L1 v1.0.0	Palo_Alto	AUDIT AND ACCOUNTABILITY
6.12 Ensure all HTTP Header Logging options are enabled - Log Container Page	CIS Palo Alto Firewall 8 Benchmark L1 v1.0.0	Palo_Alto	AUDIT AND ACCOUNTABILITY
6.12 Ensure all HTTP Header Logging options are enabled - Referer	CIS Palo Alto Firewall 7 Benchmark L1 v1.0.0	Palo_Alto	AUDIT AND ACCOUNTABILITY
AIOS-02-090100 - Apple iOS must implement the management setting: Disable Allow MailDrop.	AirWatch - DISA Apple iOS 10 v1r3	MDM	CONFIGURATION MANAGEMENT
AIOS-02-090100 - Apple iOS must implement the management setting: Disable Allow MailDrop.	MobileIron - DISA Apple iOS 10 v1r3	MDM	CONFIGURATION MANAGEMENT
AIX7-00-002129 - If Bourne / ksh shell is used, AIX must display logout messages.	DISA STIG AIX 7.x v3r1	Unix	ACCESS CONTROL
Allow only approved domains to use the TDC ActiveX control - Internet Zone	MSCT Windows 10 v22H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Internet Zone	MSCT Windows Server 1903 DC v1.19.9	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Internet Zone	MSCT Windows Server v1909 MS v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Internet Zone	MSCT Windows 10 v2004 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Internet Zone	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Internet Zone	MSCT Windows 10 1809 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Internet Zone	MSCT Windows 10 1803 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Internet Zone	MSCT Windows 11 v23H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Internet Zone	MSCT Windows Server v1909 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows 11 v24H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows 11 v23H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows Server 1903 MS v1.19.9	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows Server 2019 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows Server v20H2 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows 10 v20H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows 10 v21H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows 10 v22H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows Server 2016 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows Server 2019 MS v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows 11 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow only approved domains to use the TDC ActiveX control - Restricted Sites Zone	MSCT Windows Server v2004 MS v1.0.0	Windows	CONFIGURATION MANAGEMENT
BIND-9X-001510 - A BIND 9.x server implementation must enforce approved authorizations for controlling the flow of information between authoritative name servers and specified secondary name servers based on DNSSEC policies.	DISA BIND 9.x STIG v2r3	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
DISA_STIG_MariaDB_Enterprise_10.x_v2r2_OS_Linux.audit from DISA MariaDB Enterprise 10.x v2r2 STIG	DISA MariaDB Enterprise 10.x v2r2 OS Linux	Unix
DTAVSEL-013 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Clean infected files automatically as first action when a virus or Trojan is detected.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-106 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Demand scanner must be configured to Clean infected files automatically as first action when a virus or Trojan is detected.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-106 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Demand scanner must be configured to Clean infected files automatically as first action when a virus or Trojan is detected.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
Enable EDR in block mode	MSCT Windows 11 v24H2 v1.0.0	Windows
GEN000440 - Successful and unsuccessful logins and logouts must be logged - 'last -5 -R'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	AUDIT AND ACCOUNTABILITY
GEN000440 - Successful and unsuccessful logins and logouts must be logged - 'last -5 -R'	DISA STIG for Oracle Linux 5 v2r1	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
GEN000440 - Successful and unsuccessful logins and logouts must be logged - 'lastb -5 -R'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	AUDIT AND ACCOUNTABILITY
GEN000440 - Successful and unsuccessful logins and logouts must be logged - 'lastb -5 -R'	DISA STIG for Oracle Linux 5 v2r1	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
GEN006650 - The Oracle Linux 5 operating system must use a virus scan program.	DISA STIG for Oracle Linux 5 v2r1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
MADB-10-004400 - MariaDB must use NIST FIPS 140-2 validated cryptographic modules for cryptographic operations.	DISA MariaDB Enterprise 10.x v2r2 OS Linux	Unix	IDENTIFICATION AND AUTHENTICATION
MinSpareServers parameter value should be appropriately configured.	TNS IBM HTTP Server Best Practice	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
TCAT-AS-001030 - LockOutRealms failureCount attribute must be set to 5 failed logins for admin users.	DISA STIG Apache Tomcat Application Server 9 v3r1 Middleware	Unix	ACCESS CONTROL
XenServer - Auto-start is not enabled	TNS Citrix XenServer	Unix

Detections

Analytics

Item Search