Item Search

Name	Audit Name	Plugin	Category
1.4.3 Ensure core dump backtraces are disabled	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	ACCESS CONTROL
1.5.1 Ensure core dump storage is disabled	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	ACCESS CONTROL
1.6 Only allow trusted users to control Docker daemon	CIS Docker 1.12.0 v1.0.0 L1 Linux	Unix	ACCESS CONTROL
1.7.8 - Miscellaneous Enhancements - disable core dumps - 'core_hard = 0'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	ACCESS CONTROL
2.2 Run BIND as a non-root user '-u named'	CIS ISC BIND 9.0/9.5 v2.0.0	Unix	ACCESS CONTROL
2.3.4.2 Ensure 'Devices: Prevent users from installing printer drivers' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.5.1 (L1) Ensure 'Domain controller: Allow server operators to schedule tasks' is set to 'Disabled' (DC only)	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.5.1 (L1) Ensure 'Domain controller: Allow server operators to schedule tasks' is set to 'Disabled' (DC only)	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.10.2 (L1) Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.10.3 (L1) Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts and shares' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.10.5 (L1) Ensure 'Network access: Let Everyone permissions apply to anonymous users' is set to 'Disabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.5 (L1) Ensure 'Network access: Let Everyone permissions apply to anonymous users' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.10.9 Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled' - Enabled	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.10 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.10 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.11.2 (L1) Ensure 'Network security: Allow LocalSystem NULL session fallback' is set to 'Disabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.13.1 Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.17.2 Ensure 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' is set to 'Prompt for consent on the secure desktop'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.17.3 (L1) Ensure 'User Account Control: Behavior of the elevation prompt for standard users' is set to 'Automatically deny elevation requests'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.17.4 (L1) Ensure 'User Account Control: Detect application installations and prompt for elevation' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.17.5 (L1) Ensure 'User Account Control: Only elevate UIAccess applications that are installed in secure locations' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.17.5 (L1) Ensure 'User Account Control: Only elevate UIAccess applications that are installed in secure locations' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.17.6 (L1) Ensure 'User Account Control: Run all administrators in Admin Approval Mode' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.17.6 (L1) Ensure 'User Account Control: Run all administrators in Admin Approval Mode' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.17.7 (L1) Ensure 'User Account Control: Switch to the secure desktop when prompting for elevation' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.17.7 (L1) Ensure 'User Account Control: Switch to the secure desktop when prompting for elevation' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.7 Configure 'Remove Security tab'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
2.12.9 - Miscellaneous Config - /etc/ftpusers - '/etc/ftpusers contains adm'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	ACCESS CONTROL
2.12.9 - Miscellaneous Config - /etc/ftpusers - '/etc/ftpusers contains bin'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	ACCESS CONTROL
2.12.9 - Miscellaneous Config - /etc/ftpusers - '/etc/ftpusers contains lpd'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	ACCESS CONTROL
2.12.9 - Miscellaneous Config - /etc/ftpusers - '/etc/ftpusers contains nuucp'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	ACCESS CONTROL
2.12.13 - Miscellaneous Config - authorized users in at.allow - 'at.allow contains adm'	CIS AIX 5.3/6.1 L1 v1.1.0	Unix	ACCESS CONTROL
2.12.13 - Miscellaneous Config - authorized users in at.allow - 'at.allow contains no other entries besides sys and adm'	CIS AIX 5.3/6.1 L1 v1.1.0	Unix	ACCESS CONTROL
2.12.14 - Miscellaneous Config - authorized users in cron.allow - 'cron.allow contains adm'	CIS AIX 5.3/6.1 L1 v1.1.0	Unix	ACCESS CONTROL
2.16.1 - General permissions management - 'no SUID or SGID files exist'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	ACCESS CONTROL
5.4 Do not use privileged containers	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	ACCESS CONTROL
5.4.2.1 Ensure root is the only UID 0 account	CIS Debian Linux 12 v1.1.0 L1 Server	Unix	ACCESS CONTROL
5.4.2.1 Ensure root is the only UID 0 account	CIS Debian Linux 11 v2.0.0 L1 Server	Unix	ACCESS CONTROL
6.1.1 Display login window as name and password	CIS Apple macOS 10.13 L1 v1.1.0	Unix	ACCESS CONTROL
6.2.9 Ensure root is the only UID 0 account	CIS AlmaLinux OS 8 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
6.2.10 Ensure root is the only UID 0 account	CIS Debian 10 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
18.6.2 (L1) Ensure 'Point and Print Restrictions: When installing drivers for a new connection' is set to 'Enabled: Show warning and elevation prompt'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
18.6.11.3 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
18.9.27.5 (L1) Ensure 'Turn off picture password sign-in' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
45.18 (L1) Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v3.0.1 L1	Windows	ACCESS CONTROL
45.19 (L1) Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts and shares' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v3.0.1 L1	Windows	ACCESS CONTROL
45.20 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Intune for Windows 11 v3.0.1 L1	Windows	ACCESS CONTROL
45.21 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow'	CIS Microsoft Intune for Windows 10 v3.0.1 L1	Windows	ACCESS CONTROL
45.21 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow'	CIS Microsoft Intune for Windows 11 v3.0.1 L1	Windows	ACCESS CONTROL
45.31 (L1) Ensure 'User Account Control: Detect application installations and prompt for elevation' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v3.0.1 L1	Windows	ACCESS CONTROL

Detections

Analytics

Item Search