Item Search

Name	Audit Name	Plugin	Category
1.1.4.1.3 Ensure 'Consistent Mime Handling' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
1.1.4.1.4 Ensure 'Disable user name and password' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
1.1.4.1.6 Ensure 'Local Machine Zone Lockdown Security' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
1.1.4.1.7 Ensure 'Mime Sniffing Safety Feature' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
1.1.4.1.8 Ensure 'Navigate URL' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.4.1.12 Ensure 'Restrict File Download' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
1.4.2 Ensure that the API server pod specification file ownership is set to root:root	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.6 Ensure that the scheduler pod specification file ownership is set to root:root	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.12 Ensure that the etcd data directory ownership is set to etcd:etcd	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix
1.4.13 Ensure that the admin.conf file permissions are set to 644 or more restrictive	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.14 Ensure that the admin.conf file ownership is set to root:root	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.15 Ensure that the scheduler.conf file permissions are set to 644 or more restrictive	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.5.1 Ensure that the --cert-file and --key-file arguments are set as appropriate - key-file	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.5.4 Ensure that the --peer-cert-file and --peer-key-file arguments are set as appropriate - peer-cert-file	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.5.6 Ensure that the --peer-auto-tls argument is not set to true	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.5.8 Ensure that the --max-wals argument is set to 0	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	AUDIT AND ACCOUNTABILITY
1.6.1 Ensure that the cluster-admin role is only used where required	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.6.3 Create administrative boundaries between resources using namespaces	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	ACCESS CONTROL
1.6.4 Create network segmentation using Network Policies	CIS Kubernetes 1.8 Benchmark v1.2.0 L2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
1.6.7 Configure Image Provenance using ImagePolicyWebhook admission controller	CIS Kubernetes 1.8 Benchmark v1.2.0 L2	Unix
2.1.3 Ensure that the --authorization-mode argument is not set to AlwaysAllow	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	ACCESS CONTROL
2.1.4 Ensure that the --client-ca-file argument is set as appropriate	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
2.1.5 Ensure that the --read-only-port argument is set to 0	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
2.1.10 Ensure that the --hostname-override argument is not set	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
2.2.2.1 Ensure 'Do not show data extraction options when opening corrupt workbooks' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.4.5.1.1 Ensure 'Internet and network paths as hyperlinks' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.2.4.6.2 Ensure 'Disable AutoRepublish' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL
2.2.4.7.2.1.3 Ensure 'Don't allow Dynamic Data Exchange (DDE) server lookup in Excel' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.4.7.2.2.1 Ensure 'dBase III /IV files' is set to 'Enable: Open/Save blocked, use open policy'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.2.4.7.2.2.3 Ensure 'Excel 2 macrosheets and add-in files' is set to 'Enabled: Open/Save blocked, use open policy'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.2.4.7.2.2.8 Ensure 'Excel 4 workbooks' is set to 'Enabled: Open/Save blocked, use open policy'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.2.4.7.2.3.3 Ensure 'Do not open files in unsafe locations in Protected View' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.4.7.2.8 Ensure 'Macro Notification Settings' is set to 'Enabled: Disable VBA macros except digitally signed macros'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.2.4.7.2.9 Ensure 'Macro Notification Settings' is set to 'Require macros to be signed by a trusted publisher'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.2.4.7.2.12 Ensure 'Store macro in Personal Macro Workbook by default' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.2.4.7.2.13 Ensure 'Trust access to Visual Basic Project' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.2.4.7.3 Ensure 'Force file extension to match file type' is set to 'Enabled: Always match file type'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.2.7 Ensure that the certificate authorities file permissions are set to 644 or more restrictive	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
2.11.8.7.2.5 Ensure 'Disable Trust Bar Notification for unsigned application add-ins and block them' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.11.8.7.2.8 Ensure 'Scan encrypted macros in Word Open XML Documents' to 'Enabled: Scan encrypted macros (default)'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.11.8.7.2.11 Ensure 'VBA Macro Notification Settings' is set to 'Require macros to be signed by a trusted publisher'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.11.8.7.4 Ensure 'Turn off file validation' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
3.1.6 Ensure that the --secure-port argument is not set to 0	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.1.9 Ensure that the admission control policy is set to NamespaceLifecycle	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	ACCESS CONTROL
3.1.11 Ensure that the --audit-log-maxage argument is set to 30 or as appropriate	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	AUDIT AND ACCOUNTABILITY
3.1.13 Ensure that the --audit-log-maxsize argument is set to 100 or as appropriate	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	AUDIT AND ACCOUNTABILITY
3.1.15 Ensure that the --token-auth-file parameter is not set	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
3.1.18 Ensure that the --etcd-certfile and --etcd-keyfile arguments are set as appropriate - etcd-certfile	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
3.1.19 Ensure that the --tls-cert-file and --tls-private-key-file arguments are set as appropriate - tls-private-key-file	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
3.2.1 Ensure that the --profiling argument is set to false	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search