Item Search

Name	Audit Name	Plugin	Category
1.8 (L2) Host integrated hardware management controller must secure authentication	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	ACCESS CONTROL
1.10 (L2) Host hardware must enable Intel SGX, if available	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT, MAINTENANCE
1.12 (L2) Host integrated hardware management controller must deactivate internal networking	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT
2.1 Ensure Authentication is configured	CIS MongoDB 6 v1.2.0 L1 MongoDB	Unix	IDENTIFICATION AND AUTHENTICATION
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	CIS MongoDB 6 v1.2.0 L1 MongoDB	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4.7.3 Ensure 'Force file extension to match file type' is set to 'Enabled: Always match file type'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.2.4.7.6 Ensure 'WEBSERVICE Function Notification Settings' is set to 'Enabled: Disable all without notification'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.3 Ensure authentication is enabled in the sharded cluster	CIS MongoDB 6 v1.2.0 L2 MongoDB	Unix	CONFIGURATION MANAGEMENT
2.3.18.3 Ensure 'Always require users to connect to verify permission' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.3.27.16 Ensure 'Macro Runtime Scan Scope' is set to 'Enabled: Enable for all documents'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.3.27.18 Ensure 'Protect document metadata for rights managed Office Open XML Files' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.28.2 Ensure 'Disable the Office client from polling the SharePoint Server for published links' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.3.29.1.1 Ensure 'Disable Internet Fax feature' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.3.31.2 Ensure 'Suppress external signature services menu item' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.5.1.6.3 Ensure 'Turn off RSS feature' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.5.10.6.3 Ensure 'Make Outlook the default program for E-mail, Contacts, and Calendar' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.5.10.8.1.2.5 Ensure 'Restrict upload method' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL
2.5.10.8.3.2 Ensure 'Read signed e-mail as plain text' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.5.10.8.4.2 Ensure 'Hide Junk Mail UI' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.5.10.11 Ensure 'Internet and network paths into hyperlinks' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.5.14.1.2 Ensure 'Block Trusted Zones' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.5.14.1.3 Ensure 'Display pictures and external content in HTML e-mail' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.5.14.3.1.1 Ensure 'Allow users to demote attachments to Level 2' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.5.14.3.1.6 Ensure 'Remove file extensions blocked as Level 2' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.5.14.3.3.6 Ensure 'Configure Outlook object model prompt when responding to meeting and task requests' is set to 'Enabled: Automatically Deny'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.5.14.3.4 Ensure 'Outlook Security Mode' is set to 'Enabled: Use Outlook Security Group Policy'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.5.14.4.3 Ensure 'Security setting for macros' is set to 'Enabled: Warn for signed, disable unsigned'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.5.14.8 Ensure 'Prevent users from customizing attachment security settings' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.6.6.6.2.1.1 Ensure 'PowerPoint 97-2003 presentations, shows, templates and add-in files' is set to 'Enabled: Open/Save blocked, use open policy'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.6.6.6.2.2.4 Ensure 'Set document behavior if file validation fails' is set to 'Unchecked: Do not allow edit'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
3.2 Ensure that role-based access control is enabled and configured appropriately	CIS MongoDB 7 v1.2.0 L1 MongoDB	MongoDB	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
3.3 Ensure that MongoDB is run using a non-privileged, dedicated service account	CIS MongoDB 6 v1.2.0 L1 MongoDB	Unix	ACCESS CONTROL
3.3 Ensure that MongoDB is run using a non-privileged, dedicated service account	CIS MongoDB 6 v1.2.0 L1 MongoDB	Windows	ACCESS CONTROL
3.5 Review Superuser/Admin Roles	CIS MongoDB 6 v1.2.0 L2 MongoDB	MongoDB	ACCESS CONTROL
3.5 Review Superuser/Admin Roles - userAdmin	CIS MongoDB 5 L2 DB v1.2.0	MongoDB	ACCESS CONTROL
3.5 Review Superuser/Admin Roles - userAdminAnyDatabase	CIS MongoDB 5 L2 DB v1.2.0	MongoDB	ACCESS CONTROL
4.3 Ensure Encryption of Data in Transit TLS or SSL (Transport Encryption)	CIS MongoDB 6 v1.2.0 L1 MongoDB	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.3 Ensure Encryption of Data in Transit TLS or SSL (Transport Encryption)	CIS MongoDB 7 v1.2.0 L1 Unix	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.4 Ensure Federal Information Processing Standard (FIPS) is enabled	CIS MongoDB 6 v1.2.0 L2 MongoDB	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.1 Ensure that system activity is audited	CIS MongoDB 7 v1.2.0 L1 Unix	Unix	AUDIT AND ACCOUNTABILITY
5.2 Ensure External File System Access is disabled - enable file access	CIS Sybase 15.0 L1 DB v1.1.0	SybaseDB
5.2 Ensure that audit filters are configured properly	CIS MongoDB 6 v1.2.0 L2 MongoDB	Windows	AUDIT AND ACCOUNTABILITY
5.3 Ensure that logging captures as much information as possible	CIS MongoDB 6 v1.2.0 L2 MongoDB	Windows	AUDIT AND ACCOUNTABILITY
6.2 Ensure that operating system resource limits are set for MongoDB	CIS MongoDB 6 v1.2.0 L2 MongoDB	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure appropriate key file permissions are set	CIS MongoDB 6 v1.2.0 L1 MongoDB	Windows	IDENTIFICATION AND AUTHENTICATION
18.10.10.1.3 Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Allow data recovery agent' is set to 'Enabled: True'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L2 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.3.11 Ensure 'Configure use of passwords for removable data drives' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 BL	Windows	IDENTIFICATION AND AUTHENTICATION
18.10.10.3.11 Ensure 'Configure use of passwords for removable data drives' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L2 BL	Windows	IDENTIFICATION AND AUTHENTICATION
18.10.36.1 Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L2	Windows	CONFIGURATION MANAGEMENT
18.10.36.1 Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L2	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search