Item Search

Name	Audit Name	Plugin	Category
DTOO104 - Disabling of user name and password syntax from being used in URLs must be enforced in PowerPoint.	DISA STIG Microsoft PowerPoint 2016 v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO104 - Disabling of user name and password syntax from being used in URLs must be enforced.	DISA STIG Microsoft Visio 2016 v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO111 - Publisher - Enabling IE Bind to Object functionality must be present.	DISA STIG Office 2010 Publisher v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO111 - The Internet Explorer Bind to Object functionality must be enabled in PowerPoint.	DISA STIG Microsoft PowerPoint 2016 v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO117 - Publisher - Saved from URL mark to assure Internet zone processing must be enforced.	DISA STIG Office 2010 Publisher v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO123 - Project - Navigation to URL's embedded in Office products must be blocked.	DISA STIG Office 2010 Project v1r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO124 - Scripted Window Security must be enforced	DISA STIG Microsoft Publisher 2016 v1r3	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO126 - Publisher - Add-on Management functionality must be allowed.	DISA STIG Office 2010 Publisher v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO129 - Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint.	DISA STIG Microsoft PowerPoint 2016 v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO129 - Links that invoke instances of Internet Explorer from within an Office product must be blocked.	DISA STIG Microsoft Project 2016 v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO129 - Project - Links that invoke instances of IE from within an Office product must be blocked.	DISA STIG Office 2010 Project v1r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO132 - File Downloads must be configured for proper restrictions	DISA STIG Microsoft Publisher 2016 v1r3	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO132 - File Downloads must be configured for proper restrictions.	DISA STIG Microsoft Project 2016 v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO132 - Publisher - File Downloads must be configured for proper restrictions.	DISA STIG Office 2010 Publisher v1r12	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO133 - All automatic loading from trusted locations must be disabled.	DISA STIG Microsoft PowerPoint 2016 v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO209 - Project - Protection from zone elevation must be enforced.	DISA STIG Office 2010 Project v1r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO211 - ActiveX installs must be configured for proper restrictions.	DISA STIG Microsoft Sharepoint Designer 2013 v1r3	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO211 - Project - ActiveX Installs must be configured for proper restriction.	DISA STIG Office 2010 Project v1r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO292 - PowerPoint - Document behavior if file validation fails must be set.	DISA STIG Office 2010 PowerPoint v1r11	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO293 - PowerPoint - Attachments opened from Outlook must be in Protected View.	DISA STIG Office 2010 PowerPoint v1r11	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO323 - The Publisher Automation Security Level must be configured for high security	DISA STIG Microsoft Publisher 2016 v1r3	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO346 - Project - Untrusted intranet zone access to Project servers must not be allowed.	DISA STIG Office 2010 Project v1r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO504 - Navigation to URLs embedded in Office products must be blocked in PowerPoint Viewer.	DISA STIG Microsoft PowerPoint 2016 v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO510 - ActiveX Installs must be configured for proper restriction in PowerPoint Viewer.	DISA STIG Microsoft PowerPoint 2016 v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
GEN000000-AIX0085 - The /etc/netsvc.conf file must be root owned.	DISA STIG AIX 5.3 v1r2	Unix	ACCESS CONTROL
GEN000242 - The system must use at least two time sources for clock synchronization - 'NTP daemon is started at boot'	DISA STIG AIX 5.3 v1r2	Unix	AUDIT AND ACCOUNTABILITY
GEN001020 - The root account must not be used for direct logins.	DISA STIG AIX 5.3 v1r2	Unix	IDENTIFICATION AND AUTHENTICATION
GEN001210 - All system command files must not have extended ACLs - '/usr/bin/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001210 - All system command files must not have extended ACLs - '/usr/sbin/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001210 - All system command files must not have extended ACLs - '/usr/ucb/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001220 - All system files, programs, and directories must be owned by a system account - '/bin/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001220 - All system files, programs, and directories must be owned by a system account - '/sbin/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001240 - System files, programs, and directories must be group-owned by a system group - '/sbin/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN001310 - All library files must not have extended ACLs - '/lib/*'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/config AUD_it exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/config FILE_Chpriv exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/config FILE_Mknod exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/config PROC_Setpgid exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/config RESTORE_Import exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events AUD_it exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events BACKUP_Export exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events FS_Umount exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events PASSWORD_Check exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002760 - System must be configured to audit all admin/privileged/security actions - '/etc/security/audit/events USER_Change exists'	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN005505 - The SSH daemon must be configured to only use FIPS 140-2 approved ciphers.	DISA STIG AIX 5.3 v1r2	Unix	ACCESS CONTROL
GEN005820 - The NFS anonymous UID and GID must be configured to values without permissions.	DISA STIG AIX 5.3 v1r2	Unix	ACCESS CONTROL
GEN006080 - The Samba Web Administration Tool (SWAT) must be restricted to the local host or require SSL.	DISA STIG AIX 5.3 v1r2	Unix	ACCESS CONTROL
GEN006400 - The Network Information System (NIS) protocol must not be used.	DISA STIG AIX 5.3 v1r2	Unix	ACCESS CONTROL
GEN009180 - The system must not have the tool-talk database server (ttdbserver) service active.	DISA STIG AIX 5.3 v1r2	Unix	ACCESS CONTROL
GEN009230 - The system must not have the echo service active.	DISA STIG AIX 5.3 v1r2	Unix	ACCESS CONTROL

Detections

Analytics

Item Search