Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/docsCIS Apache Tomcat 9 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/ROOTCIS Apache Tomcat 9 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

1.2.5 Ensure Exec Timeout for Remote Administrative Sessions (VTY) is set to less than 10CIS Cisco NX-OS v1.2.0 L1Cisco

CONFIGURATION MANAGEMENT, MAINTENANCE

1.2.6 Set the Maximum Number of VTY SessionsCIS Cisco NX-OS v1.2.0 L1Cisco

CONFIGURATION MANAGEMENT, MAINTENANCE

1.3.2 Post-authentication BannerCIS Cisco NX-OS v1.2.0 L1Cisco

ACCESS CONTROL, CONFIGURATION MANAGEMENT

2.3.2 Secure screen saver corners - bottom left cornerCIS Apple macOS 10.12 L2 v1.2.0Unix

ACCESS CONTROL

2.4 Disable X-Powered-By HTTP Header and Rename the Server Value for all ConnectorsCIS Apache Tomcat 9 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.4.2 Disable Internet SharingCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.4.5 Disable Remote LoginCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

2.4.9 Disable Remote ManagementCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.7 Ensure Sever Header is Modified To Prevent Information DisclosureCIS Apache Tomcat 9 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.7.1 iCloud configurationCIS Apple macOS 10.12 L2 v1.2.0Unix

ACCESS CONTROL

2.7.3 iCloud DriveCIS Apple macOS 10.12 L2 v1.2.0Unix

ACCESS CONTROL

2.8.1 Time Machine Auto-BackupCIS Apple macOS 10.12 L2 v1.2.0Unix

CONTINGENCY PLANNING

2.12 Securely delete files as neededCIS Apple macOS 10.12 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

3.5 Retain install.log for 365 or more daysCIS Apple macOS 10.12 L1 v1.2.0Unix

AUDIT AND ACCOUNTABILITY

4.2 Restrict access to $CATALINA_BASECIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL, MEDIA PROTECTION

4.3 Restrict access to Tomcat configuration directoryCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL, MEDIA PROTECTION

4.5 Ensure FTP server is not runningCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

4.10 Restrict access to Tomcat context.xmlCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL, MEDIA PROTECTION

4.11 Restrict access to Tomcat logging.propertiesCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL, MEDIA PROTECTION

4.12 Restrict access to Tomcat server.xmlCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL, MEDIA PROTECTION

5.1 Use secure RealmsCIS Apache Tomcat 9 L2 v1.2.0Unix

ACCESS CONTROL

5.1.1 Secure Home FoldersCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

5.1.3 Check System folder for world writable filesCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

5.1.4 Check Library folder for world writable filesCIS Apple macOS 10.12 L2 v1.2.0Unix

ACCESS CONTROL

5.2.1 Configure account lockout thresholdCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

5.2.3 Complex passwords must contain an Alphabetic CharacterCIS Apple macOS 10.12 L2 v1.2.0Unix
5.2.5 Complex passwords must contain a Special CharacterCIS Apple macOS 10.12 L2 v1.2.0Unix
5.3 Reduce the sudo timeout periodCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

5.6 Ensure login keychain is locked when the computer sleepsCIS Apple macOS 10.12 L2 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

5.7 Enable OCSP and CRL certificate checking - OCSPStyleCIS Apple macOS 10.12 L2 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

5.12 Require an administrator password to access system-wide preferencesCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

5.19 Create specialized keychains for different purposesCIS Apple macOS 10.12 L2 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

6.1 Setup Client-cert AuthenticationCIS Apache Tomcat 9 L2 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

6.1.4 Disable 'Allow guests to connect to shared folders' - AFP SharingCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

6.3 Disable the automatic run of safe files in SafariCIS Apple macOS 10.12 L1 v1.2.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

6.4 Safari disable Internet Plugins for global useCIS Apple macOS 10.12 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

6.5 Ensure 'sslProtocol' is Configured Correctly for Secure ConnectorsCIS Apache Tomcat 9 L1 v1.2.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

7.2 Specify file handler in logging.properties files - check if java.util.logging.ConsoleHandler exists inin defaultCIS Apache Tomcat 9 L1 v1.2.0Unix

AUDIT AND ACCOUNTABILITY

7.2 Specify file handler in logging.properties files - check if java.util.logging.ConsoleHandler logging is enabled in web applicationCIS Apache Tomcat 9 L1 v1.2.0Unix

AUDIT AND ACCOUNTABILITY

7.4 Ensure directory in context.xml is a secure location - configurationCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL, MEDIA PROTECTION

7.6 Ensure directory in logging.properties is a secure location - check prefix application nameCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL

10.3 Restrict manager applicationCIS Apache Tomcat 9 L2 v1.2.0Unix

ACCESS CONTROL

10.7 Turn off session facade recyclingCIS Apache Tomcat 9 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

10.10 Configure maxHttpHeaderSizeCIS Apache Tomcat 9 L2 v1.2.0Unix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

10.13 Do not run applications as privilegedCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL

10.14 Do not allow cross context requestsCIS Apache Tomcat 9 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

10.15 Do not resolve hosts on logging valvesCIS Apache Tomcat 9 L2 v1.2.0Unix

SYSTEM AND INFORMATION INTEGRITY

10.17 Setting Security Lifecycle Listener - check for config componentCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL