Item Search

NameAudit NamePluginCategory
AADC-CL-001315 - Adobe Acrobat Pro DC Classic SharePoint and Office365 access must be disabled.DISA STIG Adobe Acrobat Pro DC Classic Track v2r1Windows

CONFIGURATION MANAGEMENT

AADC-CN-000280 - Adobe Acrobat Pro DC Continuous access to unknown websites must be restricted.DISA STIG Adobe Acrobat Pro DC Continuous Track v2r1Windows

CONFIGURATION MANAGEMENT

AADC-CN-001300 - Adobe Acrobat Pro DC Continuous third-party web connectors must be disabled.DISA STIG Adobe Acrobat Pro DC Continuous Track v2r1Windows

CONFIGURATION MANAGEMENT

AOSX-13-000050 - The macOS system must be configured to disable rshd service.DISA STIG Apple Mac OSX 10.13 v2r5Unix

CONFIGURATION MANAGEMENT

AOSX-13-000535 - The macOS system must be configured to disable Location Services.DISA STIG Apple Mac OSX 10.13 v2r5Unix

CONFIGURATION MANAGEMENT

AOSX-13-001270 - The macOS system must be configured to disable Internet Sharing.DISA STIG Apple Mac OSX 10.13 v2r5Unix

CONFIGURATION MANAGEMENT

AOSX-14-002005 - The macOS system must be configured to disable Bonjour multicast advertising.DISA STIG Apple Mac OSX 10.14 v2r6Unix

CONFIGURATION MANAGEMENT

AOSX-15-002002 - The macOS system must be configured to disable Apple File (AFP) Sharing.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002035 - The macOS system must be configured to disable the Cloud Setup services.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

AOSX-15-002036 - The macOS system must be configured to disable the Privacy Setup services.DISA STIG Apple Mac OSX 10.15 v1r10Unix

CONFIGURATION MANAGEMENT

ARDC-CL-000090 - Adobe Reader DC must disable access to Webmail.DISA STIG Adobe Acrobat Reader DC Classic Track v2r1Windows

CONFIGURATION MANAGEMENT

AS24-U1-000250 - The Apache web server must only contain services and functions necessary for operation.DISA STIG Apache Server 2.4 Unix Server v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

AS24-U1-000270 - The Apache web server must provide install options to exclude the installation of documentation, sample code, example applications, and tutorials - Welcome pageDISA STIG Apache Server 2.4 Unix Server v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

AS24-U1-000300 - The Apache web server must have resource mappings set to disable the serving of certain file types.DISA STIG Apache Server 2.4 Unix Server v3r1Unix

CONFIGURATION MANAGEMENT

AS24-U1-000310 - The Apache web server must allow the mappings to unused and vulnerable scripts to be removed.DISA STIG Apache Server 2.4 Unix Server v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

AS24-W1-000250 - The Apache web server must only contain services and functions necessary for operation - httpd-manual packageDISA STIG Apache Server 2.4 Windows Server v3r1Windows

CONFIGURATION MANAGEMENT

AS24-W1-000270 - The Apache web server must provide install options to exclude the installation of documentation, sample code, example applications, and tutorials.DISA STIG Apache Server 2.4 Windows Server v2r3Windows

CONFIGURATION MANAGEMENT

AS24-W1-000310 - The Apache web server must allow the mappings to unused and vulnerable scripts to be removed.DISA STIG Apache Server 2.4 Windows Server v3r1Windows

CONFIGURATION MANAGEMENT

CISC-L2-000010 - The Cisco switch must be configured to disable non-essential capabilities.DISA STIG Cisco NX-OS Switch L2S v3r1Cisco

CONFIGURATION MANAGEMENT

DKER-EE-001840 - Experimental features in the Docker Engine - Enterprise component of Docker Enterprise must be disabled.DISA STIG Docker Enterprise 2.x Linux/Unix v2r2Unix

CONFIGURATION MANAGEMENT

DKER-EE-001900 - The Create repository on push option in Docker Trusted Registry (DTR) must be disabled in Docker Enterprise.DISA STIG Docker Enterprise 2.x Linux/Unix DTR v2r2Unix

CONFIGURATION MANAGEMENT

DKER-EE-001950 - Linux Kernel capabilities must be restricted within containers as defined in the System Security Plan (SSP) for Docker Enterprise.DISA STIG Docker Enterprise 2.x Linux/Unix v2r2Unix

CONFIGURATION MANAGEMENT

DKER-EE-002000 - Docker Enterprise hosts network namespace must not be shared.DISA STIG Docker Enterprise 2.x Linux/Unix v2r2Unix

CONFIGURATION MANAGEMENT

EX13-MB-000055 - Exchange Send Fatal Errors to Microsoft must be disabled.DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3Windows

CONFIGURATION MANAGEMENT

EX13-MB-000065 - Exchange must not send Customer Experience reports to Microsoft.DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3Windows

CONFIGURATION MANAGEMENT

EX13-MB-000090 - The Exchange IMAP4 service must be disabled.DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3Windows

CONFIGURATION MANAGEMENT

EX16-MB-000190 - The Exchange Post Office Protocol 3 (POP3) service must be disabled.DISA Microsoft Exchange 2016 Mailbox Server STIG v2r6Windows

CONFIGURATION MANAGEMENT

F5BI-LT-000067 - The BIG-IP Core implementation must be configured so that only functions, ports, protocols, and/or services that are documented for the server/application for which the virtual servers are providing connectivity.DISA F5 BIG-IP Local Traffic Manager STIG v2r3F5

CONFIGURATION MANAGEMENT

IIST-SI-000215 - Mappings to unused and vulnerable scripts on the IIS 10.0 website must be removed.DISA IIS 10.0 Site v2r9Windows

CONFIGURATION MANAGEMENT

IIST-SI-000216 - The IIS 10.0 website must have resource mappings set to disable the serving of certain file types.DISA IIS 10.0 Site v2r9Windows

CONFIGURATION MANAGEMENT

IIST-SI-000217 - The IIS 10.0 website must have Web Distributed Authoring and Versioning (WebDAV) disabled.DISA IIS 10.0 Site v2r9Windows

CONFIGURATION MANAGEMENT

IIST-SV-000117 - The IIS 10.0 web server must not perform user management for hosted applications.DISA IIS 10.0 Server v3r1Windows

CONFIGURATION MANAGEMENT

IIST-SV-000118 - The IIS 10.0 web server must only contain functions necessary for operation.DISA IIS 10.0 Server v2r10Windows

CONFIGURATION MANAGEMENT

IIST-SV-000123 - The IIS 10.0 web server must be reviewed on a regular basis to remove any Operating System features, utility programs, plug-ins, and modules not necessary for operation.DISA IIS 10.0 Server v3r1Windows

CONFIGURATION MANAGEMENT

IIST-SV-000125 - The IIS 10.0 web server must have Web Distributed Authoring and Versioning (WebDAV) disabled.DISA IIS 10.0 Server v3r1Windows

CONFIGURATION MANAGEMENT

JUNI-RT-000070 - The Juniper router must be configured to have all non-essential capabilities disabled - httpDISA STIG Juniper Router RTR v3r1Juniper

CONFIGURATION MANAGEMENT

SQL4-00-016600 - SQL Server must have the SQL Server Reporting Services (SSRS) software component removed if it is unused.DISA STIG SQL Server 2014 Instance OS Audit v2r4Windows

CONFIGURATION MANAGEMENT

SQL4-00-016810 - SQL Server must have the SQL Server Distributed Replay Controller software component removed if it is unused.DISA STIG SQL Server 2014 Instance OS Audit v2r4Windows

CONFIGURATION MANAGEMENT

SQL4-00-016815 - SQL Server must have the Full-Text Search software component removed if it is unused.DISA STIG SQL Server 2014 Instance OS Audit v2r4Windows

CONFIGURATION MANAGEMENT

SQL4-00-016830 - SQL Server must have the Data Quality Client software component removed if it is unused.DISA STIG SQL Server 2014 Instance OS Audit v2r4Windows

CONFIGURATION MANAGEMENT

SQL4-00-017200 - Access to xp_cmdshell must be disabled, unless specifically required and approved.DISA STIG SQL Server 2014 Instance DB Audit v2r4MS_SQLDB

CONFIGURATION MANAGEMENT

SQL6-D0-007400 - Access to Non-Standard extended stored procedures must be disabled or restricted, unless specifically required and approved.DISA STIG SQL Server 2016 Instance DB Audit v3r1MS_SQLDB

CONFIGURATION MANAGEMENT

SQL6-D0-007500 - Access to linked servers must be disabled or restricted, unless specifically required and approved.DISA STIG SQL Server 2016 Instance DB Audit v3r1MS_SQLDB

CONFIGURATION MANAGEMENT

SQL6-D0-016300 - SQL Server default account [sa] must have its name changed.DISA STIG SQL Server 2016 Instance DB Audit v3r1MS_SQLDB

CONFIGURATION MANAGEMENT

SQL6-D0-017100 - SQL Server User Options feature must be disabled, unless specifically required and approved.DISA STIG SQL Server 2016 Instance DB Audit v3r1MS_SQLDB

CONFIGURATION MANAGEMENT

SQL6-D0-017500 - Allow Polybase Export feature must be disabled, unless specifically required and approved.DISA STIG SQL Server 2016 Instance DB Audit v3r1MS_SQLDB

CONFIGURATION MANAGEMENT

WN10-CC-000175 - The Application Compatibility Program Inventory must be prevented from collecting data and sending the information to Microsoft.DISA Windows 10 STIG v3r2Windows

CONFIGURATION MANAGEMENT

WN10-CC-000252 - Windows 10 must be configured to disable Windows Game Recording and Broadcasting.DISA Windows 10 STIG v3r2Windows

CONFIGURATION MANAGEMENT

WN10-CC-000305 - Indexing of encrypted files must be turned off.DISA Windows 10 STIG v3r2Windows

CONFIGURATION MANAGEMENT

WN10-CC-000370 - The convenience PIN for Windows 10 must be disabled.DISA Windows 10 STIG v3r2Windows

CONFIGURATION MANAGEMENT