Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Remove extraneous files and directories - /conf/Catalina/localhost/host-manager.xmlCIS Apache Tomcat 8 L2 v1.1.0 MiddlewareUnix

CONFIGURATION MANAGEMENT

1.1 Remove extraneous files and directories - /webapps/js-examplesCIS Apache Tomcat 8 L2 v1.1.0 MiddlewareUnix

CONFIGURATION MANAGEMENT

1.1 Remove extraneous files and directories - CATALINA_CONF/conf/Catalina/localhost/manager.xmlCIS Apache Tomcat 8 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.1 Remove extraneous files and directories - CATALINA_HOME/webapps/examplesCIS Apache Tomcat 8 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.1.8 - MobileIron - Disable 'Bluetooth'MobileIron - CIS Google Android 4 v1.0.0 L2MDM

ACCESS CONTROL

1.1.17 - AirWatch - Disable 'Unknown sources'AirWatch - CIS Google Android 4 v1.0.0 L1MDM

ACCESS CONTROL

1.1.19 Ensure that the --authorization-mode argument is not set to AlwaysAllowCIS Kubernetes 1.11 Benchmark v1.3.0 L1Unix

ACCESS CONTROL

1.2.1 - MobileIron - Disable JavaScript - 'Samsung SAFE'MobileIron - CIS Google Android 4 v1.0.0 L2MDM

ACCESS CONTROL

1.2.2 - AirWatch - Enable 'Show security warnings'AirWatch - CIS Google Android 4 v1.0.0 L1MDM

ACCESS CONTROL

1.2.2 Ensure that the --address argument is set to 127.0.0.1CIS Kubernetes 1.11 Benchmark v1.3.0 L1Unix

CONFIGURATION MANAGEMENT

1.2.3 - MobileIron - Disable 'Form auto-fill' - 'Samsung SAFE'MobileIron - CIS Google Android 4 v1.0.0 L1MDM

CONFIGURATION MANAGEMENT

1.2.4 - AirWatch - Disable Auto Fill for Names and PasswordsAirWatch - CIS Apple iOS 9 v1.0.0 L2MDM

ACCESS CONTROL

1.2.9 - AirWatch - Turn On Do Not TrackAirWatch - CIS Apple iOS 8 v1.0.0 L2MDM

ACCESS CONTROL

1.2.9 - AirWatch - Turn On Do Not TrackAirWatch - CIS Apple iOS 9 v1.0.0 L2MDM

ACCESS CONTROL

2.1 Disable Local-only Graphical Login EnvironmentCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.1.5 Ensure that the --read-only-port argument is set to 0CIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

CONFIGURATION MANAGEMENT

2.1.9 Ensure Telnet is disabledCIS Check Point Firewall L1 v1.1.0CheckPoint

CONFIGURATION MANAGEMENT

2.1.12 Ensure that the --cadvisor-port argument is set to 0CIS Kubernetes 1.11 Benchmark v1.3.0 L1Unix

CONFIGURATION MANAGEMENT

2.1.13 Ensure that the --cadvisor-port argument is set to 0CIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

CONFIGURATION MANAGEMENT

2.2 Ensure that WMI probing is disabledCIS Palo Alto Firewall 7 Benchmark L2 v1.0.0Palo_Alto

CONFIGURATION MANAGEMENT

2.2.9 Disable Samba Support - Make sure that /etc/sfw/smb.conf does not exist. Note this check is only applicable for Solaris 10 >= 11/06CIS Solaris 10 L1 v5.2Unix

CONFIGURATION MANAGEMENT

2.4.6 Disable DVD or CD SharingCIS Apple OSX 10.11 El Capitan L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.4.8 Disable File Sharing - AppleFileServerCIS Apple macOS 10.13 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.4.8 Disable File Sharing - AppleFileServerCIS Apple OSX 10.11 El Capitan L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.25 Disable AutomountingCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

3.1.5 Ensure that the --insecure-port argument is set to 0CIS Kubernetes 1.7.0 Benchmark v1.1.0 L1Unix

CONFIGURATION MANAGEMENT

3.1.5 Ensure that the --insecure-port argument is set to 0CIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

CONFIGURATION MANAGEMENT

4.3 Enable Debug Level Daemon Logging/4.4 Capture syslog AUTH Messages - Check if svc:/system/system-log is onlineCIS Solaris 10 L1 v5.2Unix

AUDIT AND ACCOUNTABILITY

5.1 MultiStore - 'MultiStore protocol is disabled'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

5.1.2 Ensure rsh server is not enabled - 'login'CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

5.1.4 Ensure talk server is not enabledCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

5.1.4 Ensure talk server is not enabled - 'talk'CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

5.1.7 Ensure tftp-server is not enabledCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

5.3 Ensure daytime is not enabledCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

5.3 SnapVault - 'SnapVault protocol is disabled'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

5.4 Ensure echo is not enabledCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

5.7 Ensure privileged ports are not mapped within containersCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

6.3 Ensure print server is not enabledCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

6.16 Ensure rsync service is not enabledCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.10 Check for Presence of User .rhosts FilesCIS Solaris 10 L1 v5.2Unix

CONFIGURATION MANAGEMENT

9.10 Check for Presence of User .rhosts FilesCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.20 Check for Presence of User .forward FilesCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.21 Check for Presence of User .forward FilesCIS Solaris 11.1 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

Adtran : Secure Web Access - HTTP disabledTNS Adtran AOS Best Practice AuditAdtran

CONFIGURATION MANAGEMENT

Disable promiscuous mode on all network interfacesTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Disallow unplug detection on the storage network interfaceTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Enable only necessary and secure services, protocols, daemons - 'lwsmd'TNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Ensure LDAP Server is not enabledTenable Cisco Firepower Management Center OS Best Practices AuditUnix

CONFIGURATION MANAGEMENT

Ensure remote rsyslog messages are only accepted on designated log hosts - ModLoadTenable Cisco Firepower Management Center OS Best Practices AuditUnix

CONFIGURATION MANAGEMENT

XenServer - Enable only necessary and secure services, protocols, daemons - 'sshd'TNS Citrix XenServerUnix

CONFIGURATION MANAGEMENT