Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.3.1 Ensure 'Minimum Password Complexity' is enabledCIS Palo Alto Firewall 11 v1.1.0 L1Palo_Alto

IDENTIFICATION AND AUTHENTICATION

1.3.1 Ensure 'Minimum Password Complexity' is enabledCIS Palo Alto Firewall 9 v1.1.0 L1Palo_Alto

IDENTIFICATION AND AUTHENTICATION

1.5 FTP/SFTP Access AuthorizationTenable ZTE ROSNGZTE_ROSNG

CONFIGURATION MANAGEMENT

1.8 SSH Strong Algorithm - d) Disable encryption aes192-cbcTenable ZTE ROSNGZTE_ROSNG

SYSTEM AND COMMUNICATIONS PROTECTION

2.1 Protection Policy for the CPS Control EngineTenable ZTE ROSNGZTE_ROSNG

SYSTEM AND COMMUNICATIONS PROTECTION

2.2.24 (L1) Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NGWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.27 Ensure 'Deny log on as a service' to include 'Enterprise Admins Group and Domain Admins Group' (STIG MS only)CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

ACCESS CONTROL

2.2.30 (L1) Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' (DC only)CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1Windows

ACCESS CONTROL

2.2.32 (L1) Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' (DC only)CIS Microsoft Windows Server 2019 v3.0.1 L1 DCWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.41 Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' (DC only)CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DCWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.42 Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' (DC only)CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain ControllerWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.42 Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' and (when the Web Server (IIS) Role with Web Services Role Service is installed) 'IIS_IUSRS' (MS only)CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MSWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

3.1 Ensure detailed logging is enabledCIS NGINX Benchmark v2.1.0 L1 LoadbalancerUnix

AUDIT AND ACCOUNTABILITY

3.2 Ensure 'debug' is turned offCIS IIS 7 L2 v1.8.0Windows
3.6 Ensure 'httpcookie' mode is configured for session stateCIS IIS 7 L2 v1.8.0Windows
3.10 Ensure global .NET trust level is configuredCIS IIS 7 L1 v1.8.0Windows
7.2 Ensure SSLv2 is disabled - Key does not existCIS IIS 7 L1 v1.8.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

18.10.75.2.2 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled' (STIG only)CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.75.2.2 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled' (STIG only)CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DCWindows

SYSTEM AND INFORMATION INTEGRITY

20.30 Ensure 'FTP servers must be configured to prevent anonymous logons'CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

CONFIGURATION MANAGEMENT

20.30 Ensure 'FTP servers must be configured to prevent anonymous logons'CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MSWindows

CONFIGURATION MANAGEMENT

20.30 Ensure 'FTP servers must be configured to prevent anonymous logons'CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DCWindows

CONFIGURATION MANAGEMENT

20.30 Ensure 'FTP servers must be configured to prevent anonymous logons' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DCWindows

CONFIGURATION MANAGEMENT

20.30 Ensure 'FTP servers must be configured to prevent anonymous logons' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MSWindows

CONFIGURATION MANAGEMENT

CIS Control 2 (2.1(a)) Maintain and Inventory of Authorized SoftwareCAS Implementation Group 1 Audit FileUnix

CONFIGURATION MANAGEMENT

CIS Control 3 (3.6(a)) Deploy Automated Software Patch Management ToolsCAS Implementation Group 1 Audit FileUnix

SYSTEM AND INFORMATION INTEGRITY

CIS_Apache_HTTP_Server_2.4_v2.2.0_L1.audit from CIS Apache HTTP Server 2.4 Benchmark v2.2.0CIS Apache HTTP Server 2.4 v2.2.0 L1Unix
CIS_Apple_macOS_11.0_Big_Sur_v4.0.0_L2.audit from CIS Apple macOS 11.0 Big Sur Benchmark v4.0.0CIS Apple macOS 11.0 Big Sur v4.0.0 L2Unix
CIS_Google_Kubernetes_Engine_GKE_v1.7.0_L1.audit from CIS Google Kubernetes Engine (GKE) Benchmark v1.7.0CIS Google Kubernetes Engine (GKE) v1.7.0 L1Unix
CIS_Microsoft_Intune_for_Windows_10_v3.0.1_BitLocker.audit from CIS Microsoft Intune for Windows 10 Benchmark v3.0.1CIS Microsoft Intune for Windows 10 v3.0.1 BitLocker (BL)Windows
CIS_Microsoft_Intune_for_Windows_10_v3.0.1_L1.audit from CIS Microsoft Intune for Windows 10 Benchmark v3.0.1CIS Microsoft Intune for Windows 10 v3.0.1 L1Windows
CIS_Microsoft_Windows_10_EMS_Gateway_v3.0.0_L1.audit from CIS Microsoft Windows 10 EMS Gateway Benchmark v3.0.0CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1Windows
CIS_Microsoft_Windows_10_Stand-alone_v3.0.0_L2_BL.audit from CIS Microsoft Windows 10 Stand-alone Benchmark v3.0.0CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BLWindows
CIS_Microsoft_Windows_10_Stand-alone_v3.0.0_L2_NG.audit from CIS Microsoft Windows 10 Stand-alone Benchmark v3.0.0CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 NGWindows
CIS_Microsoft_Windows_11_Stand-alone_v3.0.0_L1_BL.audit from CIS Microsoft Windows 11 Stand-alone Benchmark v3.0.0CIS Microsoft Windows 11 Stand-alone v3.0.0 L1 + BLWindows
CIS_Microsoft_Windows_Server_2022_STIG_v2.0.0_L2_Member_Server.audit from CIS Microsoft Windows Server 2022 STIG Benchmark v2.0.0CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Member ServerWindows
CIS_Microsoft_Windows_Server_2022_v3.0.0_NG_-_Member_Server.audit from CIS Microsoft Windows Server 2022 Benchmark v3.0.0CIS Microsoft Windows Server 2022 v3.0.0 NG - Member ServerWindows
CIS_MS_Windows_Server_2008_R2_MS_Level_1_v3.3.1.audit from CIS MS Windows Server 2008 R2 Benchmark v3.3.1CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1Windows
CIS_Red_Hat_EL8_Server_L1_v3.0.0.audit from CIS Red Hat Enterprise Linux 8 Benchmark v3.0.0CIS Red Hat EL8 Server L1 v3.0.0Unix
CIS_Red_Hat_EL8_Server_L2_v3.0.0.audit from CIS Red Hat Enterprise Linux 8 Benchmark v3.0.0CIS Red Hat EL8 Server L2 v3.0.0Unix
CIS_Red_Hat_Enterprise_Linux_7_v4.0.0_L2_Workstation.audit from CIS Red Hat Enterprise Linux 7 Benchmark v4.0.0CIS Red Hat Enterprise Linux 7 v4.0.0 L2 WorkstationUnix
CIS_Ubuntu_16.04_LTS_Server_v2.0.0_L1.audit from CIS Ubuntu 16.04 LTS Server Benchmark L1 v2.0.0CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0Unix
CIS_Ubuntu_16.04_LTS_Server_v2.0.0_L2.audit from CIS Ubuntu 16.04 LTS Server Benchmark L2 v2.0.0CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0Unix
CIS_Ubuntu_16.04_LTS_Workstation_v2.0.0_L1.audit from CIS Ubuntu 16.04 LTS Workstation Benchmark L1 v2.0.0CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0Unix
DISA_STIG_IIS_10.0_Web_Server_v2r10.audit from DISA Microsoft IIS 10.0 Server v2r10 STIGDISA IIS 10.0 Server v2r10Windows
DISA_STIG_IIS_10.0_Web_Server_v3r2.audit from DISA Microsoft IIS 10.0 Server v3r2 STIGDISA IIS 10.0 Server v3r2Windows
DISA_STIG_IIS_10.0_Web_Site_v2r10.audit from DISA Microsoft IIS 10.0 Site v2r10 STIGDISA IIS 10.0 Site v2r10Windows
EX13-CA-000040 - Exchange must have IIS map client certificates to an approved certificate server.DISA Microsoft Exchange 2013 Client Access Server STIG v2r2Windows

ACCESS CONTROL

VCWN-06-000053 - The connectivity between VSAN Health Check and public Hardware Compatibility List must be disabled or restricted.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

WN19-00-000330 - Windows Server 2019 must not have the Microsoft FTP service installed unless required by the organization.DISA Microsoft Windows Server 2019 STIG v3r3Windows

CONFIGURATION MANAGEMENT