Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure the appropriate MongoDB software version/patches are installed	CIS MongoDB 5 L1 DB v1.2.0	MongoDB	CONFIGURATION MANAGEMENT
1.1 Ensure the appropriate MongoDB software version/patches are installed	CIS MongoDB 6 v1.2.0 L1 MongoDB	Unix	CONFIGURATION MANAGEMENT
1.1 Ensure the appropriate MongoDB software version/patches are installed	CIS MongoDB 6 v1.2.0 L1 MongoDB	Windows	CONFIGURATION MANAGEMENT
1.11 (L2) Host hardware must secure unused external hardware ports	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	CIS MongoDB 6 v1.2.0 L1 MongoDB	Windows	IDENTIFICATION AND AUTHENTICATION
2.2.4.7.2.4.2 Ensure 'Disable all trusted locations' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.3.18.2 Ensure 'Always expand groups in Office when restricting permission for documents' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.3.25.1.3 Ensure 'Disable Opt-in Wizard on first run' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.3.25.1.4 Ensure 'Enable Customer Experience Improvement Program' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.3.27.3.4 Ensure 'Allow mix of policy and user locations' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.3.27.19 Ensure 'Suppress hyperlink warnings' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.3.36.1.1 Ensure 'Conversion Service Options' is set to 'Enabled: Do not allow to use Microsoft Conversion Service'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.3.37.3.1 Ensure 'Open Office documents as read/write while browsing' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.38.1.1 Ensure 'Improve Proofing Tools' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.5.1.2.1 Ensure 'Authentication with Exchange server' is set to 'Enabled: Kerberos Password Authentication'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND SERVICES ACQUISITION
2.5.1.6.2 Ensure 'Synchronize Outlook RSS Feeds with Common Feed List' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.5.4.1 Ensure 'Do not allow Home Page URL to be set in folder Properties' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.5.9.2.1 Ensure 'PST Null Data on Delete' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	MEDIA PROTECTION
2.5.10.6.1.2 Ensure 'Do not allow folders in non-default stores to be set as folder home pages' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.5.10.6.1.3 Ensure 'Do not allow Outlook object model scripts to run for public folders' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.5.10.6.1.5 Ensure 'Use Unicode format when dragging e-mail message to file system' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.5.10.8.1.2.1 Ensure 'Access to published calendars' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL, MEDIA PROTECTION
2.5.10.8.3.1 Ensure 'Read e-mail as plain text' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.5.10.8.4.4 Ensure 'Trust e-mail from contacts' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.5.14.2.1.5 Ensure 'Retrieving CRLs (Certificate Revocation Lists)' is set to 'Enabled: When online always retrieve the CRL'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
2.5.14.2.4 Ensure 'Message Formats' is set to 'Enabled: S/MIME'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.5.14.2.6 Ensure 'S/MIME interoperability with external clients:' is set to 'Enabled: Handle internally'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.5.14.3.1.3 Ensure 'Do not prompt about Level 1 attachments when closing an item' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.5.14.3.1.5 Ensure 'Remove file extensions blocked as Level 1' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.5.14.3.3.3 Ensure 'Configure Outlook object model prompt When accessing the Formula property of a UserProperty object' is set to 'Enabled: Automatically Deny'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.5.14.4.1 Ensure 'Allow hyperlinks in suspected phishing e-mail messages' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.5.14.5 Ensure 'Allow Active X One Off Forms' is set to 'Enabled: Load only Outlook Controls'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.2.2 Ensure 'Do not open files in unsafe locations in Protected View' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.2.5 Ensure 'Turn off Protected View for attachments opened from Outlook' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.3 Ensure 'Make hidden markup visible' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.8.4.1.2 Ensure 'Disable Trust Bar Notification for unsigned application add-ins and block them' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.11.8.7.2.3.2 Ensure 'Disable all trusted locations' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
3.1 Ensure least privilege for database accounts	CIS MongoDB 5 L1 DB v1.2.0	MongoDB	ACCESS CONTROL
3.1 Ensure least privilege for database accounts	CIS MongoDB 6 v1.2.0 L1 MongoDB	MongoDB	ACCESS CONTROL
3.4 Ensure that each role for each MongoDB database is needed and grants only the necessary privileges	CIS MongoDB 5 L1 DB v1.2.0	MongoDB	ACCESS CONTROL
3.5 Review Superuser/Admin Roles - dbOwner	CIS MongoDB 5 L2 DB v1.2.0	MongoDB	ACCESS CONTROL
3.5 Review Superuser/Admin Roles - readWriteAnyDatabase	CIS MongoDB 5 L2 DB v1.2.0	MongoDB	ACCESS CONTROL
3.21 (L2) Host should enable strict lockdown mode	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	ACCESS CONTROL
4.3 Ensure Encryption of Data in Transit TLS or SSL (Transport Encryption)	CIS MongoDB 6 v1.2.0 L1 MongoDB	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.5 Ensure Encryption of Data at Rest	CIS MongoDB 6 v1.2.0 L2 MongoDB	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
6.1 Ensure that MongoDB uses a non-default port	CIS MongoDB 6 v1.2.0 L1 MongoDB	Windows	CONFIGURATION MANAGEMENT
6.1 Ensure that MongoDB uses a non-default port	CIS MongoDB 7 v1.2.0 L1 Unix	Unix	CONFIGURATION MANAGEMENT
7.2 Ensure appropriate database file permissions are set.	CIS MongoDB 7 v1.2.0 L1 Unix	Unix	ACCESS CONTROL, MEDIA PROTECTION
8.4 (L2) VMware Tools on deployed virtual machines must prevent being recustomized	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT, MAINTENANCE
8.11 (L2) VMware Tools must deactivate Service Discovery unless required	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search