Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure the appropriate MongoDB software version/patches are installed	CIS MongoDB 5 L1 DB v1.2.0	MongoDB	CONFIGURATION MANAGEMENT
1.1 Ensure the appropriate MongoDB software version/patches are installed	CIS MongoDB 6 v1.2.0 L1 MongoDB	Unix	CONFIGURATION MANAGEMENT
1.1 Ensure the appropriate MongoDB software version/patches are installed	CIS MongoDB 6 v1.2.0 L1 MongoDB	Windows	CONFIGURATION MANAGEMENT
1.11 (L2) Host hardware must secure unused external hardware ports	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	CIS MongoDB 6 v1.2.0 L1 MongoDB	Windows	IDENTIFICATION AND AUTHENTICATION
2.2.4.7.2.4.2 Ensure 'Disable all trusted locations' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.3.5.3 (L1) Ensure 'Domain controller: LDAP server channel binding token requirements' is set to 'Always' (DC Only)	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.36.1.1 Ensure 'Conversion Service Options' is set to 'Enabled: Do not allow to use Microsoft Conversion Service'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.3.38.1.1 Ensure 'Improve Proofing Tools' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.5.4.1 Ensure 'Do not allow Home Page URL to be set in folder Properties' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.5.9.2.1 Ensure 'PST Null Data on Delete' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	MEDIA PROTECTION
2.5.10.8.3.1 Ensure 'Read e-mail as plain text' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.5.14.2.4 Ensure 'Message Formats' is set to 'Enabled: S/MIME'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.5.14.2.6 Ensure 'S/MIME interoperability with external clients:' is set to 'Enabled: Handle internally'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.5.14.3.1.3 Ensure 'Do not prompt about Level 1 attachments when closing an item' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.5.14.3.1.5 Ensure 'Remove file extensions blocked as Level 1' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.5.14.3.3.3 Ensure 'Configure Outlook object model prompt When accessing the Formula property of a UserProperty object' is set to 'Enabled: Automatically Deny'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.5.14.4.1 Ensure 'Allow hyperlinks in suspected phishing e-mail messages' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.5.14.5 Ensure 'Allow Active X One Off Forms' is set to 'Enabled: Load only Outlook Controls'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.2.2 Ensure 'Do not open files in unsafe locations in Protected View' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.2.5 Ensure 'Turn off Protected View for attachments opened from Outlook' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.3 Ensure 'Make hidden markup visible' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.8.4.1.2 Ensure 'Disable Trust Bar Notification for unsigned application add-ins and block them' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.11.8.7.2.3.2 Ensure 'Disable all trusted locations' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
3.1 Ensure least privilege for database accounts	CIS MongoDB 5 L1 DB v1.2.0	MongoDB	ACCESS CONTROL
3.1 Ensure least privilege for database accounts	CIS MongoDB 6 v1.2.0 L1 MongoDB	MongoDB	ACCESS CONTROL
3.4 Ensure that each role for each MongoDB database is needed and grants only the necessary privileges	CIS MongoDB 5 L1 DB v1.2.0	MongoDB	ACCESS CONTROL
3.5 Review Superuser/Admin Roles - dbOwner	CIS MongoDB 5 L2 DB v1.2.0	MongoDB	ACCESS CONTROL
3.5 Review Superuser/Admin Roles - readWriteAnyDatabase	CIS MongoDB 5 L2 DB v1.2.0	MongoDB	ACCESS CONTROL
3.21 (L2) Host should enable strict lockdown mode	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	ACCESS CONTROL
4.3 Ensure Encryption of Data in Transit TLS or SSL (Transport Encryption)	CIS MongoDB 6 v1.2.0 L1 MongoDB	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.5 Ensure Encryption of Data at Rest	CIS MongoDB 6 v1.2.0 L2 MongoDB	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
6.1 Ensure that MongoDB uses a non-default port	CIS MongoDB 6 v1.2.0 L1 MongoDB	Windows	CONFIGURATION MANAGEMENT
6.1 Ensure that MongoDB uses a non-default port	CIS MongoDB 7 v1.2.0 L1 Unix	Unix	CONFIGURATION MANAGEMENT
7.2 Ensure appropriate database file permissions are set.	CIS MongoDB 7 v1.2.0 L1 Unix	Unix	ACCESS CONTROL, MEDIA PROTECTION
8.4 (L2) VMware Tools on deployed virtual machines must prevent being recustomized	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT, MAINTENANCE
8.8 (L2) VMware Tools must deactivate ContainerInfo unless required	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT
8.9 (L2) VMware Tools must deactivate Appinfo information gathering unless required	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT
8.11 (L2) VMware Tools must deactivate Service Discovery unless required	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT
18.9.18.1 Ensure 'Turn off desktop gadgets' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.10.9.3.11 (L1) Ensure 'Configure use of passwords for removable data drives' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
18.10.10.1.3 Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Allow data recovery agent' is set to 'Enabled: True'	CIS Microsoft Windows 11 Enterprise v5.0.1 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.1.3 Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Allow data recovery agent' is set to 'Enabled: True'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.1.8 Ensure 'Configure use of passwords for fixed data drives' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	IDENTIFICATION AND AUTHENTICATION
18.10.10.1.11 (BL) Ensure 'Configure use of passwords for fixed data drives' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	IDENTIFICATION AND AUTHENTICATION
18.10.10.3.3 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Allow data recovery agent' is set to 'Enabled: True'	CIS Microsoft Windows 11 Stand-alone v5.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.3 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Allow data recovery agent' is set to 'Enabled: True'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	MEDIA PROTECTION
18.10.36.1 Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.10.36.1 Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.10.37.1 (L2) Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search