Item Search

Name	Audit Name	Plugin	Category
1.1.8 Ensure nodev option set on /var/tmp partition	CIS Amazon Linux v2.1.0 L1	Unix	ACCESS CONTROL
1.4.4 Ensure core dump storage is disabled	CIS Amazon Linux 2 v3.0.0 L1	Unix	ACCESS CONTROL
1.5.1 Ensure core dump storage is disabled	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
1.5.2 Ensure core dump backtraces are disabled	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	ACCESS CONTROL
1.5.3 Ensure core dumps are restricted	CIS Debian Linux 11 v2.0.0 L1 Workstation	Unix	ACCESS CONTROL
1.5.3 Ensure core dumps are restricted	CIS Debian Linux 12 v1.1.0 L1 Server	Unix	ACCESS CONTROL
1.7.1 - Miscellaneous Enhancements - crontab access - 'cron.allow includes adm'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	ACCESS CONTROL
2.3.4.2 (L1) Ensure 'Devices: Prevent users from installing printer drivers' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.10.2 (L1) Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts' is set to 'Enabled' (MS only)	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.5 (L1) Ensure 'Network access: Let Everyone permissions apply to anonymous users' is set to 'Disabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.10 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.10 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow' (MS only)	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.11.2 (L1) Ensure 'Network security: Allow LocalSystem NULL session fallback' is set to 'Disabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.11.2 (L1) Ensure 'Network security: Allow LocalSystem NULL session fallback' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.11.2 Ensure 'Network security: Allow LocalSystem NULL session fallback' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.17.2 (L1) Ensure 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' is set to 'Prompt for consent on the secure desktop'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.17.2 (L1) Ensure 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' is set to 'Prompt for consent on the secure desktop' or higher	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.17.2 (L1) Ensure 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' is set to 'Prompt for consent on the secure desktop' or higher	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.17.3 (L1) Ensure 'User Account Control: Behavior of the elevation prompt for standard users' is set to 'Automatically deny elevation requests'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.17.3 Ensure 'User Account Control: Behavior of the elevation prompt for standard users' is set to 'Automatically deny elevation requests'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.17.4 (L1) Ensure 'User Account Control: Detect application installations and prompt for elevation' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.17.4 (L1) Ensure 'User Account Control: Detect application installations and prompt for elevation' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.17.7 (L1) Ensure 'User Account Control: Switch to the secure desktop when prompting for elevation' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.8 Ensure an IAM policy that allows admin privileges for all services used is created - Policy Exist	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	ACCESS CONTROL
2.12.13 - Miscellaneous Config - authorized users in at.allow - 'at.allow contains no other entries besides sys, adm and %USERNAME%'	CIS AIX 5.3/6.1 L1 v1.1.0	Unix	ACCESS CONTROL
2.12.14 - Miscellaneous Config - authorized users in cron.allow - 'cron.allow contains no other entries besides sys and adm'	CIS AIX 5.3/6.1 L1 v1.1.0	Unix	ACCESS CONTROL
2.12.14 - Miscellaneous Config - authorized users in cron.allow - 'cron.allow contains sys'	CIS AIX 5.3/6.1 L1 v1.1.0	Unix	ACCESS CONTROL
3.7 Set 'Prevent access to Delete Browsing History' to 'Enabled'	CIS IE 10 v1.1.0	Windows	ACCESS CONTROL
4.3 Review Users, Groups, and Roles - Groups list	CIS IBM DB2 v10 v1.1.0 Windows OS Level 1	Windows	ACCESS CONTROL
5.4.2.1 Ensure root is the only UID 0 account	CIS Debian Linux 11 v2.0.0 L1 Workstation	Unix	ACCESS CONTROL
6.2.9 Ensure root is the only UID 0 account	CIS Amazon Linux 2023 Server L1 v1.0.0	Unix	ACCESS CONTROL
9.5 Set 'Prevent 'Fix settings' functionality' to 'Disabled'	CIS IE 9 v1.0.0	Windows	ACCESS CONTROL
9.9 Set 'Prevent Fix settings functionality' to 'Disabled'	CIS IE 10 v1.1.0	Windows	ACCESS CONTROL
12.10 Find SUID System Executables	CIS Debian Linux 7 L1 v1.0.0	Unix	ACCESS CONTROL
18.1.2.2 Ensure 'Allow users to enable online speech recognition services' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
18.6.11.3 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
18.6.11.3 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
18.8.28.2 (L1) Ensure 'Do not display network selection UI' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
18.9.16.2 Ensure 'Enumerate administrator accounts on elevation' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
18.9.27.3 (L1) Ensure 'Enumerate local users on domain-joined computers' is set to 'Disabled' (MS only)	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
18.9.27.4 (L1) Ensure 'Turn off app notifications on the lock screen' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
18.9.27.4 (L1) Ensure 'Turn off app notifications on the lock screen' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
18.9.27.4 (L1) Ensure 'Turn off app notifications on the lock screen' is set to 'Enabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
18.9.27.6 (L1) Ensure 'Turn on convenience PIN sign-in' is set to 'Disabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
18.9.100.2 Ensure 'Turn on PowerShell Transcription' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.14.2 (L1) Ensure 'Enumerate administrator accounts on elevation' is set to 'Disabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
18.10.59.3 (L2) Ensure 'Set what information is shared in Search' is set to 'Enabled: Anonymous info'	CIS Windows Server 2012 R2 DC L2 v3.0.0	Windows	ACCESS CONTROL

Detections

Analytics

Item Search