Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.3 Ensure that the --insecure-allow-any-token argument is not setCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

1.1.4 Ensure that the --insecure-bind-address argument is not setCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

CONFIGURATION MANAGEMENT

1.1.5 Ensure that the --insecure-port argument is set to 0CIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

CONFIGURATION MANAGEMENT

1.1.6 Ensure that the --secure-port argument is not set to 0CIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1.7 Ensure that the --profiling argument is set to falseCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

CONFIGURATION MANAGEMENT

1.1.12 Ensure that the admission control policy is set to SecurityContextDenyCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

ACCESS CONTROL

1.1.21 Ensure that the --kubelet-certificate-authority argument is set as appropriateCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

1.1.26 Ensure that the --etcd-certfile and --etcd-keyfile arguments are set as appropriate - etcd-certfileCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

1.1.28 Ensure that the --tls-cert-file and --tls-private-key-file arguments are set as appropriate - tls-cert-fileCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

1.1.29 Ensure that the --client-ca-file argument is set as appropriateCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

1.1.34 Ensure that the encryption provider is set to aescbcCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix
1.1.36 Ensure that the AdvancedAuditing argument is not set to false - AdvancedAuditingCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

AUDIT AND ACCOUNTABILITY

1.3.1 Ensure that the --terminated-pod-gc-threshold argument is set as appropriateCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

CONFIGURATION MANAGEMENT

1.3.2 Ensure that the --profiling argument is set to falseCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

CONFIGURATION MANAGEMENT

1.3.3 Ensure that the --use-service-account-credentials argument is set to trueCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

ACCESS CONTROL

1.3.4 Ensure that the --service-account-private-key-file argument is set as appropriateCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

1.4.4 Ensure that the controller manager pod specification file ownership is set to root:rootCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

CONFIGURATION MANAGEMENT

1.4.14 Ensure that the admin.conf file ownership is set to root:rootCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

CONFIGURATION MANAGEMENT

2.1.3 Show Bluetooth status in menu barCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.3.2 Secure screen saver corners - top right cornerCIS Apple macOS 10.12 L2 v1.2.0Unix

ACCESS CONTROL

2.4.1 Disable Remote Apple EventsCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.4.4 Disable Printer SharingCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.4.5 Disable Remote LoginCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

2.4.8 Disable File Sharing - SMBCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.6.6 Enable Location ServicesCIS Apple macOS 10.12 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.6.7 Monitor Location Services AccessCIS Apple macOS 10.12 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.7.3 iCloud DriveCIS Apple macOS 10.12 L2 v1.2.0Unix

ACCESS CONTROL

2.8.1 Time Machine Auto-BackupCIS Apple macOS 10.12 L2 v1.2.0Unix

CONTINGENCY PLANNING

2.9 Pair the remote control infrared receiver if enabledCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

2.12 Securely delete files as neededCIS Apple macOS 10.12 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

3.2 Configure Security Auditing Flags - 'audit successful/failed file deletion events'CIS Apple macOS 10.12 L2 v1.2.0Unix

AUDIT AND ACCOUNTABILITY

3.6 Ensure Firewall is configured to logCIS Apple macOS 10.12 L1 v1.2.0Unix

AUDIT AND ACCOUNTABILITY

4.1 Disable Bonjour advertising serviceCIS Apple macOS 10.12 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

4.2 Enable 'Show Wi-Fi status in menu bar' - Show Wi-Fi status in menu barCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

4.5 Ensure FTP server is not runningCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

5.1.3 Check System folder for world writable filesCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

5.2.2 Set a minimum password lengthCIS Apple macOS 10.12 L1 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

5.2.4 Complex passwords must contain a Numeric CharacterCIS Apple macOS 10.12 L2 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

5.3 Reduce the sudo timeout periodCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

5.5 Automatically lock the login keychain for inactivityCIS Apple macOS 10.12 L2 v1.2.0Unix

ACCESS CONTROL

5.6 Ensure login keychain is locked when the computer sleepsCIS Apple macOS 10.12 L2 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

5.11 Ensure system is set to hibernateCIS Apple macOS 10.12 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

5.12 Require an administrator password to access system-wide preferencesCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

5.16 Do not enter a password-related hintCIS Apple macOS 10.12 L1 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

5.19 Create specialized keychains for different purposesCIS Apple macOS 10.12 L2 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

7.12 Siri on macOSCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

7.14 Apple File System (APFS)CIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

7.15 System information backup to remote computersCIS Apple macOS 10.12 L2 v1.2.0Unix

CONTINGENCY PLANNING

7.16 Unified loggingCIS Apple macOS 10.12 L1 v1.2.0Unix

AUDIT AND ACCOUNTABILITY

18.9.47.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'CIS Microsoft Windows Server 2022 v4.0.0 L2 MSWindows

CONFIGURATION MANAGEMENT