Item Search

Name	Audit Name	Plugin	Category
2.1.3 Show Bluetooth status in menu bar	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2019 v4.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.10.7 Configure 'Network access: Remotely accessible registry paths' is configured - Network access: Remotely accessible registry paths is configured	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.10.7 Configure 'Network access: Remotely accessible registry paths' is configured - Network access: Remotely accessible registry paths is configured	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.7 Ensure 'Network access: Remotely accessible registry paths'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.3.11.6 Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM' - Send NTLMv2 response only. Refuse LM & NTLM	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.4.1 Disable Remote Apple Events	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.4.4 Disable Printer Sharing	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.4.5 Disable Remote Login	CIS Apple macOS 10.12 L1 v1.2.0	Unix	ACCESS CONTROL
2.4.8 Disable File Sharing - SMB	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.9 Pair the remote control infrared receiver if enabled	CIS Apple macOS 10.12 L1 v1.2.0	Unix	ACCESS CONTROL
3.6 Ensure Firewall is configured to log	CIS Apple macOS 10.12 L1 v1.2.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable 'Show Wi-Fi status in menu bar' - Show Wi-Fi status in menu bar	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
4.5 Ensure FTP server is not running	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
5.1.3 Check System folder for world writable files	CIS Apple macOS 10.12 L1 v1.2.0	Unix	ACCESS CONTROL
5.2.2 Set a minimum password length	CIS Apple macOS 10.12 L1 v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.3 Reduce the sudo timeout period	CIS Apple macOS 10.12 L1 v1.2.0	Unix	ACCESS CONTROL
5.5 (L2) Host should deactivate virtual hardware management network interfaces	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT
5.6 (L1) Host should reject forged transmits on standard virtual switches and port groups	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.12 Require an administrator password to access system-wide preferences	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
5.16 Do not enter a password-related hint	CIS Apple macOS 10.12 L1 v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
6.1.1 (L1) Host CIM services, if enabled, must limit access	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	CONFIGURATION MANAGEMENT
6.2.2 (L1) Host must ensure all datastores have unique names	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	SYSTEM AND COMMUNICATIONS PROTECTION
7.3 (L1) Virtual machines must require encryption for Fault Tolerance	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.10 (L1) Virtual machines must remove unnecessary audio devices	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	CONFIGURATION MANAGEMENT
7.12 Siri on macOS	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
7.14 (L1) Virtual machines must remove unnecessary parallel port devices	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	CONFIGURATION MANAGEMENT
7.14 Apple File System (APFS)	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
7.16 Unified logging	CIS Apple macOS 10.12 L1 v1.2.0	Unix	AUDIT AND ACCOUNTABILITY
7.26 (L1) Virtual machines must limit the number of retained diagnostic logs	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	AUDIT AND ACCOUNTABILITY
7.27 (L1) Virtual machines must limit the size of diagnostic logs	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	AUDIT AND ACCOUNTABILITY
7.29 (L2) Virtual machines should have virtual machine hardware version 19 or newer	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	SYSTEM AND SERVICES ACQUISITION
8.14 (L1) VMware Tools must send VMware Tools logs to the system log service	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	AUDIT AND ACCOUNTABILITY
8.15 (L2) VMware Tools must deactivate Guest Operations unless required	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT
18.8.7.1.2 (BL) Ensure 'Prevent installation of devices that match any of these device IDs: Prevent installation of devices that match any of these device IDs' is set to 'PCI\CC_0C0A'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.8.7.1.2 (BL) Ensure 'Prevent installation of devices that match any of these device IDs: Prevent installation of devices that match any of these device IDs' is set to 'PCI\CC_0C0A'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.8.48.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 2 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.8.48.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Member Server Level 2 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.9.7.1.2 (BL) Ensure 'Prevent installation of devices that match any of these device IDs: Prevent installation of devices that match any of these device IDs' is set to 'PCI\CC_0C0A'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	MEDIA PROTECTION
18.9.7.1.2 (BL) Ensure 'Prevent installation of devices that match any of these device IDs: Prevent installation of devices that match any of these device IDs' is set to 'PCI\CC_0C0A'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.9.46.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Windows Server 2012 R2 MS L2 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.9.47.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.9.47.11.1 Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.44.6 (NG) Ensure 'Turn on Microsoft Defender Application Guard in Managed Mode' is set to 'Enabled: 1'	CIS Microsoft Windows 10 Enterprise v4.0.0 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.44.6 (NG) Ensure 'Turn on Microsoft Defender Application Guard in Managed Mode' is set to 'Enabled: 1'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.44.6 (NG) Ensure 'Turn on Microsoft Defender Application Guard in Managed Mode' is set to 'Enabled: 1'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.44.6 (NG) Ensure 'Turn on Microsoft Defender Application Guard in Managed Mode' is set to 'Enabled: 1'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.44.6 (NG) Ensure 'Turn on Microsoft Defender Application Guard in Managed Mode' is set to 'Enabled: 1'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search