Item Search

Name	Audit Name	Plugin	Category
2.3.2.1 (L1) Ensure 'Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	AUDIT AND ACCOUNTABILITY
2.4 Configure TCP Wrappers - Allow localhost.	CIS Solaris 10 L1 v5.2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.4 Configure TCP Wrappers - enable tcp_wrappers for inetd	CIS Solaris 10 L1 v5.2	Unix
2.4 Configure TCP Wrappers - enable tcp_wrappers for rpc/bind. Note: This check is recommended by CIS, but not required.	CIS Solaris 10 L1 v5.2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.4 Configure TCP Wrappers - Make sure that /etc/hosts.allow does exist.	CIS Solaris 10 L1 v5.2	Unix	CONFIGURATION MANAGEMENT
4.3 Enable Debug Level Daemon Logging - Check if permissions for /var/log/connlog are OK.	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
4.4 Capture syslog AUTH Messages - Check if auth.info is set to var/log/authlog	CIS Solaris 10 L1 v5.2	Unix
4.9 Enable Kernel Level Auditing - Check audit condition is set to auditing	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
4.9 Enable Kernel Level Auditing - Check audit policies is set to arge,argv,cnt	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
4.9 Enable Kernel Level Auditing, Check if 'flags:lo,ad,cc' is set in /etc/security/audit_control.	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
6.1.1 Configure SSH - Check if Host * is set in /etc/ssh/ssh_config.	CIS Solaris 10 L1 v5.2	Unix	CONFIGURATION MANAGEMENT
6.9 Harden host operating system	CIS Sybase 15.0 L1 DB v1.1.0	SybaseDB
7.2 Set Password Expiration Parameters on Active Accounts - Check MINWEEKS is set to 1	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Password Expiration Parameters on Active Accounts - Check WARNWEEKS is set to 4	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - Check DICTIONLIST is set to /usr/share/lib/dict/words	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - Check MAXREPEATS is set to 0	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - Check MINDIFF is set to 3	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - Check PASSLENGTH is set to 8	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - MINNONALPHA is set to 1	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - WHITESPACE is set to YES	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.6 Set Default umask for Users - Check if 'umask' is set to 077 - Check /etc/.login.	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
7.7 Set Default umask for FTP Users - Check if 'defumask' is set to 077.	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
7.8 Set 'mesg n' as Default for All Users in /etc/.login	CIS Solaris 10 L1 v5.2	Unix	CONFIGURATION MANAGEMENT
7.9 Lock Inactive User Accounts - Check if definact is set to 35.	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
8.2 Create Warning Banner for CDE Users - Check if 'Dtlogin*greeting.persLabelString' is set appropriately.	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
8.2 Create Warning Banner for CDE Users - Check if file permissions for files under /etc/dt/config/*/Xresources are OK.	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v4.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 NG	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 NG	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 (L2) Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v5.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v5.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v2.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.18.7 Ensure 'Enable Windows Package Manager command line interfaces' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.11.1 Ensure 'Disable HTTP proxy features: Disable WPAD' is set to 'Enabled: Checked'	CIS Microsoft Windows Server 2025 v2.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT
18.11.1 Ensure 'Disable HTTP proxy features: Disable WPAD' is set to 'Enabled: Checked'	CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.11.1 Ensure 'Disable HTTP proxy features: Disable WPAD' is set to 'Enabled: Checked'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1	Windows	CONFIGURATION MANAGEMENT
ARDC-CN-000035 - Adobe Reader DC must prevent opening files other than PDF or FDF.	DISA STIG Adobe Acrobat Reader DC Continuous Track v2r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
ARDC-CN-000315 - Adobe Reader DC must disable the ability to add Trusted Files and Folders.	DISA STIG Adobe Acrobat Reader DC Continuous Track v2r1	Windows	CONFIGURATION MANAGEMENT
PowerPoint 97-2003 presentations shows templates and add-in files	MSCT M365 Apps for enterprise 2412 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
PowerPoint 97-2003 presentations, shows, templates and add-in files	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
VCWN-65-000068 - The vCenter Server for Windows must use LDAPS when adding an SSO identity source.	DISA VMware vSphere 6.5 vCenter Server for Windows STIG v2r3	VMware	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search