Item Search

Name	Audit Name	Plugin	Category
1.1.2.6.1 Ensure separate partition exists for /var/log	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
1.4 SNMP Security - a) SNMP Community Security	Tenable ZTE ROSNG	ZTE_ROSNG	IDENTIFICATION AND AUTHENTICATION
1.4 SNMP Security - c) SNMP Security Protection Function	Tenable ZTE ROSNG	ZTE_ROSNG	SYSTEM AND COMMUNICATIONS PROTECTION
1.4.1.5 Ensure the SELinux mode is enforcing	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
3.1.4.5 NFS - no root access via NFS exports	CIS IBM AIX 7.1 L1 v2.1.0	Unix	CONFIGURATION MANAGEMENT
4.1.4 Ensure firewalld active zone target is configured	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.1.8 Configure firewall to drop all traffic	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.2.8 Ensure sshd DisableForwarding is enabled	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
5.2.9 Ensure sshd GSSAPIAuthentication is disabled	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION
6.2.1.1 Ensure auditd packages are installed	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY
6.2.2.3 Ensure system is disabled when audit logs are full	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.2.3.1 Ensure changes to system administration scope (sudoers) is collected	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.2.3.2 Ensure actions as another user are always logged	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
6.2.3.3 Ensure events that modify the sudo log file are collected	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.2.3.6 Ensure use of privileged commands are collected	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.2.3.9 Ensure discretionary access control permission modification events are collected	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.2.3.10 Ensure successful file system mounts are collected	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.2.3.12 Ensure login and logout events are collected	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.2.3.14 Ensure events that modify the system's Mandatory Access Controls are collected	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
6.2.3.17 Ensure successful and unsuccessful attempts to use the chacl command are collected	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY
6.2.3.18 Ensure successful and unsuccessful attempts to use the usermod command are collected	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.2.4.3 Ensure audit log files owner is configured	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
6.2.4.4 Ensure audit log files group owner is configured	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.2.4.8 Ensure audit tools mode is configured	CIS Amazon Linux 2 v4.0.0 L2 Server	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS Microsoft SQL Server 2022 v1.2.1 L1 Database Engine	MS_SQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS Microsoft SQL Server 2019 v1.5.2 L1 AWS RDS	MS_SQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS Microsoft SQL Server 2019 v1.5.2 L1 Database Engine	MS_SQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS Microsoft SQL Server 2022 v1.2.1 L1 AWS RDS	MS_SQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS Microsoft SQL Server 2025 v1.0.0 L1 AWS RDS MS_SQLDB	MS_SQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS Microsoft SQL Server 2025 v1.0.0 L1 Database Engine MS_SQLDB	MS_SQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2008 R2 DB Engine L1 v1.7.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
18.8.52.1.2 (L2) Ensure 'Enable Windows NTP Server' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	CONFIGURATION MANAGEMENT
18.8.52.1.2 (L2) Ensure 'Enable Windows NTP Server' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L2	Windows	CONFIGURATION MANAGEMENT
ARST-L2-000170 - The Arista MLS layer 2 switch must have all disabled switch ports assigned to an unused VLAN.	DISA STIG Arista MLS EOS 4.2x L2S v2r1	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
ARST-L2-000170 - The Arista MLS layer 2 switch must have all disabled switch ports assigned to an unused VLAN.	DISA Arista MLS EOS 4.X L2S STIG v2r3	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
ARST-L2-000230 - The Arista MLS layer 2 switch must not have any switch ports assigned to the native VLAN.	DISA Arista MLS EOS 4.X L2S STIG v2r3	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
Excel 2 worksheets	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	MSCT Office 365 ProPlus 1908 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	Microsoft 365 Apps for Enterprise 2306 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	MSCT Office 2016 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	MSCT M365 Apps for enterprise 2312 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	MSCT M365 Apps for enterprise 2412 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WBSP-AS-000212 - The WebSphere Application Server Java 2 security must not be bypassed.	DISA IBM WebSphere Traditional 9 Windows STIG v1r1	Windows	ACCESS CONTROL
WBSP-AS-000212 - The WebSphere Application Server Java 2 security must not be bypassed.	DISA IBM WebSphere Traditional 9 STIG v1r1	Unix	ACCESS CONTROL
WBSP-AS-000212 - The WebSphere Application Server Java 2 security must not be bypassed.	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware	Unix	ACCESS CONTROL

Detections

Analytics

Item Search