Item Search

Name	Audit Name	Plugin	Category
1.1.1.4 Ensure mounting of hfsplus filesystems is disabled - lsmod	CIS Debian 9 Workstation L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure /tmp is configured - mount	CIS Debian 9 Server L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
1.1.3 Ensure nodev option set on /tmp partition	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.3.5.1 Set 'Domain member: Require strong (Windows 2000 or later) session key' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.1.4 Ensure 'Password Recovery' is disabled	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
1.1.6 Ensure separate partition exists for /var	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
1.1.13 Ensure separate partition exists for /home	CIS Debian 9 Server L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
1.1.13 Ensure separate partition exists for /home	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
1.1.18 Ensure sticky bit is set on all world-writable directories	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.2.1 Ensure 'Domain Name' is set	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
1.4.2 Ensure bootloader password is set - set superusers	CIS Debian 9 Server L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
1.7.2 Ensure GDM login banner is configured - banner message enabled	CIS Debian 9 Server L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
2.3.15.1 (L1) Ensure 'System objects: Require case insensitivity for non-Windows subsystems' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	CONFIGURATION MANAGEMENT
3.6.8.2 (L2) Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled'	CIS Microsoft Intune for Windows 11 v3.0.1 L2	Windows	CONFIGURATION MANAGEMENT
4.1.4 Ensure events that modify date and time information are collected - adjtimex (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.4 Ensure events that modify date and time information are collected - auditctl /etc/localtime	CIS Debian 9 Server L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.4 Ensure events that modify date and time information are collected - auditctl /etc/localtime	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.4 Ensure events that modify date and time information are collected - auditctl adjtimex	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.4 Ensure events that modify date and time information are collected - auditctl clock_settime x64	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - /etc/hosts	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - /etc/sysconfig/network	CIS Debian 9 Server L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - auditctl '/etc/hosts'	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - auditctl 'issue.net'	CIS Debian 9 Server L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - auditctl 'sethostname setdomainname'	CIS Debian 9 Server L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - auditctl sethostname (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - auditctl sethostname (64-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - issue.net	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - sethostname setdomainname x64	CIS Debian 9 Server L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's Mandatory Access Controls are collected - /etc/apparmor.d	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's Mandatory Access Controls are collected - /usr/share/selinux	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's Mandatory Access Controls are collected - auditctl /etc/apparmor.d	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's Mandatory Access Controls are collected - auditctl /usr/share/selinux	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl b64 chown fchown	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - b32 chmod fchmod	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - b64 chown fchown	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - auditctl chown/fchown/fchownat (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - auditctl chown/fchown/fchownat (64-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - auditctl setxattr x64	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - chmod fchmod fchmodat x64	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - chmod/fchmod/fchmodat (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - chown fchown fchownat lchown	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - chown fchown fchownat lchown x64	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - setxattr/lsetxattr/fsetxattr (64-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.17 Ensure kernel module loading and unloading is collected - auditctl /sbin/modprobe	CIS Debian 9 Workstation L2 v1.0.1	Unix	CONFIGURATION MANAGEMENT
4.2.2.3 Ensure syslog-ng default file permissions configured	CIS Debian 9 Workstation L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
5.4.3 Ensure default group for the root account is GID 0	CIS Debian 9 Workstation L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
6.1.10 Ensure no world writable files exist	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
18.6.9.1 (L2) Ensure 'Turn on Mapper I/O (LLTDIO) driver' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L2 + BL	Windows	CONFIGURATION MANAGEMENT
18.6.9.2 (L2) Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.6.9.2 (L2) Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L2 + BL	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search