Item Search

Name	Audit Name	Plugin	Category
1.1.1.1 Ensure mounting of cramfs filesystems is disabled - lsmod	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.1.2 Ensure mounting of hfs filesystems is disabled - lsmod	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.1.2 Ensure mounting of hfs filesystems is disabled - modprobe	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.1.3 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.1.4 Ensure mounting of squashfs filesystems is disabled - modprobe	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of udf filesystems is disabled - lsmod	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of udf filesystems is disabled - modprobe	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure /tmp is configured	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.4 Ensure nodev option set on /tmp partition	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.9 Disable Automounting	CIS Ubuntu Linux 20.04 LTS Server L1 v2.0.1	Unix	MEDIA PROTECTION
1.1.9 Disable Automounting	CIS Debian 10 Workstation L2 v2.0.0	Unix	MEDIA PROTECTION
1.1.9 Ensure autofs is not installed or the autofs service is disabled	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Workstation	Unix	MEDIA PROTECTION
1.1.10 Ensure nosuid option set on /var/tmp partition	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.11 Ensure noexec option set on /var/tmp partition	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.16 Ensure nodev option set on /dev/shm partition	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.1.17 Ensure nosuid option set on /dev/shm partition	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.2.2 Ensure GPG keys are configured	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	SYSTEM AND INFORMATION INTEGRITY
1.3.2 Ensure filesystem integrity is regularly checked	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
1.4.1 Ensure permissions on bootloader config are configured	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.7.1.3 Ensure remote login warning banner is configured properly - msrv	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.7.1.6 Ensure permissions on /etc/issue.net are configured	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
1.8.5 Ensure automatic mounting of removable media is disabled	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	MEDIA PROTECTION
1.8.5 Ensure automatic mounting of removable media is disabled	CIS CentOS Linux 8 Workstation L2 v2.0.0	Unix	MEDIA PROTECTION
1.8.5 Ensure automatic mounting of removable media is disabled	CIS Fedora 28 Family Linux Workstation L2 v2.0.0	Unix	MEDIA PROTECTION
1.13.3.1.1 Ensure 'Allow users to demote attachments to Level 2' is set to Disabled	CIS Microsoft Office Outlook 2013 v1.1.0 Level 1	Windows	CONFIGURATION MANAGEMENT
2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL
2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
3.10.9.1.4 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Intune for Windows 11 v3.0.1 BitLocker (BL)	Windows	MEDIA PROTECTION
3.10.9.1.5 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)	CIS Microsoft Intune for Windows 11 v3.0.1 BitLocker (BL)	Windows	SYSTEM AND INFORMATION INTEGRITY
18.3.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.3.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS	Windows	ACCESS CONTROL
18.8.7.1.4 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.7.1.4 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v3.0.0 L2 + BitLocker	Windows	MEDIA PROTECTION
18.9.7.1.4 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	MEDIA PROTECTION
18.9.7.1.4 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BL	Windows	MEDIA PROTECTION
18.9.7.1.6 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)	CIS Microsoft Windows 10 Enterprise v3.0.0 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.6 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)	CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.8 (L1) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	MEDIA PROTECTION
74.13 (L1) Ensure 'Deny Access From Network' to include 'Guests, Local account'	CIS Microsoft Intune for Windows 11 v3.0.1 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
check if separate /home partition	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix
ESXI-67-000033 - The password hashes stored on the ESXi host must have been generated using a FIPS 140-2 approved cryptographic hashing algorithm.	DISA STIG VMware vSphere 6.7 ESXi OS v1r3	Unix	CONFIGURATION MANAGEMENT
GEN000590 - The system must use a FIPS 140-2 approved cryptographic hashing algorithm for generating account password hashes - CRYPT_ALGORITHMS_ALLOW	DISA STIG Solaris 10 SPARC v2r4	Unix	IDENTIFICATION AND AUTHENTICATION
GEN000595 - The password hashes stored on the system must have been generated using a FIPS 140-2 approved cryptographic hashing algorithm - '/etc/passwd'	DISA STIG for Oracle Linux 5 v2r1	Unix	IDENTIFICATION AND AUTHENTICATION
Login: SSH is enabled	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	CONFIGURATION MANAGEMENT
rsyslog new format	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix
rsyslog old format	CIS Amazon Linux 2 STIG v1.0.0 L1	Unix

Detections

Analytics

Item Search