Item Search

Name	Audit Name	Plugin	Category
1.1.15 Ensure separate partition exists for /var/log	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.1.15 Ensure separate partition exists for /var/log	CIS SUSE Linux Enterprise 15 Server L2 v1.1.1	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.1.15 Ensure separate partition exists for /var/log	CIS SUSE Linux Enterprise 12 v3.1.0 L2 Workstation	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.1.15 Ensure separate partition exists for /var/log	CIS SUSE Linux Enterprise 15 Workstation L2 v1.1.1	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.1.15 Ensure separate partition exists for /var/log	CIS SUSE Linux Enterprise 12 v3.1.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.4.5.2 Ensure 'aaa accounting for SSH' is configured correctly	CIS Cisco ASA 9.x Firewall L1 v1.1.0	Cisco	ACCESS CONTROL, CONFIGURATION MANAGEMENT
2.1.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled	CIS Apple macOS 13.0 Ventura v2.1.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.1.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled	CIS Apple macOS 14.0 Sonoma v1.1.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.1.1.6 Audit Find My Mac	CIS Apple macOS 14.0 Sonoma v1.1.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3 Ensure that User-ID is only enabled for internal trusted interfaces	CIS Palo Alto Firewall 9 v1.1.0 L1	Palo_Alto	ACCESS CONTROL, CONFIGURATION MANAGEMENT
2.6.1.2 Audit iCloud Drive	CIS Apple macOS 11.0 Big Sur v4.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.6.1.4 Audit Find My Mac	CIS Apple macOS 12.0 Monterey v3.1.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.11.2 Audit Touch ID	CIS Apple macOS 13.0 Ventura v2.1.0 L1	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION
2.11.2 Audit Touch ID	CIS Apple macOS 14.0 Sonoma v1.1.0 L1	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION
2.12 Audit Automatic Actions for Optical Media	CIS Apple macOS 10.14 v2.0.0 L1	Unix	CONFIGURATION MANAGEMENT, MEDIA PROTECTION, SYSTEM AND SERVICES ACQUISITION
2.12 Audit Touch ID	CIS Apple macOS 11.0 Big Sur v4.0.0 L1	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION
2.12 Audit Touch ID	CIS Apple macOS 12.0 Monterey v3.1.0 L1	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION
2.12 Audit Touch ID and Wallet & Apple Pay Settings	CIS Apple macOS 10.15 Catalina v3.0.0 L1	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION
2.15 Audit Touch ID and Wallet & Apple Pay Settings	CIS Apple macOS 10.14 v2.0.0 L1	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION
3.2.2 Ensure packet redirect sending is disabled - files 'net.ipv4.conf.default.send_redirects = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - 'net.ipv4.conf.all.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - 'net.ipv4.conf.all.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - 'net.ipv4.conf.default.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - 'net.ipv4.conf.default.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - 'net.ipv6.conf.all.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - 'net.ipv6.conf.all.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - 'net.ipv6.conf.default.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - 'net.ipv6.conf.default.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - files 'net.ipv4.conf.all.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - files 'net.ipv4.conf.all.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - files 'net.ipv4.conf.default.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - files 'net.ipv4.conf.default.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - files 'net.ipv6.conf.all.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - files 'net.ipv6.conf.all.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - files 'net.ipv6.conf.default.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1 Ensure source routed packets are not accepted - files 'net.ipv6.conf.default.accept_source_route = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.2 Ensure ICMP redirects are not accepted - 'net.ipv4.conf.all.accept_redirects = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.2 Ensure ICMP redirects are not accepted - 'net.ipv4.conf.default.accept_redirects = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.2 Ensure ICMP redirects are not accepted - 'net.ipv6.conf.all.accept_redirects = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.2 Ensure ICMP redirects are not accepted - 'net.ipv6.conf.default.accept_redirects = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.2 Ensure ICMP redirects are not accepted - files 'net.ipv6.conf.default.accept_redirects = 0'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.8 Ensure Reverse Path Filtering is enabled - 'net.ipv4.conf.all.rp_filter = 1'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.8 Ensure Reverse Path Filtering is enabled - files 'net.ipv4.conf.all.rp_filter = 1'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.8 Ensure Reverse Path Filtering is enabled - files 'net.ipv4.conf.default.rp_filter = 1'	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.5.1.2 Ensure minimum days between password changes is configured - /etc/shadow	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.11 (L2) Ensure contents of exposed configuration files have not been modified	CIS VMware ESXi 7.0 v1.4.0 L2	VMware	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.11 Ensure contents of exposed configuration files have not been modified	CIS VMware ESXi 6.7 v1.3.0 Level 2	VMware	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
6.2.11 Ensure all users' home directories exist	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
8.6.1 (L2) Ensure nonpersistent disks are limited	CIS VMware ESXi 7.0 v1.4.0 L2	VMware	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND INFORMATION INTEGRITY
8.6.1 Ensure nonpersistent disks are limited	CIS VMware ESXi 6.7 v1.3.0 Level 2	VMware	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search