Item Search

Name	Audit Name	Plugin	Category
1.4.1 Ensure 'Idle timeout' is less than or equal to 10 minutes for device management	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	ACCESS CONTROL
1.4.2 Ensure 'Failed Attempts' and 'Lockout Time' for Authentication Profile are properly configured	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	ACCESS CONTROL
2.3.5.3 (L1) Ensure 'Domain controller: LDAP server channel binding token requirements' is set to 'Always' (DC Only)	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Ensure that the User-ID service account does not have interactive logon rights	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	ACCESS CONTROL
3.3 Ensure 'Passive Link State' and 'Preemptive' are configured appropriately	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
4.7 Restrict access to Tomcat web application directory	CIS Apache Tomcat 9 L1 v1.2.0 Middleware	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.2.6 Complex passwords must contain uppercase and lowercase letters	CIS Apple OSX 10.10 Yosemite L1 v1.2.0	Unix
5.2.8 Password History	CIS Apple OSX 10.10 Yosemite L1 v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.3 Ensure forwarding of decrypted content to WildFire is enabled	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
5.7 Do not enable the 'root' account	CIS Apple OSX 10.10 Yosemite L1 v1.2.0	Unix	ACCESS CONTROL
6.1.2 Disable 'Show password hints'	CIS Apple OSX 10.10 Yosemite L1 v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
6.1.4 Disable 'Allow guests to connect to shared folders' - SMB Sharing	CIS Apple OSX 10.10 Yosemite L1 v1.2.0	Unix	ACCESS CONTROL
6.5 Ensure a secure anti-spyware profile is applied to all security policies permitting traffic to the Internet	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
6.6 Ensure a Vulnerability Protection Profile is set to block attacks against critical and high vulnerabilities, and set to default on medium, low, and informational vulnerabilities	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	RISK ASSESSMENT
6.7 Ensure a secure Vulnerability Protection Profile is applied to all security rules allowing traffic	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	RISK ASSESSMENT
6.18 Ensure all zones have Zone Protection Profiles that drop specially crafted packets	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.22 Ensure that 'Inline Cloud Analysis' on Vulnerability Protection profiles are enabled if 'Advanced Threat Prevention' is available	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	RISK ASSESSMENT
6.23 Ensure that 'Cloud Inline Categorization' on URL Filtering profiles are enabled if 'Advanced Threat Prevention' is available	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure application security policies exist when allowing traffic from an untrusted zone to a more trusted zone	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	ACCESS CONTROL, MEDIA PROTECTION
7.2 Specify file handler in logging.properties files - check if java.util.logging.ConsoleHandler logging is enabled in web application	CIS Apache Tomcat 9 L1 v1.2.0 Middleware	Unix	AUDIT AND ACCOUNTABILITY
7.2 Specify file handler in logging.properties files - check if org.apache.juli.FileHandler logging is enabled in default	CIS Apache Tomcat 9 L1 v1.2.0 Middleware	Unix	AUDIT AND ACCOUNTABILITY
7.3 Ensure 'Security Policy' denying any/all traffic to/from IP addresses on Trusted Threat Intelligence Sources Exists	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	ACCESS CONTROL, MEDIA PROTECTION
7.4 Ensure that logging is enabled on built-in default security policies	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
8.2 Ensure 'SSL Inbound Inspection' is required for all untrusted traffic destined for servers using SSL or TLS	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
10.18 Use the logEffectiveWebXml and metadata-complete settings for deploying applications in production - context.xml	CIS Apache Tomcat 9 L1 v1.2.0 Middleware	Unix	AUDIT AND ACCOUNTABILITY
18.6.11.4 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.6.11.4 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL
CIS Control 7 (7.7) Use of DNS Filtering Services	CAS Implementation Group 1 Audit File	Unix	ACCESS CONTROL
CIS Docker Community Edition v1.1.0 L1 Linux Host OS	CIS Docker Community Edition v1.1.0 L1 Linux Host OS	Unix
CIS_Apache_Tomcat_11_v1.0.0_L1.audit from CIS Apache Tomcat 11 Benchmark v1.0.0	CIS Apache Tomcat 11 v1.0.0 L1	Unix
CIS_Apple_macOS_10.13_v1.1.0_Level_1.audit from CIS Apple macOS 10.13 Benchmark v1.1.0	CIS Apple macOS 10.13 L1 v1.1.0	Unix
CIS_CentOS_6_v3.0.0_Server_L1.audit from CIS CentOS Linux 6 Benchmark v3.0.0	CIS CentOS 6 Server L1 v3.0.0	Unix
CIS_IBM_WebSphere_Liberty_v1.0.0_L1.audit from CIS IBM WebSphere Liberty Benchmark v1.0.0	CIS IBM WebSphere Liberty v1.0.0 L1	Unix
CIS_Microsoft_Exchange_Server_2019_v1.0.0_Level_1_MDM.audit from CIS Microsoft Exchange Server 2019 Benchmark v1.0.0	CIS Microsoft Exchange Server 2019 L1 MDM v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
CIS_MS_IIS_10_v1.2.1_Level_1.audit from CIS Microsoft IIS 10 Benchmark v1.2.1	CIS IIS 10 v1.2.1 Level 1	Windows
CIS_MySQL_5.7_Enterprise_Benchmark_v2.0.0_Level_1_OS_MS.audit from CIS Oracle MySQL 5.7 Enterprise Edition Benchmark	CIS MySQL 5.7 Enterprise Windows OS L1 v2.0.0	Windows
CIS_MySQL_8.0_Community_Benchmark_v1.1.0_Level_1_OS_Linux.audit from CIS Oracle MySQL 8.0 Community Edition Benchmark	CIS MySQL 8.0 Community Linux OS L1 v1.1.0	Unix
CIS_MySQL_8.0_Enterprise_Benchmark_v1.4.0_Level_1_Database.audit from CIS Oracle MySQL 8.0 Enterprise Edition Benchmark	CIS Oracle MySQL Enterprise Edition 8.0 v1.4.0 L1 Database	MySQLDB
CIS_MySQL_8.0_Enterprise_Benchmark_v1.4.0_Level_2_Database.audit from CIS Oracle MySQL 8.0 Enterprise Edition Benchmark	CIS Oracle MySQL Enterprise Edition 8.0 v1.4.0 L2 Database	MySQLDB
CIS_MySQL_8.4_Enterprise_Benchmark_v1.0.0_Level_2_Database.audit from CIS Oracle MySQL 8.4 Enterprise Edition Benchmark	CIS Oracle MySQL Enterprise Edition 8.4 v1.0.0 L2 MySQL RDBMS	MySQLDB
CIS_Oracle_Solaris_11.4_L2_v1.1.0.audit from CIS Oracle Solaris 11.4 Benchmark v1.1.0	CIS Oracle Solaris 11.4 L2 v1.1.0	Unix
CIS_SUSE_Linux_Enterprise_12_v3.2.1_L2_Server.audit from CIS SUSE Linux Enterprise 12 Benchmark v3.2.1	CIS SUSE Linux Enterprise 12 v3.2.1 L2 Server	Unix
CIS_Ubuntu_18.04_LXD_Host_v1.0.0_L1_LXD.audit from CIS Ubuntu Linux 18.04 LXD Host Benchmark	CIS Ubuntu Linux 18.04 LXD Host L1 LXD v1.0.0	Unix
CIS_Ubuntu_18.04_LXD_Host_v1.0.0_L1_Server.audit from CIS Ubuntu Linux 18.04 LXD Host Benchmark	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix
CIS_Ubuntu_Linux_18.04_LTS_v2.2.0_L2_Server.audit from CIS Ubuntu Linux 18.04 LTS Benchmark v2.2.0	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Server	Unix
CIS_Ubuntu_Linux_18.04_LTS_v2.2.0_L2_Workstation.audit from CIS Ubuntu Linux 18.04 LTS Benchmark v2.2.0	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Workstation	Unix
CIS_Ubuntu_Linux_22.04_LTS_v2.0.0_L1_Server.audit from CIS Ubuntu Linux 22.04 LTS Benchmark v2.0.0	CIS Ubuntu Linux 22.04 LTS v2.0.0 L1 Server	Unix
CIS_Ubuntu_Linux_24.04_LTS_v1.0.0_L1_Server.audit from CIS Ubuntu Linux 24.04 LTS Benchmark v1.0.0	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Server	Unix
CIS_Ubuntu_Linux_24.04_LTS_v1.0.0_L1_Workstation.audit from CIS Ubuntu Linux 24.04 LTS Benchmark v1.0.0	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Workstation	Unix
CIS_VMware_ESXi_7.0_v1.5.0_L2.audit from CIS VMware ESXi 7.0 Benchmark v1.5.0	CIS VMware ESXi 7.0 v1.5.0 L2 Bare Metal	Unix

Detections

Analytics

Item Search