| 1.1.38 Ensure that the --request-timeout argument is set as appropriate | CIS Kubernetes 1.13 Benchmark v1.4.0 L1 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.2.1.2 Configure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain | CIS Windows 8 L1 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.2.25 Ensure that the --request-timeout argument is set as appropriate | CIS Kubernetes v1.20 Benchmark v1.0.0 L1 Master | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.2.26 Ensure that the --request-timeout argument is set as appropriate | CIS Kubernetes Benchmark v1.5.1 L1 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 2.1.5 Ensure that the --streaming-connection-idle-timeout argument is not set to 0 | CIS Kubernetes 1.13 Benchmark v1.4.1 L1 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 3.1 Ensure a secondary SharePoint site collection administrator has been defined on each site collection. | CIS Microsoft SharePoint 2016 OS v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 3.1 Ensure a secondary SharePoint site collection administrator has been defined on each site collection. | CIS Microsoft SharePoint 2016 OS v1.1.0 | Windows | IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 3.1 Ensure a secondary SharePoint site collection administrator has been defined on each site collection. | CIS Microsoft SharePoint 2019 OS v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 3.7 Ensure that SharePoint is set to reject or delay network traffic generated above configurable traffic volume thresholds - Max Connections | CIS Microsoft SharePoint 2019 OS v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 3.8 ASP Session Object Timeout (AspSessionTimeout) - 'Global Setting - AspSessionTimeout <= 10' | CIS IIS 6.0 v1.0.0 | Windows | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |
| 3.8 ASP Session Object Timeout (AspSessionTimeout) - 'Virtual Dir Setting - AspSessionTimeout <= 10' | CIS IIS 6.0 v1.0.0 | Windows | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |
| 4.2.5 Ensure that the --streaming-connection-idle-timeout argument is not set to 0 | CIS Kubernetes v1.20 Benchmark v1.0.0 L1 Worker | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 4.2.9 Ensure that the --event-qps argument is set to 0 or a level which ensures appropriate event capture | CIS Kubernetes Benchmark v1.5.1 L2 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 4.11 Ensure 'Dynamic IP Address Restrictions' is enabled - maxConcurrentRequests | CIS IIS 10 v1.1.0 Level 1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 4.19 listener.ora - 'inbound_connect_timeout_listener = 2' | CIS v1.1.0 Oracle 11g OS Windows Level 2 | Windows | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |
| 4.19 listener.ora - 'inbound_connect_timeout_listener = 2' | CIS v1.1.0 Oracle 11g OS L2 | Unix | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |
| 4.20 sqlnet.ora - 'tcp.validnode_checking = YES' | CIS v1.1.0 Oracle 11g OS Windows Level 2 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 4.510 - The system must protect against or limit the effects of Denial of Service (DoS) attacks by validating the operating system is implementing rate-limiting measures on impacted network interfaces - sysctl | Tenable Fedora Linux Best Practices v2.0.0 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 5.2.17 Ensure SSH LoginGraceTime is set to one minute or less | CIS SUSE Linux Enterprise 15 Server L1 v1.0.0 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 5.2.17 Ensure SSH LoginGraceTime is set to one minute or less | CIS Debian 8 Server L1 v2.0.1 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 5.2.17 Ensure SSH LoginGraceTime is set to one minute or less | CIS Debian 8 Workstation L1 v2.0.1 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 18.5.21.1 Ensure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain' is set to 'Enabled: 1 = Minimize simultaneous connections' | CIS Windows Server 2012 R2 MS L1 v2.5.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 18.5.21.1 Ensure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain' is set to 'Enabled: 1 = Minimize simultaneous connections' | CIS Windows Server 2012 R2 MS L1 v2.4.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 18.5.21.1 Ensure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain' is set to 'Enabled: 1 = Minimize simultaneous connections' - Enabled | CIS Windows Server 2012 R2 DC L1 v2.5.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 18.5.21.1 Ensure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain' is set to 'Enabled' | CIS Windows Server 2012 R2 DC L1 v2.4.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 18.5.21.1 Ensure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain' is set to 'Enabled' | CIS Microsoft Windows 8.1 L1 v2.3.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 18.5.21.1 Ensure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain' is set to 'Enabled' | CIS Windows Server 2012 DC L1 v2.1.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 18.5.21.1 Ensure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain' is set to 'Enabled' | CIS Microsoft Windows 8.1 L1 Bitlocker v2.3.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 18.5.21.1 Ensure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain' is set to 'Enabled' | CIS Windows Server 2012 MS L1 v2.1.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Big Sur v1.4.0 - 800-53r4 Low | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Big Sur v1.4.0 - 800-53r5 Low | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Catalina - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Catalina v1.5.0 - 800-53r5 Moderate | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Catalina - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Catalina v1.5.0 - 800-53r4 High | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Catalina - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Catalina v1.5.0 - 800-53r4 Low | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi: max-running-vms | TNS VMWare vSphere Best Practices | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi: max-supported-vms | TNS VMWare vSphere Best Practices | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi: vmkernel-max-vms | TNS VMWare vSphere Best Practices | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| MobileIron - Windows Phone - Windows Phone 8 Firewall = ON | MobileIron - TNS MDM Best Practices Audit v1.1.0 | MDM | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Monterey v1.0.0 - 800-53r4 Low | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Monterey v1.0.0 - 800-53r5 Low | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Monterey v1.0.0 - 800-53r4 Moderate | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Monterey v1.0.0 - 800-53r4 High | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Monterey v1.0.0 - 800-53r5 Moderate | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network Interfaces | NIST macOS Monterey v1.0.0 - All Profiles | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| NET0965 - Must limit TCP connections requests wait times | DISA STIG Cisco Perimeter Router v8r8 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
| SonicWALL - Flood Protection - TCP - Max Seg Lifetime | TNS SonicWALL v5.8 Best Practices | SonicWALL | SYSTEM AND COMMUNICATIONS PROTECTION |
| WG410 - Interactive scripts do not have proper access controls. - 'AspScriptTimeout set to 90 or less' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |
| WG410 - Interactive scripts do not have proper access controls. - 'Virtual Directories - AspScriptTimeout set to 90 or less' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |
