Item Search

NameAudit NamePluginCategory
2.2.4 Ensure that the kubelet service file ownership is set to root:rootCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

CONFIGURATION MANAGEMENT

2.3.2 Ensure timezone is properly configuredCIS Check Point Firewall L1 v1.1.0CheckPoint

CONFIGURATION MANAGEMENT

2.21 Disable Mounting of hfs FilesystemsCIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.23 Disable Mounting of squashfs FilesystemsCIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

3.1 Ensure that docker.service file ownership is set to root:rootCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.3 Ensure that docker.socket file ownership is set to root:rootCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.4 Verify that docker-registry.service file permissions are set to 644 or more restrictiveCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.7 Ensure that registry certificate file ownership is set to root:rootCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.8 Verify that Docker environment file permissions are set to 644 or more restrictiveCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.9 Ensure that TLS CA certificate file ownership is set to root:rootCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.10 Ensure the ScoreBoard File Is SecuredCIS Apache HTTP Server 2.2 L1 v3.6.0Unix

CONFIGURATION MANAGEMENT

3.18 Verify that registry certificate file permissions are set to 444 or more restrictiveCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.19 Ensure that /etc/default/docker file ownership is set to root:rootCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.25 Verify that Docker socket file ownership is set to root:docker - /var/run/docker.sockCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

4.1 (L2) Ensure 'AutoFill user names and passwords' is 'Disabled'CIS MacOS Safari v2.0.0 L2Unix

CONFIGURATION MANAGEMENT

4.1.2 Ensure auditd service is enabledCIS Amazon Linux v2.1.0 L2Unix

CONFIGURATION MANAGEMENT

4.4 Ensure http server is not runningCIS Apple OSX 10.11 El Capitan L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

5.1 Ensure that WildFire file size upload limits are maximizedCIS Palo Alto Firewall 6 Benchmark L1 v1.0.0Palo_Alto

CONFIGURATION MANAGEMENT

5.1.1 Secure Home FoldersCIS Apple OSX 10.11 El Capitan L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

5.26 Ensure container health is checked at runtimeCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

6.3 Disable X11 Forwarding for SSHCIS Solaris 11.2 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

6.3 Disable X11 Forwarding for SSH - X11Forwarding = noCIS Solaris 11.1 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

6.9 Ensure that PAN-DB URL Filtering is usedCIS Palo Alto Firewall 6 Benchmark L1 v1.0.0Palo_Alto

CONFIGURATION MANAGEMENT

6.9 Ensure that PAN-DB URL Filtering is usedCIS Palo Alto Firewall 7 Benchmark L1 v1.0.0Palo_Alto

CONFIGURATION MANAGEMENT

7.1 Ensure that key file permissions are set correctlyCIS MongoDB 3.4 L1 Windows Audit v1.0.0Windows

CONFIGURATION MANAGEMENT

7.2 Ensure that database file permissions are set correctlyCIS MongoDB 3.2 L1 Unix Audit v1.0.0Unix

CONFIGURATION MANAGEMENT

7.4.3 Verify Permissions on /etc/hosts.allowCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

7.5 Ensure Docker's secret management commands are used for managing secrets in a Swarm clusterCIS Docker Community Edition v1.1.0 L2 DockerUnix

CONFIGURATION MANAGEMENT

7.5 Set 'mesg n' as Default for All Users - /etc/profile mesg = nCIS Solaris 11 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.2.4 Create and Set Permissions on rsyslog Log Files - /var/log/mail.warnCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.2.4 Create and Set Permissions on rsyslog Log Files - /var/log/news/news.errCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.2.4 Create and Set Permissions on rsyslog Log Files - /var/log/warnCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.1.2 Set User/Group Owner and Permission on /etc/crontabCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.3.3 Set Permissions on /etc/ssh/sshd_configCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.3.4 Disable SSH X11 ForwardingCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.4 Verify No Legacy '+' Entries Exist in passwd, shadow, and group Files - Check for shadow.CIS Solaris 10 L1 v5.2Unix

CONFIGURATION MANAGEMENT

9.12 Check That Users Are Assigned Home DirectoriesCIS Solaris 11 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.14 Check User Home Directory OwnershipCIS Solaris 11.1 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

10.6 Enable strict servlet ComplianceCIS Apache Tomcat 8 L1 v1.1.0 MiddlewareUnix

CONFIGURATION MANAGEMENT

11.1 Set Warning Banner for Standard Login Services - /etc/issue.net permissionsCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

11.1 Set Warning Banner for Standard Login Services - /etc/motd permissionsCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

11.2 Remove OS Information from Login Warning Banners - /etc/issue.netCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

13.6 Ensure root PATH Integrity - .bashrcCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

13.12 Check That Users Are Assigned Valid Home DirectoriesCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

All network interfaces are operating in full-duplex modeTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

IBM i : Automatic Device Configuration (QAUTOCFG) - '0'IBM System i Security Reference for V7R2AS/400

CONFIGURATION MANAGEMENT

IBM i : Device Recovery Action (QDEVRCYACN) - '*DSCMSG'IBM System i Security Reference for V7R1 and V6R1AS/400

CONFIGURATION MANAGEMENT

IBM i : Device Recovery Action (QDEVRCYACN) - '*DSCMSG'IBM System i Security Reference for V7R3AS/400

CONFIGURATION MANAGEMENT

IBM i : Force Conversion on Restore (QFRCCVNRST) - '>=3'IBM System i Security Reference for V7R1 and V6R1AS/400

CONFIGURATION MANAGEMENT

IBM i : Remote Service Attribute (QRMTSRVATR) - '0'IBM System i Security Reference for V7R1 and V6R1AS/400

CONFIGURATION MANAGEMENT