Item Search

NameAudit NamePluginCategory
1.6.8 Place compensating controls in the form of PSP and RBAC for privileged containers usage - pspCIS Kubernetes 1.13 Benchmark v1.4.1 L2Unix

CONFIGURATION MANAGEMENT

1.7.6 Do not admit root containersCIS Kubernetes 1.13 Benchmark v1.4.1 L2Unix

CONFIGURATION MANAGEMENT

1.7.7 Do not admit containers with dangerous capabilitiesCIS Kubernetes 1.13 Benchmark v1.4.1 L2Unix

CONFIGURATION MANAGEMENT

2.1 Ensure that IP addresses are mapped to usernames - ZonesCIS Palo Alto Firewall 6 Benchmark L2 v1.0.0Palo_Alto

CONFIGURATION MANAGEMENT

2.1.6 Ensure that the --protect-kernel-defaults argument is set to trueCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

CONFIGURATION MANAGEMENT

2.2.1 Ensure that the kubelet.conf file permissions are set to 644 or more restrictiveCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

CONFIGURATION MANAGEMENT

2.2.3 Ensure that the kubelet service file permissions are set to 644 or more restrictiveCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

CONFIGURATION MANAGEMENT

2.2.5 Ensure that the proxy kubeconfig file permissions are set to 644 or more restrictiveCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

CONFIGURATION MANAGEMENT

2.2.6 Ensure that the proxy kubeconfig file ownership is set to root:rootCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

CONFIGURATION MANAGEMENT

2.2.8 Ensure that the client certificate authorities file ownership is set to root:rootCIS Kubernetes 1.13 Benchmark v1.4.1 L1Unix

CONFIGURATION MANAGEMENT

2.4 Configure TCP Wrappers - Make sure that /etc/hosts.allow does exist.CIS Solaris 10 L1 v5.2Unix

CONFIGURATION MANAGEMENT

2.4.4 Disable Printer SharingCIS Apple OSX 10.11 El Capitan L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.22 Disable Mounting of hfsplus FilesystemsCIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

3.1 Verify that docker.service file ownership is set to root:rootCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.2 Verify that docker.service file permissions are set to 644 or more restrictiveCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.4 Ensure that docker.socket file permissions are set to 644 or more restrictiveCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.10 Ensure that TLS CA certificate file permissions are set to 444 or more restrictiveCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.14 Verify that docker-storage environment file permissions are set to 644 or more restrictiveCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.17 Ensure that daemon.json file ownership is set to root:rootCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.20 Ensure that /etc/default/docker file permissions are set to 644 or more restrictiveCIS Docker Community Edition v1.1.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.22 Verify that Docker server certificate file permissions are set to 444 or more restrictiveCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

4.2 Enable 'Show Wi-Fi status in menu bar'CIS Apple OSX 10.11 El Capitan L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

6.1.3 Disable SSH X11 Forwarding - Check if X11Forwarding is set to no and not commented for the server.CIS Solaris 10 L1 v5.2Unix

CONFIGURATION MANAGEMENT

6.2 Ensure that MongoDB uses a non-default portCIS MongoDB 3.4 L1 Unix Audit v1.0.0Unix

CONFIGURATION MANAGEMENT

6.2 Turn on filename extensionsCIS Apple OSX 10.11 El Capitan L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

6.3 Disable X11 Forwarding for SSH - X11Forwarding = noCIS Solaris 11 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

6.5 Configure Network Time Protocol (NTP) - restrict -4 default kod nomodify notrap nopeer noqueryCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

7.1 (L1) Ensure 'Cookies and website data' is set to 'Allow from websites I visit'CIS MacOS Safari v2.0.0 L1Unix

CONFIGURATION MANAGEMENT

7.1 Ensure that key file permissions are set correctlyCIS MongoDB 3.4 L1 Unix Audit v1.0.0Unix

CONFIGURATION MANAGEMENT

7.2 Ensure that database file permissions are set correctlyCIS MongoDB 3.4 L1 Unix Audit v1.0.0Unix

CONFIGURATION MANAGEMENT

8.2.4 Create and Set Permissions on rsyslog Log Files - /var/log/mailCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.2.4 Create and Set Permissions on rsyslog Log Files - /var/log/mail.errCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.2.4 Create and Set Permissions on rsyslog Log Files - /var/log/mail.infoCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

8.2.4 Create and Set Permissions on rsyslog Log Files - /var/log/messagesCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.1.2 Set User/Group Owner and Permission on /etc/crontabCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.1.3 Set User/Group Owner and Permission on /etc/cron.hourlyCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.1.6 Set User/Group Owner and Permission on /etc/cron.monthlyCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.7 Check Permissions on User Home DirectoriesCIS Solaris 11 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

9.7 Check Permissions on User Home Directories - Should Be Mode 750 or More RestrictiveCIS Solaris 10 L1 v5.2Unix

CONFIGURATION MANAGEMENT

9.9 Check Permissions on User .netrc FilesCIS Solaris 11.1 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.12 Check That Users Are Assigned Home DirectoriesCIS Solaris 10 L1 v5.2Unix

CONFIGURATION MANAGEMENT

9.13 Check That Defined Home Directories ExistCIS Solaris 11.1 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.14 Check User Home Directory OwnershipCIS Solaris 10 L1 v5.2Unix

CONFIGURATION MANAGEMENT

11.1 Set Warning Banner for Standard Login Services - /etc/issue permissionsCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

11.2 Remove OS Information from Login Warning Banners - /etc/issue.netCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

13.6 Ensure root PATH Integrity - .tcshrcCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

13.13 Check User Home Directory OwnershipCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

IBM i : Automatic Device Configuration (QAUTOCFG) - '0'IBM System i Security Reference for V7R3AS/400

CONFIGURATION MANAGEMENT

IBM i : Force Conversion on Restore (QFRCCVNRST) - '>=3'IBM System i Security Reference for V7R2AS/400

CONFIGURATION MANAGEMENT

IBM i : Remote Service Attribute (QRMTSRVATR) - '0'IBM System i Security Reference for V7R2AS/400

CONFIGURATION MANAGEMENT