| AIX7-00-002146 - The AIX /etc/syslog.conf file must have a mode of 0640 or less permissive. | DISA STIG AIX 7.x v3r1 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-000002 - The macOS system must enforce screen saver password. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | ACCESS CONTROL |
| APPL-14-000003 - The macOS system must enforce session lock no more than five seconds after screen saver is started. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | ACCESS CONTROL |
| APPL-14-000070 - The macOS system must enforce screen saver timeout. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | ACCESS CONTROL |
| APPL-14-000140 - The macOS system must set SSH Active Server Alive Maximum to 0. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| APPL-14-002017 - The macOS system must disable the camera. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-002039 - The macOS system must disable Siri Setup during Setup Assistant. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-002052 - The macOS system must disable the System Settings pane for Wallet and Apple Pay. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-002090 - The macOS system must disable TouchID for unlocking the device. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | ACCESS CONTROL |
| APPL-14-002130 - The macOS system must disable CD/DVD Sharing. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-002140 - The macOS system must disable content caching service. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-002160 - The macOS system must disable iCloud Game Center. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-002220 - The macOS system must enforce on device dictation. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-002230 - The macOS system must disable dictation. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-002250 - The macOS system must disable Remote Management. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-002260 - The macOS system must disable the Bluetooth system settings pane. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-002270 - The macOS system must disable the iCloud Freeform services. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-005052 - The macOS system must configure login window to prompt for username and password. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | IDENTIFICATION AND AUTHENTICATION |
| APPL-14-005110 - The macOS system must enforce enrollment in mobile device management. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-005120 - The macOS system must enable recovery lock. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| APPL-14-005130 - The macOS system must enforce installation of XProtect Remediator and Gatekeeper updates automatically. | DISA Apple macOS 14 (Sonoma) STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| CNTR-K8-000950 - The Kubernetes etcd must enforce ports, protocols, and services (PPS) that adhere to the Ports, Protocols, and Services Management Category Assurance List (PPSM CAL). | DISA STIG Kubernetes v2r2 | Unix | CONFIGURATION MANAGEMENT |
| CNTR-K8-001410 - Kubernetes API Server must have the SSL Certificate Authority set. | DISA STIG Kubernetes v2r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| CNTR-K8-001430 - Kubernetes Controller Manager must have the SSL Certificate Authority set. | DISA STIG Kubernetes v2r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| CNTR-K8-001470 - Kubernetes Kubelet must enable tlsCertFile for client authentication to secure service. | DISA STIG Kubernetes v2r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| CNTR-K8-001530 - Kubernetes etcd must have a key file for secure communication. | DISA STIG Kubernetes v2r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| CNTR-K8-001540 - Kubernetes etcd must have peer-cert-file set for secure communication. | DISA STIG Kubernetes v2r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| CNTR-K8-003330 - The Kubernetes PKI CRT must have file permissions set to 644 or more restrictive. | DISA STIG Kubernetes v2r2 | Unix | CONFIGURATION MANAGEMENT |
| CNTR-R2-000100 The Kubernetes Controller Manager must have secure binding. | DISA Rancher Government Solutions RKE2 STIG v2r2 | Unix | ACCESS CONTROL |
| CNTR-R2-000940 Rancher RKE2 runtime must isolate security functions from nonsecurity functions. | DISA Rancher Government Solutions RKE2 STIG v2r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Configuring an automatic logout for idle sessions - Console Sessions | Tenable F5 BIG-IP Best Practice Audit | F5 | ACCESS CONTROL |
| Configuring CIDR Network Addresses for the BIG-IP packet filter - Unhandled Packet Action | Tenable F5 BIG-IP Best Practice Audit | F5 | ACCESS CONTROL |
| Configuring the BIG-IP system to exclude inode information from Etags | Tenable F5 BIG-IP Best Practice Audit | F5 | ACCESS CONTROL |
| OL08-00-010151 - OL 8 operating systems must require authentication upon booting into rescue mode. | DISA Oracle Linux 8 STIG v2r2 | Unix | ACCESS CONTROL |
| OL08-00-010382 - OL 8 must restrict privilege elevation to authorized personnel. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-010424 - OL 8 must not let Meltdown and Spectre exploit critical vulnerabilities in modern processors. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-010430 - OL 8 must implement address space layout randomization (ASLR) to protect its memory from unauthorized code execution. | DISA Oracle Linux 8 STIG v2r2 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| OL08-00-010450 - OL 8 must enable the SELinux targeted policy. | DISA Oracle Linux 8 STIG v2r2 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| OL08-00-010480 - The OL 8 SSH public host key files must have mode '0644' or less permissive. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-010520 - The OL 8 SSH daemon must not allow authentication using known host's authentication. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-010543 - OL 8 must use a separate file system for '/tmp'. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-010610 - OL 8 file systems must not execute binary files on removable media. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-010730 - All OL 8 local interactive user home directories must have mode '0750' or less permissive. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-010760 - All OL 8 local interactive user accounts must be assigned a home directory upon creation. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-010770 - All OL 8 local initialization files must have mode '0740' or less permissive. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-010800 - A separate OL 8 filesystem must be used for user home directories (such as '/home' or an equivalent). | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-020101 - OL 8 must ensure the password complexity module is enabled in the system-auth file. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-020102 - OL 8 systems below version 8.4 must ensure the password complexity module in the system-auth file is configured for three retries or less. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| OL08-00-020320 - OL 8 must not have unnecessary accounts. | DISA Oracle Linux 8 STIG v2r2 | Unix | CONFIGURATION MANAGEMENT |
| VCSA-80-000304 The vCenter Server must enable data in transit encryption for vSAN. | DISA VMware vSphere 8.0 vCenter STIG v2r1 | VMware | CONFIGURATION MANAGEMENT |
