Item Search

Name	Audit Name	Plugin	Category
1.1.1.7 Ensure udf kernel module is not available	CIS Amazon Linux 2 v3.0.0 L2	Unix	CONFIGURATION MANAGEMENT
1.1.2.5.1 Ensure separate partition exists for /var/tmp	CIS Amazon Linux 2 v3.0.0 L2	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.7 Ensure separate partition exists for /var/tmp	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.2.20 Ensure X window server services are not in use	CIS Amazon Linux 2 v3.0.0 L2	Unix	CONFIGURATION MANAGEMENT
3.2 Ensure 'debug' is turned off - Default	CIS IIS 10 v1.2.1 Level 2	Windows	SYSTEM AND SERVICES ACQUISITION
3.3 Ensure custom error messages are not off - Default	CIS IIS 10 v1.2.1 Level 2	Windows	SYSTEM AND SERVICES ACQUISITION
3.5 Ensure ASP.NET stack tracing is not enabled - Default	CIS IIS 10 v1.2.1 Level 2	Windows	SYSTEM AND SERVICES ACQUISITION
3.8 Ensure 'MachineKey validation method - .Net 3.5' is configured - Default	CIS IIS 10 v1.2.1 Level 2	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.12 Ensure Server Header is removed - Applications	CIS IIS 10 v1.2.1 Level 2	Windows	CONFIGURATION MANAGEMENT
4.1.1.3 Ensure audit logs are not automatically deleted	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.4 Ensure events that modify date and time information are collected - auditctl clock_settime (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify user/group information are collected - /etc/security/opasswd	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify the system's network environment are collected - /etc/sysconfig/network-scripts	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - auditctl /etc/hosts	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - auditctl /etc/issue	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.8 Ensure login and logout events are collected - /var/log/faillock	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.9 Ensure session initiation information is collected - auditctl /var/run/utmp	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.10 Ensure discretionary access control permission modification events are collected - auditctl setxattr/lsetxattr/fsetxattr (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - chown/fchown/fchownat (64-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.13 Ensure successful file system mounts are collected - (64-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure file deletion events by users are collected - auditctl (64-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.15 Ensure changes to system administration scope (sudoers) is collected - auditctl /etc/sudoers	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.16 Ensure system administrator actions (sudolog) are collected	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.17 Ensure kernel module loading and unloading is collected - auditctl insmod	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Ensure 'maxURL request filter' is configured - Default	CIS IIS 10 v1.2.1 Level 2	Windows	SYSTEM AND SERVICES ACQUISITION
4.4 Ensure non-ASCII characters in URLs are not allowed - Default	CIS IIS 10 v1.2.1 Level 2	Windows	SYSTEM AND SERVICES ACQUISITION
4.5.3.1 Ensure nologin is not listed in /etc/shells	CIS Amazon Linux 2 v3.0.0 L2	Unix	IDENTIFICATION AND AUTHENTICATION
5.2.1.1 Ensure audit is installed	CIS Amazon Linux 2 v3.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.2 Ensure actions as another user are always logged	CIS Amazon Linux 2 v3.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.15 Ensure successful and unsuccessful attempts to use the chcon command are recorded	CIS Amazon Linux 2 v3.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.18 Ensure successful and unsuccessful attempts to use the usermod command are recorded	CIS Amazon Linux 2 v3.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
5.2.3.19 Ensure kernel module loading unloading and modification is collected	CIS Amazon Linux 2 v3.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
5.2.4.2 Ensure audit log files are mode 0640 or less permissive	CIS Amazon Linux 2 v3.0.0 L2	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.2.6 Ensure SSH X11 forwarding is disabled	CIS Aliyun Linux 2 L2 v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
7.1 Ensure HSTS Header is set - Sites	CIS IIS 10 v1.2.1 Level 2	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.2.1 Ensure LAPS AdmPwd GPO Extension / CSE is installed	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.2.3 (L1) Ensure 'Enable Local Admin Password Management' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
18.2.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters' (MS only)	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	IDENTIFICATION AND AUTHENTICATION
18.2.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters' (MS only)	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	IDENTIFICATION AND AUTHENTICATION
18.2.5 (L1) Ensure 'Password Settings: Password Length' is set to 'Enabled: 15 or more' (MS only)	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	IDENTIFICATION AND AUTHENTICATION
18.2.6 (L1) Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
18.2.6 Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
18.3.1 (L1) Ensure LAPS AdmPwd GPO Extension / CSE is installed (MS only)	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
18.3.1 Ensure LAPS AdmPwd GPO Extension / CSE is installed (MS only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
18.3.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters' (MS only)	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
18.3.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters' (MS only)	CIS Windows Server 2012 MS L1 v3.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
18.3.6 (L1) Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer' (MS only)	CIS Windows Server 2012 MS L1 v3.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
18.3.7 Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 60 or fewer' (STIG MS only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	IDENTIFICATION AND AUTHENTICATION
CASA-VN-000200 - The Cisco ASA must be configured to use a FIPS-validated cryptographic module to implement IPsec encryption services.	DISA STIG Cisco ASA VPN v2r2	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
GEN006575 - The file integrity tool must use FIPS 140-2 approved cryptographic hashes for validating file contents.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search