Item Search

Name	Audit Name	Plugin	Category
2.2.9 Ensure 'Allow log on locally' is set to 'Administrators' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.9 Ensure 'Allow log on locally' is set to 'Administrators' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.19 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.19 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.19 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.19 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.19 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.19 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL
2.2.19 Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	ACCESS CONTROL
2.2.19 Ensure 'Deny log on locally' to include 'Guests'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.23 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.23 Ensure 'Deny log on locally' to include 'Guests' - Guests	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.24 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.2.24 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.2.24 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.2.25 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows Server 2022 v4.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.25 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.29 Ensure 'Deny log on locally' to include 'Guests, Enterprise Admins group, and Domain Admins group' (STIG MS only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.2.31 Ensure 'Deny log on locally' to include 'Guests'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.33 Ensure 'Deny log on locally' to include 'Guests, Enterprise Admins group, and Domain Admins group' (STIG MS only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.2.33 Ensure 'Deny log on locally' to include 'Guests, Enterprise Admins group, and Domain Admins group' (STIG MS only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	ACCESS CONTROL
2.11.8.7.2.1.6 (L1) Ensure 'Word 6.0 binary documents and templates' is set to 'Enabled: Open/Save blocked, use open policy'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
3.11 Ensure 'encryption providers' are locked down	CIS IIS 8.0 v1.5.1 Level 2	Windows	ACCESS CONTROL
4.3 Enable Debug Level Daemon Logging - Check if daemon.debug is set to /var/log/connlog	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
4.4 Capture syslog AUTH Messages - Check if auth.info is set to var/log/authlog	CIS Solaris 10 L1 v5.2	Unix
4.9 Enable Kernel Level Auditing - Check audit condition is set to auditing	CIS Solaris 10 L1 v5.2	Unix	AUDIT AND ACCOUNTABILITY
6.12 Set EEPROM Security Mode and Log Failed Access - SPARC only. Should not be 'security-mode=none'.	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
7.2 Set Password Expiration Parameters on Active Accounts - Check MAXWEEKS is set to 13	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - Check DICTIONDBDIR is set to /var/passwd	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - Check HISTORY is set to 10	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - Check MAXREPEATS is set to 0	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - Check MINDIFF is set to 3	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.3 Set Strong Password Creation Policies - MINALPHA is set to 2	CIS Solaris 10 L1 v5.2	Unix	IDENTIFICATION AND AUTHENTICATION
7.6 Set Default umask for Users - Check if 'umask' is set to 077 - Check /etc/.login.	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
8.2 Create Warning Banner for CDE Users - Check if 'Dtlogin*greeting.persLabelString' is not set to default string.	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
8.2 Create Warning Banner for CDE Users - Check if 'Dtlogin*greeting.persLabelString' is set appropriately.	CIS Solaris 10 L1 v5.2	Unix	ACCESS CONTROL
89.14 (L1) Ensure 'Deny Local Log On' to include 'Guests'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
89.14 (L1) Ensure 'Deny Local Log On' to include 'Guests'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
CIS Security Benchmark For Microsoft IIS 7.0/7.5 v1.8.0 Level II.	CIS IIS 7 L2 v1.8.0	Windows
DKER-EE-001800 - The insecure registry capability in the Docker Engine - Enterprise component of Docker Enterprise must be disabled.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-001810 - On Linux, a non-AUFS storage driver in the Docker Engine - Enterprise component of Docker Enterprise must be used.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-001830 - The userland proxy capability in the Docker Engine - Enterprise component of Docker Enterprise must be disabled.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-001840 - Experimental features in the Docker Engine - Enterprise component of Docker Enterprise must be disabled.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-001870 - The Docker Enterprise self-signed certificates in Universal Control Plane (UCP) must be replaced with DoD trusted, signed certificates.	DISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-001890 - The option in Universal Control Plane (UCP) allowing users and administrators to schedule containers on all nodes, including UCP managers and Docker Trusted Registry (DTR) nodes must be disabled in Docker Enterprise.	DISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-001900 - The Create repository on push option in Docker Trusted Registry (DTR) must be disabled in Docker Enterprise.	DISA STIG Docker Enterprise 2.x Linux/Unix DTR v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-001910 - Periodic data usage and analytics reporting in Universal Control Plane (UCP) must be disabled in Docker Enterprise.	DISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-001920 - Periodic data usage and analytics reporting in Docker Trusted Registry (DTR) must be disabled in Docker Enterprise.	DISA STIG Docker Enterprise 2.x Linux/Unix DTR v2r2	Unix	CONFIGURATION MANAGEMENT
DTOO336 - Word 6.0 binary documents and templates must be configured for block open/save actions.	DISA STIG Microsoft Word 2013 v1r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
ESXi : disable-mob	VMWare vSphere 6.5 Hardening Guide	VMware	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search