Detections
Analytics

Item Search

NameAudit NamePluginCategory
4.2.9 Ensure that the --event-qps argument is set to 0 or a level which ensures appropriate event captureCIS Kubernetes v1.20 Benchmark v1.0.0 L2 WorkerUnix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

4.20 sqlnet.ora - 'tcp.validnode_checking = YES'CIS v1.1.0 Oracle 11g OS L2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

18.5.21.1 Ensure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain' is set to 'Enabled: 1 = Minimize simultaneous connections'CIS Microsoft Windows Server 2016 MS L1 v1.2.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

18.5.21.1 Ensure 'Minimize the number of simultaneous connections to the Internet or a Windows Domain' is set to 'Enabled: 1 = Minimize simultaneous connections' - is set to Enabled: 1 = Minimize simultaneous connectionsCIS Microsoft Windows Server 2016 DC L1 v1.2.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

ARST-L2-000030 - The Arista MLS layer 2 switch must be configured for Storm Control to limit the effects of packet flooding types of denial-of-service (DoS) attacks.DISA STIG Arista MLS EOS 4.2x L2S v2r1Arista

SYSTEM AND COMMUNICATIONS PROTECTION

AS24-U1-000590 - The Apache web server must be tuned to handle the operational requirements of the hosted application.DISA STIG Apache Server 2.4 Unix Server v3r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

AS24-U1-000590 - The Apache web server must be tuned to handle the operational requirements of the hosted application.DISA STIG Apache Server 2.4 Unix Server v3r1 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

AS24-W2-000830 - The Apache web server must be tuned to handle the operational requirements of the hosted application.DISA STIG Apache Server 2.4 Windows Site v2r1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Big Sur - Limit Impact of Denial of Service AttacksNIST macOS Big Sur v1.4.0 - All ProfilesUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Big Sur - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Big Sur v1.4.0 - 800-53r4 HighUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Big Sur - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Big Sur v1.4.0 - 800-53r5 HighUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Big Sur - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Big Sur v1.4.0 - All ProfilesUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Big Sur - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Big Sur v1.4.0 - CNSSI 1253Unix

SYSTEM AND COMMUNICATIONS PROTECTION

Catalina - Limit Impact of Denial of Service AttacksNIST macOS Catalina v1.5.0 - All ProfilesUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Catalina - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Catalina v1.5.0 - 800-53r4 ModerateUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Catalina - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Catalina v1.5.0 - 800-53r5 HighUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Catalina - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Catalina v1.5.0 - 800-53r5 LowUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Catalina - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Catalina v1.5.0 - All ProfilesUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Catalina - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Catalina v1.5.0 - CNSSI 1253Unix

SYSTEM AND COMMUNICATIONS PROTECTION

GEN003612 - The system must be configured to use TCP syncookies when experiencing a TCP SYN flood.DISA STIG for Oracle Linux 5 v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

Monterey - Limit Impact of Denial of Service AttacksNIST macOS Monterey v1.0.0 - All ProfilesUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Monterey - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Monterey v1.0.0 - 800-53r5 HighUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Monterey - Protect Against Denial of Service Attacks by Ensuring Rate-Limiting Measures on Network InterfacesNIST macOS Monterey v1.0.0 - CNSSI 1253Unix

SYSTEM AND COMMUNICATIONS PROTECTION

NET0375 - The device must be configured to protect the network against denial of service attacks such as Ping of Death, TCP SYN floods, etc.DISA STIG Cisco Firewall v8r24Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0770 - The router must have IP source routing disabled.DISA STIG Juniper Infrastructure Router V8R29Juniper

SYSTEM AND COMMUNICATIONS PROTECTION

NET0770 - The router must have IP source routing disabled.DISA STIG Juniper Infrastructure Router V8R27Juniper

SYSTEM AND COMMUNICATIONS PROTECTION

NET0770 - The router must have IP source routing disabled.DISA STIG Juniper Perimeter Router V8R30Juniper

SYSTEM AND COMMUNICATIONS PROTECTION

NET0770 - The router must have IP source routing disabled.DISA STIG Juniper Perimeter Router V8R32Juniper

SYSTEM AND COMMUNICATIONS PROTECTION

NET0781 - Gratuitous ARP must be disabled.DISA STIG Cisco Infrastructure L3 Switch v8r29Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0781 - Gratuitous ARP must be disabled.DISA STIG Cisco Infrastructure Router and L3 Switch v8r28Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0781 - Gratuitous ARP must be disabled.DISA STIG Cisco Infrastructure Router v8r29Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0781 - Gratuitous ARP must be disabled.DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0781 - Gratuitous ARP must be disabled.DISA STIG Cisco Perimeter Router and L3 Switch v8r31Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0781 - Gratuitous ARP must be disabled.DISA STIG Cisco Perimeter Router v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0790 - IP directed broadcast is not disabled.DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0790 - IP directed broadcast is not disabled.DISA STIG Cisco Infrastructure Router and L3 Switch v8r28Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0790 - IP directed broadcast is not disabled.DISA STIG Cisco Infrastructure L3 Switch v8r29Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0790 - IP directed broadcast is not disabled.DISA STIG Cisco Perimeter Router and L3 Switch v8r31Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0960 - Routers are not set to intercept TCP SYN attacks - 'access-list TCP_INTERCEPT permit tcp any INTERNAL_NETWORK'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0960 - Routers are not set to intercept TCP SYN attacks - 'access-list TCP_INTERCEPT permit tcp any INTERNAL_NETWORK'DISA STIG Cisco Perimeter Router and L3 Switch v8r31Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0960 - Routers are not set to intercept TCP SYN attacks - 'ip tcp intercept list TCP_INTERCEPT_ACL'DISA STIG Cisco Perimeter Router v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0960 - Routers are not set to intercept TCP SYN attacks - 'ip tcp intercept list TCP_INTERCEPT_ACL'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0960 - Routers are not set to intercept TCP SYN attacks - 'ip tcp intercept list TCP_INTERCEPT_ACL'DISA STIG Cisco Perimeter Router and L3 Switch v8r31Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

OL08-00-040150 - A firewall must be able to protect against or limit the effects of denial-of-service (DoS) attacks by ensuring OL 8 can implement rate-limiting measures on impacted network interfaces.DISA Oracle Linux 8 STIG v2r1Unix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

PHTN-30-000036 - The Photon operating system must use Transmission Control Protocol (TCP) syncookies.DISA STIG VMware vSphere 7.0 Photon OS v1r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

PHTN-67-000037 - The Photon operating system must use TCP syncookies.DISA STIG VMware vSphere 6.7 Photon OS v1r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

RHEL-09-253010 - RHEL 9 must be configured to use TCP syncookies.DISA Red Hat Enterprise Linux 9 STIG v2r1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

WG110 IIS7 - Web sites must limit the number of simultaneous requests.DISA IIS 7.0 Web Site v1r19Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WG110 W22 - The number of allowed simultaneous requests must be set.DISA STIG Apache Site 2.2 Windows v1r12Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WG110 W22 - The number of allowed simultaneous requests must be set.DISA STIG Apache Site 2.2 Windows v1r13Windows

SYSTEM AND COMMUNICATIONS PROTECTION