Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.8 Set 'aaa accounting connection'CIS Cisco IOS 15 L2 v4.0.1Cisco

AUDIT AND ACCOUNTABILITY

1.2.3.2.4 Set 'Do not enumerate connected users on domain-joined computers' to 'Enabled'CIS Windows 8 L1 v1.0.0Windows

ACCESS CONTROL

2.3.11.3 Ensure 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' is set to 'Disabled'CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.1.0Windows

IDENTIFICATION AND AUTHENTICATION

2.3.11.3 Ensure 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' is set to 'Disabled'CIS Windows 7 Workstation Level 1 + Bitlocker v3.1.0Windows

IDENTIFICATION AND AUTHENTICATION

6.2.2 Ensure no legacy '+' entries exist in /etc/passwdCIS Ubuntu Linux 18.04 LTS Server L1 v2.0.1Unix

ACCESS CONTROL

6.2.3 Ensure no legacy '+' entries exist in /etc/shadowCIS Red Hat 6 Workstation L1 v2.1.0Unix

IDENTIFICATION AND AUTHENTICATION

6.2.5 Ensure no legacy '+' entries exist in /etc/groupCIS Ubuntu Linux 18.04 LTS Workstation L1 v2.0.1Unix

ACCESS CONTROL

6.2.5 Ensure no legacy '+' entries exist in /etc/groupCIS Ubuntu Linux 18.04 LTS Server L1 v2.0.1Unix

ACCESS CONTROL

6.2.20 Ensure shadow group is emptyCIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0Unix

ACCESS CONTROL

6.2.20 Ensure shadow group is emptyCIS Ubuntu Linux 16.04 LTS Server L1 v1.1.0Unix

ACCESS CONTROL

6.2.20 Ensure shadow group is emptyCIS Ubuntu Linux 16.04 LTS Workstation L1 v1.1.0Unix

ACCESS CONTROL

18.2.3 Ensure 'Enable Local Admin Password Management' is set to 'Enabled'CIS Windows 7 Workstation Level 1 + Bitlocker v3.1.0Windows

ACCESS CONTROL

18.2.3 Ensure 'Enable Local Admin Password Management' is set to 'Enabled'CIS Windows 7 Workstation Level 1 v3.1.0Windows

ACCESS CONTROL

Allow Microsoft accounts to be optionalMSCT Windows Server 2012 R2 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow Microsoft accounts to be optionalMSCT Windows 10 v1507 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow Microsoft accounts to be optionalMSCT Windows 10 1607 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow Microsoft accounts to be optionalMSCT Windows 10 v1703 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow Microsoft accounts to be optionalMSCT Windows 10 1803 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow Microsoft accounts to be optionalMSCT Windows 10 1809 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow Microsoft accounts to be optionalMSCT Windows 10 v1511 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow Microsoft accounts to be optionalMSCT Windows 10 v1709 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow Microsoft accounts to be optionalMSCT Windows 10 v2004 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow Microsoft accounts to be optionalMSCT Windows 10 v20H2 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Do not enumerate connected users on domain-joined computersMSCT Windows 10 v1511 v1.0.0Windows

ACCESS CONTROL

Do not enumerate connected users on domain-joined computersMSCT Windows 10 v1507 v1.0.0Windows

ACCESS CONTROL

Enable local admin password managementMSCT Windows Server v2004 MS v1.0.0Windows

ACCESS CONTROL

Enable local admin password managementMSCT Windows Server 2016 MS v1.0.0Windows

ACCESS CONTROL

Enable local admin password managementMSCT Windows 10 v20H2 v1.0.0Windows

ACCESS CONTROL

Enable local admin password managementMSCT Windows 10 v1709 v1.0.0Windows

ACCESS CONTROL

Enable local admin password managementMSCT Windows Server 2019 MS v1.0.0Windows

ACCESS CONTROL

Enable local admin password managementMSCT Windows 10 v1703 v1.0.0Windows

ACCESS CONTROL

Enable local admin password managementMSCT Windows Server v20H2 MS v1.0.0Windows

ACCESS CONTROL

Enable local admin password managementMSCT Windows 10 v21H2 v1.0.0Windows

ACCESS CONTROL

Enable local admin password managementMSCT Windows 10 1903 v1.19.9Windows

ACCESS CONTROL

Ensure no legacy '+' entries exist in /etc/passwdTenable Cisco Firepower Management Center OS Best Practices AuditUnix

IDENTIFICATION AND AUTHENTICATION

Ensure no legacy '+' entries exist in /etc/shadowTenable Cisco Firepower Management Center OS Best Practices AuditUnix

IDENTIFICATION AND AUTHENTICATION

Enumerate local users on domain-joined computersMSCT Windows Server 2016 MS v1.0.0Windows

ACCESS CONTROL

Enumerate local users on domain-joined computersMSCT Windows 10 v1511 v1.0.0Windows

ACCESS CONTROL

Enumerate local users on domain-joined computersMSCT Windows 10 1607 v1.0.0Windows

ACCESS CONTROL

Enumerate local users on domain-joined computersMSCT Windows 10 v1709 v1.0.0Windows

ACCESS CONTROL

Enumerate local users on domain-joined computersMSCT Windows 10 v21H2 v1.0.0Windows

ACCESS CONTROL

Enumerate local users on domain-joined computersMSCT Windows 10 v20H2 v1.0.0Windows

ACCESS CONTROL

Enumerate local users on domain-joined computersMSCT Windows 10 v1507 v1.0.0Windows

ACCESS CONTROL

Enumerate local users on domain-joined computersMSCT Windows 10 v1703 v1.0.0Windows

ACCESS CONTROL

Enumerate local users on domain-joined computersMSCT Windows Server 1903 MS v1.19.9Windows

ACCESS CONTROL

Enumerate local users on domain-joined computersMSCT Windows Server v2004 MS v1.0.0Windows

ACCESS CONTROL

Network security: Allow PKU2U authentication requests to this computer to use online identities.MSCT Windows 10 v1511 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network security: Allow PKU2U authentication requests to this computer to use online identities.MSCT Windows 10 v1507 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network security: Allow PKU2U authentication requests to this computer to use online identities.MSCT Windows 10 1803 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network security: Allow PKU2U authentication requests to this computer to use online identities.MSCT Windows 10 v1709 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION