Item Search

Name	Audit Name	Plugin	Category
1.1.1.1 Ensure mounting of udf filesystems is disabled	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
1.1.6 Ensure nosuid option set on /var partition	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.7 Ensure noexec option set on /var partition	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
2.2.3 Ensure 'GLOBAL_NAMES' Is Set to 'TRUE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
2.2.6 Ensure 'REMOTE_LOGIN_PASSWORDFILE' Is Set to 'NONE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.2.7 Ensure 'REMOTE_OS_AUTHENT' Is Set to 'FALSE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.2.8 Ensure 'REMOTE_OS_ROLES' Is Set to 'FALSE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.2.9 Ensure 'SEC_CASE_SENSITIVE_LOGON' Is Set to 'TRUE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
2.2.13 Ensure 'SEC_RETURN_SERVER_RELEASE_BANNER' Is Set to 'FALSE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
2.2.14 Ensure 'SQL92_SECURITY' Is Set to 'TRUE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
2.2.17 Ensure 'PDB_OS_CREDENTIAL' is NOT null	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
3.2.4 Ensure suspicious packets are logged	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
3.3 Ensure 'PASSWORD_LIFE_TIME' Is Less than or Equal to '90'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
3.3.2.1 Ensure default deny firewall policy	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5 Ensure 'PASSWORD_REUSE_TIME' Is Greater than or Equal to '365'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
3.7 Ensure 'PASSWORD_VERIFY_FUNCTION' Is Set for All Profiles	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
3.8 Ensure 'SESSIONS_PER_USER' Is Less than or Equal to '10'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL
3.9 Ensure 'INACTIVE_ACCOUNT_TIME' Is Less than or Equal to '120'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
4.1 Ensure All Default Passwords Are Changed	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
4.1.1.2 Ensure Logging Service is Running	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.3 Ensure 'DBA_USERS.AUTHENTICATION_TYPE' Is Not Set to 'EXTERNAL' for Any User	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
4.6 Ensure No Public Database Links Exist	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.1.3 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "Encryption" Packages	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.3.2 Ensure 'ALL' Is Revoked from Unauthorized 'GRANTEE' on 'DBA_%'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.1 Ensure '%ANY%' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.2 Ensure 'DBA_SYS_PRIVS.%' Is Revoked from Unauthorized 'GRANTEE' with 'ADMIN_OPTION' Set to 'YES'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.3 Ensure 'EXECUTE ANY PROCEDURE' Is Revoked from 'OUTLN'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.7 Ensure 'AUDIT SYSTEM' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.9 Ensure 'BECOME USER' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.11 Ensure 'ALTER SYSTEM' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.12 Ensure 'CREATE ANY LIBRARY' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.15 Ensure 'GRANT ANY ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.16 Ensure 'GRANT ANY PRIVILEGE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.3.2 Ensure 'EXECUTE_CATALOG_ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.3.3 Ensure 'DBA' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.3.4 Ensure AUDIT_ADMIN' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
6.1.6 Ensure the 'PUBLIC DATABASE LINK' Audit Option Is Enabled	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.10 Ensure the 'SELECT ANY DICTIONARY' Audit Option Is Enabled	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.12 Ensure the 'GRANT ANY PRIVILEGE' Audit Option Is Enabled	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.13 Ensure the 'DROP ANY PROCEDURE' Audit Option Is Enabled	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.17 Ensure the 'TRIGGER' Audit Option Is Enabled	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.1 Ensure the 'CREATE USER' Action Audit Is Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.9 Ensure the 'CREATE PROFILE' Action Audit Is Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.10 Ensure the 'ALTER PROFILE' Action Audit Is Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.14 Ensure the 'DROP DATABASE LINK' Action Audit Is Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.16 Ensure the 'ALTER SYNONYM' Action Audit Is Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.20 Ensure the 'CREATE PROCEDURE/FUNCTION/PACKAGE/PACKAGE BODY' Action Audit Is Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.21 Ensure the 'ALTER PROCEDURE/FUNCTION/PACKAGE/PACKAGE BODY' Action Audit Is Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.22 Ensure the 'DROP PROCEDURE/FUNCTION/PACKAGE/PACKAGE BODY' Action Audit Is Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.24 Ensure the 'CREATE TRIGGER' Action Audit Is Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search