Detections
Analytics

Item Search

NameAudit NamePluginCategory
3.2 Ensure 'debug' is turned off - DefaultCIS IIS 10 v1.2.1 Level 2Windows

SYSTEM AND SERVICES ACQUISITION

3.3 Ensure custom error messages are not off - DefaultCIS IIS 10 v1.2.1 Level 2Windows

SYSTEM AND SERVICES ACQUISITION

3.5 Ensure ASP.NET stack tracing is not enabledCIS IIS 8.0 v1.5.1 Level 2Windows

CONFIGURATION MANAGEMENT

3.5 Ensure ASP.NET stack tracing is not enabled - DefaultCIS IIS 10 v1.2.1 Level 2Windows

SYSTEM AND SERVICES ACQUISITION

3.8 Ensure 'MachineKey validation method - .Net 3.5' is configured - DefaultCIS IIS 10 v1.2.1 Level 2Windows

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.12 Ensure Server Header is removed - ApplicationsCIS IIS 10 v1.2.1 Level 2Windows

CONFIGURATION MANAGEMENT

4.1 Ensure 'maxAllowedContentLength' is configuredCIS IIS 8.0 v1.5.1 Level 2Windows

SYSTEM AND INFORMATION INTEGRITY

4.2 Ensure 'maxURL request filter' is configured - DefaultCIS IIS 10 v1.2.1 Level 2Windows

SYSTEM AND SERVICES ACQUISITION

4.4 Ensure non-ASCII characters in URLs are not allowed - DefaultCIS IIS 10 v1.2.1 Level 2Windows

SYSTEM AND SERVICES ACQUISITION

7.1 Ensure HSTS Header is set - SitesCIS IIS 10 v1.2.1 Level 2Windows

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

auditctl /usr/share/selinuxCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b32 fchownCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b32 fremovexattrCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b32 lsetxattrCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b64 chownCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b64 EPERMCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b64 fremovexattrCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b64 lchownCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b64 lremovexattrCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b64 lsetxattrCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b64 setxattrCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl b64 unlinkCIS Amazon Linux 2 v3.0.0 L2Unix
auditctl init_module b64CIS Amazon Linux 2 v3.0.0 L2Unix
auditd.conf matches log_group = adm or log_group = rootCIS Amazon Linux 2 v3.0.0 L2Unix
b32 fchmodCIS Amazon Linux 2 v3.0.0 L2Unix
b32 fchmodatCIS Amazon Linux 2 v3.0.0 L2Unix
b32 fchownCIS Amazon Linux 2 v3.0.0 L2Unix
b32 fremovexattrCIS Amazon Linux 2 v3.0.0 L2Unix
b32 lremovexattrCIS Amazon Linux 2 v3.0.0 L2Unix
b32 setxattrCIS Amazon Linux 2 v3.0.0 L2Unix
b64 EACCESCIS Amazon Linux 2 v3.0.0 L2Unix
b64 fremovexattrCIS Amazon Linux 2 v3.0.0 L2Unix
b64 removexattrCIS Amazon Linux 2 v3.0.0 L2Unix
CISC-RT-000710 - The Cisco PE router must be configured to implement Internet Group Management Protocol (IGMP) or Multicast Listener Discovery (MLD) snooping for each Virtual Private LAN Services (VPLS) bridge domain.DISA STIG Cisco IOS XE Router RTR v3r2Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

clock_settime x64CIS Amazon Linux 2 v3.0.0 L2Unix
Configure IPsec Tunnel Parameters - cipher-suiteTenable Cisco Viptela SD-WAN - vEdgeCisco_Viptela

ACCESS CONTROL

disk_error_action = rootCIS Amazon Linux 2 v3.0.0 L2Unix
disk_full_actionCIS Amazon Linux 2 v3.0.0 L2Unix
faillockCIS Amazon Linux 2 v3.0.0 L2Unix
getenforceCIS Amazon Linux 2 v3.0.0 L2Unix
JUEX-L2-000160 - The Juniper EX switch must be configured to enable IGMP or MLD Snooping on all VLANs.DISA Juniper EX Series Layer 2 Switch v2r2Juniper

CONFIGURATION MANAGEMENT

lastlogCIS Amazon Linux 2 v3.0.0 L2Unix
query_module b64CIS Amazon Linux 2 v3.0.0 L2Unix
system-auth authfail root_unlock_timeCIS Amazon Linux 2 v3.0.0 L2Unix
Verify .net extensibility is installed - ASPNET45CIS IIS 10 v1.2.1 Level 2Windows
Verify .net extensibility is installed - NetFxExtensibility45CIS IIS 10 v1.2.1 Level 2Windows
Verify .net extensibility is installed - NetFxExtensibility45CIS IIS 8.0 v1.5.1 Level 2Windows
Verify IIS 8.0 or 8.5 installed.CIS IIS 8.0 v1.5.1 Level 2Windows
Windows Server 2012 or 2012 R2 installedCIS IIS 8.0 v1.5.1 Level 2Windows
wtmpCIS Amazon Linux 2 v3.0.0 L2Unix