| 1.1 Ensure packages are obtained from authorized repositories | CIS PostgreSQL 9.6 OS v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.4.4 Ensure UEFI requires authentication for single-user and maintenance modes - superusers | CIS Amazon Linux 2 STIG v1.0.0 L3 | Unix | CONFIGURATION MANAGEMENT |
| ESXi : config-firewall-access - 'CIM Server allowed' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'DHCPv6 blocked' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'DVSSync blocked' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'NFC allowed' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'NTP Client blocked' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'SNMP Server allowed' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'VM serial port connected over network blocked' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'vSphere High Availability Agent blocked' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : enable-chap-auth | VMWare vSphere 5.X Hardening Guide | VMware | IDENTIFICATION AND AUTHENTICATION |
| ESXi : enable-host-profiles | VMWare vSphere 5.X Hardening Guide | VMware | |
| ESXi : esxi-no-self-signed-certs | VMWare vSphere 5.X Hardening Guide | VMware | |
| ESXi : set-shell-interactive-timeout | VMWare vSphere 5.X Hardening Guide | VMware | ACCESS CONTROL |
| ESXi : verify-acceptance-level-certified | VMWare vSphere 5.X Hardening Guide | VMware | |
| ESXi : verify-admin-group | VMWare vSphere 5.X Hardening Guide | VMware | ACCESS CONTROL |
| ESXi : verify-config-files | VMWare vSphere 5.X Hardening Guide | VMware | |
| ESXi : verify-install-media | VMWare vSphere 5.X Hardening Guide | VMware | |
| GEN005200 - X displays must not be exported to the world. | DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit | Unix | ACCESS CONTROL |
| GEN005200 - X displays must not be exported to the world. | DISA STIG AIX 5.3 v1r2 | Unix | ACCESS CONTROL |
| GEN005200 - X displays must not be exported to the world. | DISA STIG AIX 6.1 v1r14 | Unix | ACCESS CONTROL |
| OL07-00-010491 - Oracle Linux operating systems version 7.2 or newer using Unified Extensible Firmware Interface (UEFI) must require authentication upon booting into single-user and maintenance modes - UEFI must require authentication upon booting into single-user and maintenance modes. | DISA Oracle Linux 7 STIG v3r1 | Unix | ACCESS CONTROL |
| OL08-00-010141 - OL 8 operating systems booted with United Extensible Firmware Interface (UEFI) must have a unique name for the grub superusers account when booting into single-user mode and maintenance. | DISA Oracle Linux 8 STIG v2r2 | Unix | ACCESS CONTROL |
| RHEL-07-010019 - The Red Hat Enterprise Linux operating system must ensure cryptographic verification of vendor software packages. | DISA Red Hat Enterprise Linux 7 STIG v3r15 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-07-010491 - Red Hat Enterprise Linux operating systems version 7.2 or newer using Unified Extensible Firmware Interface (UEFI) must require authentication upon booting into single-user and maintenance modes. | DISA Red Hat Enterprise Linux 7 STIG v3r15 | Unix | ACCESS CONTROL |
| RHEL-09-214010 - RHEL 9 must ensure cryptographic verification of vendor software packages. | DISA Red Hat Enterprise Linux 9 STIG v2r3 | Unix | CONFIGURATION MANAGEMENT |
| SSO : config-ntp | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : config-ntp | VMWare vSphere 5.X Hardening Guide | VMware | AUDIT AND ACCOUNTABILITY |
| vCenter : limit-user-login | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : monitor-certificate-access | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : remove-expired-certificates | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : remove-failed-install-logs | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : secure-vco-file-access | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : verify-client-plugins | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : Verify-RDP-encryption | VMWare vSphere 5.X Hardening Guide | VMware | |
| VCSA : config-ntp | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : enable-bpdu-filter | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : isolate-mgmt-network-airgap | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : isolate-mgmt-network-vlan | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : isolate-vmotion-network-airgap | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : label-vswitches | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : no-unused-dvports | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : reject-forged-transmit - 'vSwitch' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| vNetwork : restrict-netflow-usage | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : restrict-portmirror-usage | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : verify-vlan-id | VMWare vSphere 5.X Hardening Guide | VMware | |
| VUM : audit-vum-login | VMWare vSphere 5.X Hardening Guide | VMware | |
| VUM : isolate-vum-proxy | VMWare vSphere 5.X Hardening Guide | VMware | |
| VUM : no-vum-self-management | VMWare vSphere 5.X Hardening Guide | VMware | |
| WebClient : web-client-timeout | VMWare vSphere 5.X Hardening Guide | VMware | |
