Item Search

Name	Audit Name	Plugin	Category
2.2.3 Ensure 'GLOBAL_NAMES' Is Set to 'TRUE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
2.2.6 Ensure 'REMOTE_LOGIN_PASSWORDFILE' Is Set to 'NONE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.2.7 Ensure 'REMOTE_OS_AUTHENT' Is Set to 'FALSE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.2.8 Ensure 'REMOTE_OS_ROLES' Is Set to 'FALSE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.2.9 Ensure 'SEC_CASE_SENSITIVE_LOGON' Is Set to 'TRUE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
2.2.11 Ensure 'SEC_PROTOCOL_ERROR_FURTHER_ACTION' Is Set to '(DROP,3)'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.13 Ensure 'SEC_RETURN_SERVER_RELEASE_BANNER' Is Set to 'FALSE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
2.2.13 Ensure 'SEC_RETURN_SERVER_RELEASE_BANNER' Is Set to 'FALSE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
2.2.14 Ensure 'SQL92_SECURITY' Is Set to 'TRUE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
2.2.17 Ensure 'PDB_OS_CREDENTIAL' is NOT null	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
3.3 Ensure 'PASSWORD_LIFE_TIME' Is Less than or Equal to '90'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
3.5 Ensure 'PASSWORD_REUSE_TIME' Is Greater than or Equal to '365'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
3.7 Ensure 'PASSWORD_VERIFY_FUNCTION' Is Set for All Profiles	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
3.8 Ensure 'SESSIONS_PER_USER' Is Less than or Equal to '10'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL
3.9 Ensure 'INACTIVE_ACCOUNT_TIME' Is Less than or Equal to '120'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
4.1 Ensure All Default Passwords Are Changed	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
4.3 Ensure 'DBA_USERS.AUTHENTICATION_TYPE' Is Not Set to 'EXTERNAL' for Any User	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
4.6 Ensure No Public Database Links Exist	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.1.3 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "Encryption" Packages	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.3.2 Ensure 'ALL' Is Revoked from Unauthorized 'GRANTEE' on 'DBA_%'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.1 Ensure '%ANY%' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.2 Ensure 'DBA_SYS_PRIVS.%' Is Revoked from Unauthorized 'GRANTEE' with 'ADMIN_OPTION' Set to 'YES'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.3 Ensure 'EXECUTE ANY PROCEDURE' Is Revoked from 'OUTLN'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.7 Ensure 'AUDIT SYSTEM' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.11 Ensure 'ALTER SYSTEM' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.12 Ensure 'CREATE ANY LIBRARY' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.15 Ensure 'GRANT ANY ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.16 Ensure 'GRANT ANY PRIVILEGE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.3.2 Ensure 'EXECUTE_CATALOG_ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
6.1.6 Ensure the 'PUBLIC DATABASE LINK' Audit Option Is Enabled	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.10 Ensure the 'SELECT ANY DICTIONARY' Audit Option Is Enabled	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.12 Ensure the 'GRANT ANY PRIVILEGE' Audit Option Is Enabled	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.13 Ensure the 'DROP ANY PROCEDURE' Audit Option Is Enabled	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.1.17 Ensure the 'TRIGGER' Audit Option Is Enabled	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
18.6.8.1 (L1) Ensure 'Require Encryption' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.6.8.2 (L1) Ensure 'Require Encryption' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.6.8.7 (L1) Ensure 'Require Encryption' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.6.8.7 (L1) Ensure 'Require Encryption' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.6.8.7 (L1) Ensure 'Require Encryption' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.6.11.3 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
18.6.11.3 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
18.6.11.4 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	ACCESS CONTROL
18.6.11.4 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 MS	Windows	ACCESS CONTROL
18.6.11.4 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 DC	Windows	ACCESS CONTROL
18.6.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication', 'Require Integrity', and 'Require Privacy' set for all NETLOGON and SYSVOL shares'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	IDENTIFICATION AND AUTHENTICATION
18.6.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication', 'Require Integrity', and 'Require Privacy' set for all NETLOGON and SYSVOL shares'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.20.1.3 (L2) Ensure 'Turn off handwriting personalization data sharing' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.9.20.1.3 (L2) Ensure 'Turn off handwriting personalization data sharing' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.9.59.3.9.1 Ensure 'Always prompt for password upon connection' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.65.3.9.1 Ensure 'Always prompt for password upon connection' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search