Item Search

Name	Audit Name	Plugin	Category
1.1.1.8 Ensure mounting of FAT filesystems is disabled - lsmod	CIS SUSE Linux Enterprise Workstation 11 L2 v2.1.1	Unix	CONFIGURATION MANAGEMENT
1.1.1.8 Ensure mounting of FAT filesystems is disabled - lsmod	CIS SUSE Linux Enterprise Server 11 L2 v2.1.1	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure separate partition exists for /tmp	CIS Ubuntu Linux 14.04 LTS Workstation L2 v2.1.0	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure separate partition exists for /tmp	CIS Ubuntu Linux 14.04 LTS Server L2 v2.1.0	Unix	CONFIGURATION MANAGEMENT
1.1.3.9.6 Set 'MSS: (AutoReboot) Allow Windows to automatically restart after a system crash' to 'Not Defined'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.1.3.11.6 Configure 'Network Security: Restrict NTLM: Add server exceptions in this domain'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.1.5 Ensure separate partition exists for /var	CIS Ubuntu Linux 14.04 LTS Server L2 v2.1.0	Unix	CONFIGURATION MANAGEMENT
1.1.12 Ensure separate partition exists for /home	CIS Ubuntu Linux 14.04 LTS Server L2 v2.1.0	Unix	CONFIGURATION MANAGEMENT
1.2.4.2.2.24 Configure 'Configure TPM platform validation profile for native UEFI firmware configurations'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.10.3 Ensure 'logging to monitor' is disabled	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
1.10.12 Ensure email logging is configured for critical to emergency	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
1.11.1 Ensure 'snmp-server group' is set to 'v3 priv'	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
1.11.2 Ensure 'snmp-server user' is set to 'v3 auth SHA'	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
1.11.4 Ensure 'SNMP traps' is enabled - authentication	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
1.11.4 Ensure 'SNMP traps' is enabled - coldstart	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
2.1.1 Ensure 'RIP authentication' is enabled	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
2.1.1.2 Set version 2 for 'ip ssh version'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	CONFIGURATION MANAGEMENT
2.1.1.2 Set version 2 for 'ip ssh version'	CIS Cisco IOS XE 16.x v2.1.0 L1	Cisco	CONFIGURATION MANAGEMENT
2.1.2 Ensure 'OSPF authentication' is enabled	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
2.1.3 Ensure 'EIGRP authentication' is enabled	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
2.1.11 Ensure CDN is enabled for improved GUI performance	CIS Fortigate 7.0.x v1.3.0 L2	FortiGate	CONFIGURATION MANAGEMENT
2.2 Ensure 'noproxyarp' is enabled for untrusted interfaces	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	CONFIGURATION MANAGEMENT
2.4 Ensure DHCP services are disabled for untrusted interfaces - dhcprelay	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
3.3 Ensure packet fragments are restricted for untrusted interfaces	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
3.3.12 nfs_use_reserved_ports - nfs_use_reserved_ports	CIS IBM AIX 7.1 L1 v2.1.0	Unix	CONFIGURATION MANAGEMENT
3.3.12 nfs_use_reserved_ports - portcheck	CIS IBM AIX 7.1 L1 v2.1.0	Unix	CONFIGURATION MANAGEMENT
3.6 Ensure 'threat-detection statistics' is set to 'tcp-intercept'	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
3.7 Ensure 'ip verify' is set to 'reverse-path' for untrusted interfaces	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
3.10 Ensure ActiveX filtering is enabled	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
4.1.3.1 Ensure 'samesite' SameSite attribute is set to 'Strict' for additional cookies	CIS IBM WebSphere Liberty v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
4.4 Restrict access to Tomcat logs directory	CIS Apache Tomcat 7 L1 v1.1.0 Middleware	Unix	CONFIGURATION MANAGEMENT
4.4.9 Ensure ''trustedSensitiveHeaderOrigin'' is set to trusted host names and IP addresses for sensitive data	CIS IBM WebSphere Liberty v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
5.2.11 Minimize the admission of Windows HostProcess Containers	CIS Kubernetes v1.10.0 L1 Master	Unix	CONFIGURATION MANAGEMENT
5.2.12 Minimize the admission of HostPath volumes	CIS Kubernetes v1.10.0 L1 Master	Unix	CONFIGURATION MANAGEMENT
5.2.13 Minimize the admission of containers which use HostPorts	CIS Kubernetes v1.10.0 L1 Master	Unix	CONFIGURATION MANAGEMENT
43 - Do not resolve hosts on logging valves - SERVER_XML	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
Directory access permissions should be restricted.	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
Directory access permissions should be restricted.	TNS IBM HTTP Server Best Practice Middleware	Unix	CONFIGURATION MANAGEMENT
Ensure 'EIGRP authentication' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'Failover' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'HTTP session timeout' is less than or equal to '5' minutes	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'noproxyarp' is enabled for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'RIP authentication' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'SNMP traps' is enabled - authentication	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'SNMP traps' is enabled - linkdown	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'SNMP traps' is enabled - linkup	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure DHCP services are disabled for untrusted interfaces - dhcprelay	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure email logging is configured for critical to emergency	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure ICMP is restricted for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure packet fragments are restricted for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search