Item Search

Name	Audit Name	Plugin	Category
1.2.1 Set the 'hostname'	CIS Cisco IOS XR 7.x v1.0.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.2 Set 'modulus' to greater than or equal to 2048 for 'crypto key generate rsa'	CIS Cisco IOS XR 7.x v1.0.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.2 Set 'transport input ssh' for 'line vty' connections	CIS Cisco IOS 15 L1 v4.1.1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.2 Set 'transport input ssh' for 'line vty' connections	CIS Cisco IOS XE 17.x v2.1.1 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5.7 Set 'priv' for each 'snmp-server group' using SNMPv3	CIS Cisco IOS XR 7.x v1.0.0 L2	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5.10 Require 'aes 128' as minimum for 'snmp-server user' when using SNMPv3	CIS Cisco IOS 12 L2 v4.0.0	Cisco	IDENTIFICATION AND AUTHENTICATION
1.6 Ensure hardware MFA is enabled for the 'root' user account	CIS Amazon Web Services Foundations v4.0.1 L2	amazon_aws	IDENTIFICATION AND AUTHENTICATION
1.10 Ensure multi-factor authentication (MFA) is enabled for all IAM users that have a console password	CIS Amazon Web Services Foundations v4.0.1 L1	amazon_aws	IDENTIFICATION AND AUTHENTICATION
2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'	CIS Oracle Server 18c Linux v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'	CIS Oracle Server 18c Windows v1.1.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.1.1.1.3 Set 'modulus' to greater than or equal to 2048 for 'crypto key generate rsa'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	IDENTIFICATION AND AUTHENTICATION
2.1.1.1.4 Set 'seconds' for 'ip ssh timeout'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	IDENTIFICATION AND AUTHENTICATION
2.1.1.1.5 Set maximum value for 'ip ssh authentication-retries'	CIS Cisco IOS XE 17.x v2.1.1 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
2.1.1.1.5 Set maximum value for 'ip ssh authentication-retries'	CIS Cisco IOS XE 16.x v2.1.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Debian Family Server L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Debian Family Workstation L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Debian Family Server L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Debian Family Workstation L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.7 Ensure Multi-factor Authentication is Required for Windows Azure Service Management API	CIS Microsoft Azure Foundations v3.0.0 L2	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
3.6.1.6 Configuring SSH - disallow host based authentication	CIS IBM AIX 7.1 L1 v2.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.2.2.1 Ensure multifactor authentication is enabled for all users in administrative roles	CIS Microsoft 365 Foundations E3 L1 v3.1.0	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.2.2.5 Ensure 'Phishing-resistant MFA strength' is required for Administrators	CIS Microsoft 365 Foundations E3 L2 v3.1.0	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.2.3.1 Ensure Microsoft Authenticator is configured to protect against MFA fatigue	CIS Microsoft 365 Foundations E3 L1 v3.1.0	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.3 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 14 OS v 1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.3.9 Ensure multifactor authentication for access to privileged accounts	CIS Amazon Linux 2 STIG v1.0.0 L3	Unix	IDENTIFICATION AND AUTHENTICATION
6.6.13 Ensure SSH Key Authentication is not set for User Logins	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.3 Ensure SSH Connection Limit is Set	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.7 Ensure Only Suite B Ciphers are set for SSH - ciphers restriction	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.7 Ensure Only Suite B Ciphers are set for SSH - weak ciphers	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.10 Ensure Only Suite B Key Exchange Methods are set for SSH - weak key-exchange	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.12 Ensure Only Suite B Based Key Signing Algorithms are set for SSH - DSA keys	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.12 Ensure Only Suite B Based Key Signing Algorithms are set for SSH - ECDSA Key	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.2.1 Ensure Web-Management is not Set to HTTP	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.2.2 Ensure Web-Management is Set to use HTTPS	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.2.4 Ensure Idle Timeout is Set for Web-Management	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.3.4 Ensure XNM-SSL SSLv3 Support is Not Set	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.1 Ensure REST is Not Set to HTTP	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.2 Ensure REST is Set to HTTPS	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.3 Ensure REST is Set to use PKI Certificate for HTTPS	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.4 Ensure REST HTTPS is Set to use Mutual Authentication	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.5 Ensure REST HTTPS Cipher List is Set	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.6 Ensure REST HTTPS Cipher List is Set to Suite B Only	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
8.10 Ensure only MFA enabled identities can access privileged Virtual Machine	CIS Microsoft Azure Foundations v3.0.0 L2	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
18.9.59.3.9.3 (L1) Ensure 'Require use of specific security layer for remote (RDP) connections' is set to 'Enabled: SSL'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.59.3.9.4 (L1) Ensure 'Require user authentication for remote connections by using Network Level Authentication' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
SNMP: Use SNMPv3 only	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search