1.1.3.9.9 Configure 'MSS: (NoDefaultExempt) Configure IPSec exemptions for various types of network traffic.' | CIS Windows 8 L1 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
1.3.8 Configure MachineKey Validation Method - .Net 4.5 | CIS IIS 7.0 L1 v1.7.1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
1.6.1 Encrypt FTP Requests - Control Channel Sites | CIS IIS 8.0 v1.4.0 Level 1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
1.7.6 Enable TLS 1.2 - Enabled | CIS IIS 8.0 v1.4.0 Level 1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
1.7.7 Disable NULL Cipher Suites | CIS IIS 7.0 L1 v1.7.1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
1.7.9 Disable RC2 Cipher Suites - 'RC2 40/128' | CIS IIS 7.5 L1 v1.7.1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
1.7.9 Disable RC2 Cipher Suites - RC2 56/128 | CIS IIS 8.0 v1.4.0 Level 1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
1.7.10 Disable RC4 Cipher Suites - 'RC4 128/128' | CIS IIS 7.5 L1 v1.7.1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
1.7.10 Disable RC4 Cipher Suites - RC4 64/128 | CIS IIS 8.0 v1.4.0 Level 1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
1.7.10 Disable RC4 Cipher Suites - RC4 128/128 | CIS IIS 8.0 v1.4.0 Level 1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption' | CIS Windows 7 Workstation Level 1 v3.2.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption' | CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2' | CIS Windows 7 Workstation Level 1 + Bitlocker v3.1.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
2.19 Encrypt data exchanged between containers on different nodes on the overlay network | CIS Docker 1.13.0 v1.0.0 L1 Docker | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
3.1.2 Encrypt user data across the network | CIS v1.1.0 IBM DB2 v10 Windows OS Level 2 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
3.12 - Security Interoperability Mode is not set | TNS Oracle WebLogic Server 11 Linux Best Practices | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
3.12 - Security Interoperability Mode is not set | TNS Oracle WebLogic Server 11 Windows Best Practices | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
18.4.4 (L1) Ensure 'Enable Certificate Padding' is set to 'Enabled' | CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
18.4.5 (L1) Ensure 'Enable Certificate Padding' is set to 'Enabled' | CIS Microsoft Windows 10 Enterprise v3.0.0 L1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
18.4.5 (L1) Ensure 'Enable Certificate Padding' is set to 'Enabled' | CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
18.4.5 (L1) Ensure 'Enable Certificate Padding' is set to 'Enabled' | CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
18.4.5 (L1) Ensure 'Enable Certificate Padding' is set to 'Enabled' | CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
18.4.5 (L1) Ensure 'Enable Certificate Padding' is set to 'Enabled' | CIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
19 - LDAP Signing and Sealing | NetApp Security Hardening Guide for ONTAP 9 v1.7.0 | Netapp_API | SYSTEM AND COMMUNICATIONS PROTECTION |
Connection settings - 'pg_hba.conf no 'hostnossl' entries exist' | TNS PostgreSQL 9.1 Best Practices Windows OS | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
IBM i : Secure Sockets Layer (SSL) cipher control (QSSLCSLCTL) - '*OPSYS' | IBM System i Security Reference for V7R3 | AS/400 | SYSTEM AND COMMUNICATIONS PROTECTION |
IBM i : Secure Sockets Layer (SSL) cipher control (QSSLCSLCTL) - '*OPSYS' | IBM System i Security Reference for V7R1 and V6R1 | AS/400 | SYSTEM AND COMMUNICATIONS PROTECTION |
IBM i : Secure Sockets Layer (SSL) protocols (QSSLPCL) - '*OPSYS' | IBM System i Security Reference for V7R1 and V6R1 | AS/400 | SYSTEM AND COMMUNICATIONS PROTECTION |
IBM i : Secure Sockets Layer (SSL) protocols (QSSLPCL) - '*OPSYS' | IBM System i Security Reference for V7R2 | AS/400 | SYSTEM AND COMMUNICATIONS PROTECTION |
Local intranet Zone - Set to Prompt 'Display mixed content' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
MobileIron - LDAP Configuration - iOS - LDAP SSL | MobileIron - TNS MDM Best Practices Audit v1.1.0 | MDM | SYSTEM AND COMMUNICATIONS PROTECTION |
MongoDB sslMode | TNS MongoDB 2.x Best Practices Database Audit v1.0 | MongoDB | SYSTEM AND COMMUNICATIONS PROTECTION |
NET-IPV6-015 - OSPFv3 routing protocol is not authenticated - 'ipv6 ospf authentication ips spi (md5) | DISA STIG Cisco Perimeter Router v8r8 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0400 - Interior routing protocols are not authenticated - 'IS-IS (Interface Check - isis authentication mode)' | DISA STIG Cisco Perimeter Router v8r8 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0400 - Interior routing protocols are not authenticated - 'RIPv2 (Interface Check - authentication mode)' | DISA STIG Cisco Perimeter Router v8r8 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET1623 - Devices are not password protected for out-of-band - 'CON port (transport input ssh)' | DISA STIG Cisco Perimeter Router v8r8 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients | MSCT Windows 11 v22H2 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients | MSCT MSCT Windows Server 2022 DC v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients | MSCT Windows Server 2022 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients | MSCT Windows 11 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers | MSCT Windows 11 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers | MSCT MSCT Windows Server 2022 DC v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers | MSCT Windows Server 2022 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
WG140 - A private web server does not require subscriber certificates as an access control mechanism. - 'AccessSSL Enabled' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
WG340 - A Private web server is not using TLS - 'HKLM\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Client' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
WG340 - A Private web server is not using TLS - 'HKLM\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
WG342 - Public web servers that use SSL do not use the correct version to provide encrypted sessions - 'SSL 3.0 Client' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
WG342 - Public web servers that use SSL do not use the correct version to provide encrypted sessions - 'SSL Enabled' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
WG342 - Public web servers that use SSL do not use the correct version to provide encrypted sessions - 'TLS 1.0 Client' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
WG342 - Public web servers that use SSL do not use the correct version to provide encrypted sessions - 'TLS 1.0 Server' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |