Item Search

Name	Audit Name	Plugin	Category
1.1.22 Ensure that the --kubelet-client-certificate and --kubelet-client-key arguments are set as appropriate - certificate	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.1.22 Ensure that the --kubelet-client-certificate and --kubelet-client-key arguments are set as appropriate - key	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.2.1 Set the 'hostname'	CIS Cisco IOS XR 7.x v1.0.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.2 Set 'modulus' to greater than or equal to 2048 for 'crypto key generate rsa'	CIS Cisco IOS XR 7.x v1.0.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.2 Set 'transport input ssh' for 'line vty' connections	CIS Cisco IOS 15 L1 v4.1.1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.2 Set 'transport input ssh' for 'line vty' connections	CIS Cisco IOS XE 17.x v2.1.1 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.2 Set 'transport input ssh' for 'line vty' connections	CIS Cisco IOS XE 16.x v2.1.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.3 Set 'seconds' for 'ssh timeout' for 60 seconds or less	CIS Cisco IOS XR 7.x v1.0.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.4 Ensure MFA is enabled for the 'root' user account	CIS Amazon Web Services Foundations v5.0.0 L1	amazon_aws	IDENTIFICATION AND AUTHENTICATION
1.5 Ensure hardware MFA is enabled for the 'root' user account	CIS Amazon Web Services Foundations v5.0.0 L2	amazon_aws	IDENTIFICATION AND AUTHENTICATION
1.5.7 Set 'priv' for each 'snmp-server group' using SNMPv3	CIS Cisco IOS XR 7.x v1.0.0 L2	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5.8 Require 'aes 128' as minimum for 'snmp-server user' when using SNMPv3	CIS Cisco IOS XR 7.x v1.0.0 L2	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5.9 Set 'priv' for each 'snmp-server group' using SNMPv3	CIS Cisco IOS XE 17.x v2.1.1 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5.10 Require 'aes 128' as minimum for 'snmp-server user' when using SNMPv3	CIS Cisco IOS 12 L2 v4.0.0	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5.10 Require 'aes 128' as minimum for 'snmp-server user' when using SNMPv3	CIS Cisco IOS XE 17.x v2.1.1 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.9 Ensure multi-factor authentication (MFA) is enabled for all IAM users that have a console password	CIS Amazon Web Services Foundations v5.0.0 L1	amazon_aws	IDENTIFICATION AND AUTHENTICATION
2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'	CIS Oracle Server 18c Linux v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'	CIS Oracle Server 18c Windows v1.1.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'	CIS Oracle Server 12c Windows v3.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Debian Family Workstation L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Debian Family Server L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Debian Family Server L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Debian Family Workstation L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.2 Ensure rsh client is not installed	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.2 Ensure rsh client is not installed	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.2 Ensure rsh client is not installed	CIS Distribution Independent Linux Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.2 Ensure rsh client is not installed	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.4 Ensure telnet client is not installed	CIS Distribution Independent Linux Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.4 Ensure telnet client is not installed	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.4 Ensure telnet client is not installed	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
4.1.1 Ensure only MFA enabled identities can access privileged Virtual Machine	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 16 OS v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 15 OS v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 9.5 OS v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 9.6 OS v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 10 OS v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly - local UNIX Domain Socket is configured correctly	CIS PostgreSQL 12 OS v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.3 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 14 OS v 1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.3 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 13 OS v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.3 Ensure login via "local" UNIX Domain Socket is configured correctly	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	PostgreSQLDB	IDENTIFICATION AND AUTHENTICATION
6.2.6 Ensure that multifactor authentication is required for Windows Azure Service Management API	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
6.2.7 Ensure that multifactor authentication is required to access Microsoft Admin Portals	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
18.9.59.3.9.2 (L1) Ensure 'Require secure RPC communication' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.59.3.9.3 (L1) Ensure 'Require use of specific security layer for remote (RDP) connections' is set to 'Enabled: SSL'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.59.3.9.4 (L1) Ensure 'Require user authentication for remote connections by using Network Level Authentication' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.59.3.9.5 (L1) Ensure 'Set client connection encryption level' is set to 'Enabled: High Level'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search