Item Search

Name	Audit Name	Plugin	Category
1.2.2 Set 'modulus' to greater than or equal to 2048 for 'crypto key generate rsa'	CIS Cisco IOS XR 7.x v1.0.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.2 Set 'transport input ssh' for 'line vty' connections	CIS Cisco IOS XE 16.x v2.1.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.2 Set 'transport input ssh' for 'line vty' connections	CIS Cisco IOS XE 17.x v2.1.1 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.2 Set 'transport input ssh' for 'line vty' connections	CIS Cisco IOS 15 L1 v4.1.1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.3 Set 'seconds' for 'ssh timeout' for 60 seconds or less	CIS Cisco IOS XR 7.x v1.0.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5 Ensure hardware MFA is enabled for the 'root' user account	CIS Amazon Web Services Foundations v5.0.0 L2	amazon_aws	IDENTIFICATION AND AUTHENTICATION
1.5.8 Require 'aes 128' as minimum for 'snmp-server user' when using SNMPv3	CIS Cisco IOS XR 7.x v1.0.0 L2	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5.10 Require 'aes 128' as minimum for 'snmp-server user' when using SNMPv3	CIS Cisco IOS 12 L2 v4.0.0	Cisco	IDENTIFICATION AND AUTHENTICATION
1.8.5 Ensure users must authenticate users using MFA via a graphical user logon	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
1.9 Ensure multi-factor authentication (MFA) is enabled for all IAM users that have a console password	CIS Amazon Web Services Foundations v5.0.0 L1	amazon_aws	IDENTIFICATION AND AUTHENTICATION
1.10 Ensure required packages for multifactor authentication are installed	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'	CIS Oracle Server 18c Linux v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'	CIS Oracle Server 18c Windows v1.1.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.1.1.1.3 Set 'modulus' to greater than or equal to 2048 for 'crypto key generate rsa'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	IDENTIFICATION AND AUTHENTICATION
2.1.1.1.4 Set 'seconds' for 'ip ssh timeout'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	IDENTIFICATION AND AUTHENTICATION
2.1.1.1.5 Set maximum value for 'ip ssh authentication-retries'	CIS Cisco IOS XE 16.x v2.1.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
2.1.1.1.5 Set maximum value for 'ip ssh authentication-retries'	CIS Cisco IOS XE 17.x v2.1.1 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Debian Family Workstation L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Debian Family Server L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Debian Family Workstation L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
3.6.1.6 Configuring SSH - disallow host based authentication	CIS IBM AIX 7.1 L1 v2.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 15 OS v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly - local UNIX Domain Socket is configured correctly	CIS PostgreSQL 12 OS v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.2.2.1 (L1) Ensure multifactor authentication is enabled for all users in administrative roles	CIS Microsoft 365 Foundations v4.0.0 L1 E5	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.2.2.5 (L2) Ensure 'Phishing-resistant MFA strength' is required for Administrators	CIS Microsoft 365 Foundations v4.0.0 L2 E3	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.2.2.5 (L2) Ensure 'Phishing-resistant MFA strength' is required for Administrators	CIS Microsoft 365 Foundations v4.0.0 L2 E5	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.2.3.1 (L1) Ensure Microsoft Authenticator is configured to protect against MFA fatigue	CIS Microsoft 365 Foundations v4.0.0 L1 E5	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.2.3.1 (L1) Ensure Microsoft Authenticator is configured to protect against MFA fatigue	CIS Microsoft 365 Foundations v4.0.0 L1 E3	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.3 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 14 OS v 1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.3 Ensure login via "local" UNIX Domain Socket is configured correctly	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	PostgreSQLDB	IDENTIFICATION AND AUTHENTICATION
5.4.9 Ensure multifactor authentication for access to privileged accounts	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
5.5.7 Ensure multi-factor authentication is enable for users	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
6.2.7 Ensure that multifactor authentication is required to access Microsoft Admin Portals	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
6.6.13 Ensure SSH Key Authentication is not set for User Logins	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.1 Ensure SSH Service is Configured if Remote CLI is Required	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.3 Ensure SSH Connection Limit is Set	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.7 Ensure Only Suite B Ciphers are set for SSH - ciphers restriction	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.10 Ensure Only Suite B Key Exchange Methods are set for SSH - key-exchange restriction	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.12 Ensure Only Suite B Based Key Signing Algorithms are set for SSH - DSA keys	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.12 Ensure Only Suite B Based Key Signing Algorithms are set for SSH - ECDSA Key	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.2.2 Ensure Web-Management is Set to use HTTPS	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.1 Ensure REST is Not Set to HTTP	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.2 Ensure REST is Set to HTTPS	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.4 Ensure REST HTTPS is Set to use Mutual Authentication	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.5 Ensure REST HTTPS Cipher List is Set	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.6 Ensure REST HTTPS Cipher List is Set to Suite B Only	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
18.9.59.3.9.4 (L1) Ensure 'Require user authentication for remote connections by using Network Level Authentication' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
SNMP: Use SNMPv3 only	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search