Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.12 WN16-00-000140CIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT IIWindows

CONFIGURATION MANAGEMENT

1.12 WN16-00-000140CIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT IIWindows

CONFIGURATION MANAGEMENT

1.12 WN19-00-000120CIS Microsoft Windows Server 2019 STIG v4.0.0 MS CAT IIWindows

CONFIGURATION MANAGEMENT

1.12 WN22-00-000120CIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT IIWindows

CONFIGURATION MANAGEMENT

2.4.3 (L2) Ensure Microsoft Defender for Cloud Apps is enabled and configuredCIS Microsoft 365 Foundations v5.0.0 L2 E5microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NGWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 11 Stand-alone v4.0.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 11 Enterprise v4.0.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLockerWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows Server 2016 v4.0.0 L1 MSWindows

SYSTEM AND INFORMATION INTEGRITY

Administrative actions are loggedTNS Citrix HypervisorUnix

AUDIT AND ACCOUNTABILITY

DTAM104 - McAfee VirusScan On-Access Default Processes Policies must be configured to find unknown unwanted programs and trojans.DISA McAfee VirusScan 8.8 Managed Client STIG v6r1Windows

SYSTEM AND INFORMATION INTEGRITY

DTAVSEL-102 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Demand scanner must be configured to find unknown program viruses.McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5Unix

SYSTEM AND INFORMATION INTEGRITY

HP ProCurve - 'Configure login attempts'TNS HP ProCurveHPProCurve

ACCESS CONTROL

HP ProCurve - 'Disable IP Stack Management'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT

HP ProCurve - 'Disable TFTP server'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT

HP ProCurve - 'RADIUS or TACACS Authentication is configured'TNS HP ProCurveHPProCurve
Install a trusted certificate in place of the default self-signed SSL certificateTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Restrict allowed IPv4 addresses used by each VM guestTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Ensure default 'admin' username is not usedTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Anti-Spyware - WLANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - AutoDownload Firmware - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Client AV Enforcement On - DMZTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Client AV Enforcement On - WLANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Flood Protection - Layer 3 - Attack ThresholdTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - Layer 3 - Protection ModeTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Login Banner - Trusted ZoneTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Password Policy - Affected User typesTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Affected User types - limited-adminsTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Change Period <=30 daysTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - PW Policy - Lockout - Num Attempts <=3TNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Security Services - Client AV - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - CIFS/NetbiosTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - IMAPTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - SMTP InboundTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - TCP Stream OutboundTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - IDP - ActivatedTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - IDP - Signature TimestampTNS SonicWALL v5.9SonicWALL

AUDIT AND ACCOUNTABILITY

SonicWALL - SSL Control - Enable BlacklistTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Unused InterfacesTNS SonicWALL v5.9SonicWALL

CONFIGURATION MANAGEMENT

SonicWALL - Use non default admin access ports - HTTPSTNS SonicWALL v5.9SonicWALL

CONFIGURATION MANAGEMENT

SonicWALL - Web Interface - Does not use self-signed certTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

Use a static IP on the storage network interfaceTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

XenServer - All network interfaces are operating in full-duplex modeTNS Citrix XenServerUnix
XenServer - Auto-start is not enabledTNS Citrix XenServerUnix
XenServer - Enable QoS on all VM guestsTNS Citrix XenServerUnix
XenServer - Host is enabledTNS Citrix XenServerUnix
XenServer - Passwords stored in 'secrets' are not visibleTNS Citrix XenServerUnix
XenServer - Restrict allowed IPv4 addresses used by each VM guestTNS Citrix XenServerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

XenServer - Use a static IP on the management network interfaceTNS Citrix XenServerUnix