Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.4 Ensure 'Database Mail XPs' Server Configuration Option is set to '0'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.9 Ensure 'SQL Mail XPs' Server Configuration Option is set to '0'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.11 Ensure Unnecessary SQL Server Protocols are set to 'Disabled' - 'TCP/IP protocol is disabled'CIS SQL Server 2008 R2 DB OS L1 v1.7.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.12 Ensure SQL Server is configured to use non-standard portsCIS SQL Server 2008 R2 DB OS L1 v1.7.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.14 Ensure 'sa' Login Account is set to 'Disabled'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

ACCESS CONTROL

2.16 Ensure 'xp_cmdshell' Server Configuration Option is set to '0'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

3.1 Ensure 'Server Authentication' Property is set to 'Windows Authentication Mode'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

IDENTIFICATION AND AUTHENTICATION

3.3 Ensure 'Orphaned Users' are Dropped From SQL Server DatabasesCIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

ACCESS CONTROL

3.4 Ensure the SQL Server's MSSQL Service Account is Not an AdministratorCIS SQL Server 2008 R2 DB OS L1 v1.7.0Windows

ACCESS CONTROL

3.10 Ensure the public role in the msdb database is not granted access to SQL Agent proxiesCIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

ACCESS CONTROL

4.2 Ensure 'CHECK_EXPIRATION' Option is set to 'ON' for All SQL Authenticated Logins Within the Sysadmin RoleCIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

ACCESS CONTROL

5.2 Ensure 'Default Trace Enabled' Server Configuration Option is set to '1'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

AUDIT AND ACCOUNTABILITY

5.3 Ensure 'Login Auditing' is set to Both 'failed' and 'successful logins'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

ACCESS CONTROL

6.1 Ensure Database and Application User Input is SanitizedCIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databasesCIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

7.2 Ensure Asymmetric Key Size is set to 'greater than or equal to 2048' in non-system databasesCIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NGWindows

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

18.9.7.2 Ensure 'Prevent automatic download of applications associated with device metadata' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v5.0.1 L1Windows

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

18.9.7.2 Ensure 'Prevent automatic download of applications associated with device metadata' is set to 'Enabled'CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BLWindows

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

18.9.7.2 Ensure 'Prevent automatic download of applications associated with device metadata' is set to 'Enabled'CIS Microsoft Windows Server 2022 v5.0.0 L1 MSWindows

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

18.9.7.2 Ensure 'Prevent automatic download of applications associated with device metadata' is set to 'Enabled'CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MSWindows

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

CIS Control 6 (6.2(a)) Activate Audit LoggingCAS Implementation Group 1 Audit FileUnix

AUDIT AND ACCOUNTABILITY

CIS Control 10 (10.2) Perform Complete System BackupsCAS Implementation Group 1 Audit FileUnix

CONTINGENCY PLANNING

CIS_Apache_Tomcat_9_L1_v1.2.0.audit from CIS Apache Tomcat 9 BenchmarkCIS Apache Tomcat 9 L1 v1.2.0Unix
CIS_Apache_Tomcat_9_L2_v1.2.0.audit from CIS Apache Tomcat 9 BenchmarkCIS Apache Tomcat 9 L2 v1.2.0Unix
CIS_CentOS_Linux_7_v4.0.0_L1_Server.audit from CIS CentOS Linux 7 Benchmark v4.0.0CIS CentOS Linux 7 v4.0.0 L1 ServerUnix
CIS_CentOS_Linux_7_v4.0.0_L2_Server.audit from CIS CentOS Linux 7 Benchmark v4.0.0CIS CentOS Linux 7 v4.0.0 L2 ServerUnix
CIS_CentOS_Linux_8_v2.0.0_L1_Server.audit from CIS CentOS Linux 8 Benchmark v2.0.0CIS CentOS Linux 8 Server L1 v2.0.0Unix
CIS_Google_Chrome_L1_v3.0.0.audit from CIS Google Chrome Benchmark v3.0.0CIS Google Chrome L1 v3.0.0Windows
CIS_Google_Kubernetes_Engine_GKE_v1.9.0_L1_Unix.audit from CIS Google Kubernetes Engine GKE v1.9.0CIS Google Kubernetes Engine GKE v1.9.0 L1 UnixUnix
CIS_Google_Kubernetes_Engine_GKE_v1.9.0_L2_Unix.audit from CIS Google Kubernetes Engine GKE v1.9.0CIS Google Kubernetes Engine GKE v1.9.0 L2 UnixUnix
CIS_IBM_DB2_9_Benchmark_v3.0.1_Level_1_OS_Linux.audit from CIS IBM DB2 9 Benchmark v3.0.1CIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS LinuxUnix
CIS_IBM_DB2_9_Benchmark_v3.0.1_Level_2_OS_Windows.audit from CIS IBM DB2 9 Benchmark v3.0.1CIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS WindowsWindows
CIS_MongoDB_3.2_Benchmark_Level_2_OS_Unix_v1.0.0.audit from CIS MongoDB 3.2 Benchmark v1.0.0CIS MongoDB 3.2 L2 Unix Audit v1.0.0Unix
CIS_Oracle_Linux_7_v4.0.0_L2_Server.audit from CIS Oracle Linux 7 Benchmark v4.0.0CIS Oracle Linux 7 v4.0.0 L2 ServerUnix
CIS_Oracle_Linux_7_v4.0.0_L2_Workstation.audit from CIS Oracle Linux 7 Benchmark v4.0.0CIS Oracle Linux 7 v4.0.0 L2 WorkstationUnix
CIS_Oracle_Linux_8_STIG_v1.0.0_CAT_III.audit from CIS Oracle Linux 8 STIG v1.0.0CIS Oracle Linux 8 STIG v1.0.0 CAT IIIUnix
CIS_Oracle_Server_12c_v3.0.0_L1_Linux.audit from CIS Oracle Database 12c Benchmark v3.0.0CIS Oracle Server 12c Linux v3.0.0Unix
CIS_Oracle_Server_12c_v3.0.0_L1_Windows.audit from CIS Oracle Database 12c Benchmark v3.0.0CIS Oracle Server 12c Windows v3.0.0Windows
CIS_Oracle_Server_18c_v1.1.0_L1_Linux.audit from CIS Oracle Database 18c Benchmark v1.1.0CIS Oracle Server 18c Linux v1.1.0Unix
CIS_SUSE_Linux_Enterprise_15_v2.0.1_L2_Workstation.audit from CIS SUSE Linux Enterprise 15 v2.0.1CIS SUSE Linux Enterprise 15 v2.0.1 L2 WorkstationUnix
CIS_Ubuntu_Linux_18.04_LTS_v2.2.0_L1_Server.audit from CIS Ubuntu Linux 18.04 LTS v2.2.0CIS Ubuntu Linux 18.04 LTS v2.2.0 L1 ServerUnix
CIS_Ubuntu_Linux_18.04_LTS_v2.2.0_L2_Server.audit from CIS Ubuntu Linux 18.04 LTS v2.2.0CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 ServerUnix
CIS_Ubuntu_Linux_18.04_LTS_v2.2.0_L2_Workstation.audit from CIS Ubuntu Linux 18.04 LTS v2.2.0CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 WorkstationUnix
CIS_Ubuntu_Linux_20.04_LTS_v3.0.0_L1_Server.audit from CIS Ubuntu Linux 20.04 LTS 3.0.0CIS Ubuntu Linux 20.04 LTS v3.0.0 L1 ServerUnix
CIS_Ubuntu_Linux_20.04_LTS_v3.0.0_L2_Server.audit from CIS Ubuntu Linux 20.04 LTS 3.0.0CIS Ubuntu Linux 20.04 LTS v3.0.0 L2 ServerUnix
CIS_Ubuntu_Linux_20.04_LTS_v3.0.0_L2_Workstation.audit from CIS Ubuntu Linux 20.04 LTS 3.0.0CIS Ubuntu Linux 20.04 LTS v3.0.0 L2 WorkstationUnix
CIS_Ubuntu_Linux_22.04_LTS_v3.0.0_L1_Server.audit from CIS Ubuntu Linux 22.04 LTS 3.0.0CIS Ubuntu Linux 22.04 LTS v3.0.0 L1 ServerUnix
CIS_Ubuntu_Linux_22.04_LTS_v3.0.0_L2_Workstation.audit from CIS Ubuntu Linux 22.04 LTS 3.0.0CIS Ubuntu Linux 22.04 LTS v3.0.0 L2 WorkstationUnix
CIS_Ubuntu_Linux_24.04_LTS_v1.0.0_L1_Workstation.audit from CIS Ubuntu Linux 24.04 LTS 1.0.0CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 WorkstationUnix