Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2 Ensure Auto Update Is EnabledCIS Apple macOS 13.0 Ventura v3.1.0 L1Unix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2 Ensure Auto Update Is EnabledCIS Apple macOS 14.0 Sonoma v2.1.0 L1Unix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.3 Ensure 'Account lockout threshold' is set to '3 or fewer invalid logon attempt(s), but not 0'CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DCWindows

ACCESS CONTROL

1.2.3 Ensure 'Account lockout threshold' is set to '3 or fewer invalid logon attempt(s), but not 0' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MSWindows

ACCESS CONTROL

2.2.2.2 Ensure 'Accept cookies' is set to 'From websites I visit' or 'From current website only'AirWatch - CIS Apple iOS 10 v2.0.0 End User Owned L1MDM
2.2.2.2 Ensure 'Accept cookies' is set to 'From websites I visit' or 'From current website only'AirWatch - CIS Apple iOS 11 v1.0.0 End User Owned L1MDM
2.2.2.2 Ensure 'Accept cookies' is set to 'From websites I visit' or 'From current website only'MobileIron - CIS Apple iOS 10 v2.0.0 End User Owned L1MDM

ACCESS CONTROL

2.3.14.1 Ensure 'System cryptography: Force strong key protection for user keys stored on the computer' is set to 'User must enter a password each time they use a key' (STIG only)CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DCWindows

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

2.4.6 Disable DVD or CD SharingCIS Apple macOS 10.13 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

2.4.6 Ensure DVD or CD Sharing Is DisabledCIS Apple macOS 10.14 v2.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.4.6 Ensure DVD or CD Sharing Is DisabledCIS Apple macOS 10.15 Catalina v3.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

3.2.2.2 Ensure 'Accept cookies' is set to 'From websites I visit' or 'From current website only'AirWatch - CIS Apple iOS 11 v1.0.0 Institution Owned L1MDM
4.1.6 Ensure 'Stolen Device Protection' Is EnabledMobileIron - CIS Apple iPadOS 17 v1.1.0 End User Owned L2MDM

IDENTIFICATION AND AUTHENTICATION

4.4 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end-user owned devicesMobileIron - CIS Apple iOS 10 v2.0.0 End User Owned L1MDM
4.4 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end-user owned devicesMobileIron - CIS Apple iOS 12 v1.0.0 End User Owned L1MDM
4.4 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end-user owned devicesAirWatch - CIS Apple iOS 10 v2.0.0 End User Owned L1MDM
4.4 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end-user owned devicesAirWatch - CIS Apple iOS 12 v1.0.0 End User Owned L1MDM
4.4 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end-user owned devicesAirWatch - CIS Apple iOS 13 and iPadOS 13 v1.0.0 End User Owned L1MDM

ACCESS CONTROL

5.11 Ensure Logging Is Enabled for SudoCIS Apple macOS 15.0 Sequoia v1.1.0 L1Unix

ACCESS CONTROL

20.20 Ensure 'DoD Interoperability Root CA cross-certificates' are installed in the 'Untrusted Certificates Store' on unclassified systemsCIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

SYSTEM AND COMMUNICATIONS PROTECTION

20.20 Ensure 'DoD Interoperability Root CA cross-certificates' are installed in the 'Untrusted Certificates Store' on unclassified systems (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DCWindows

SYSTEM AND COMMUNICATIONS PROTECTION

20.59 Ensure 'Software certificate installation files must be removed' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DCWindows

CONFIGURATION MANAGEMENT

20.67 Ensure 'The system uses an anti-virus program' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DCWindows

SYSTEM AND INFORMATION INTEGRITY

20.67 Ensure 'The system uses an anti-virus program' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MSWindows

SYSTEM AND INFORMATION INTEGRITY

AIOS-15-014500 - Apple iOS/iPadOS 15 must disable connections to Siri servers for the purpose of translation.MobileIron - DISA Apple iOS/iPadOS 14 v1r4MDM

CONFIGURATION MANAGEMENT

AIOS-16-014500 - Apple iOS/iPadOS 16 must disable connections to Siri servers for the purpose of translation.MobileIron - DISA Apple iOS/iPadOS 16 v2r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-16-014500 - Apple iOS/iPadOS 16 must disable connections to Siri servers for the purpose of translation.AirWatch - DISA Apple iOS/iPadOS 16 v2r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-17-014500 - Apple iOS/iPadOS 17 must disable connections to Siri servers for the purpose of translation.MobileIron - DISA Apple iOS/iPadOS 17 v2r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-17-014500 - Apple iOS/iPadOS 17 must disable connections to Siri servers for the purpose of translation.AirWatch - DISA Apple iOS/iPadOS 17 v2r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

AIOS-18-012200 - Apple iOS/iPadOS 18 must implement the management setting: enable USB Restricted Mode.MobileIron - DISA Apple iOS/iPadOS 18 v1r1MDM

CONFIGURATION MANAGEMENT

AIOS-18-014500 - Apple iOS/iPadOS 18 must disable connections to Siri servers for the purpose of translation.MobileIron - DISA Apple iOS/iPadOS 18 v1r1MDM

CONFIGURATION MANAGEMENT

APPL-14-000003 The macOS system must enforce session lock no more than five seconds after screen saver is started.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

ACCESS CONTROL

APPL-14-000005 The macOS system must configure user session lock when a smart token is removed.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

ACCESS CONTROL

APPL-14-000007 The macOS system must disable hot corners.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

ACCESS CONTROL

APPL-14-000054 The macOS system must limit SSHD to FIPS-compliant connections.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION

APPL-14-001017 The macOS system must configure audit log folders to mode 700 or less permissive.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

AUDIT AND ACCOUNTABILITY

APPL-14-001021 The macOS system must be configured to audit all changes of object attributes.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, MAINTENANCE

APPL-14-001110 The macOS system must configure audit_control group to wheel.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

AUDIT AND ACCOUNTABILITY

APPL-14-001120 The macOS system must configure audit_control owner to root.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

AUDIT AND ACCOUNTABILITY

APPL-14-001150 The macOS system must disable password authentication for SSH.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

APPL-14-002003 The macOS system must disable Network File System service.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

ACCESS CONTROL

APPL-14-002006 The macOS system must disable Unix-to-Unix Copy Protocol service.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

ACCESS CONTROL

APPL-14-002008 The macOS system must disable the built-in web server.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

ACCESS CONTROL

APPL-14-002017 The macOS system must disable the camera.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

CONFIGURATION MANAGEMENT

APPL-14-002041 The macOS system must disable iCloud Document synchronization.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

CONFIGURATION MANAGEMENT

APPL-14-002043 The macOS system must disable iCloud Photo Library.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

CONFIGURATION MANAGEMENT

APPL-14-002053 The macOS system must disable the system settings pane for Siri.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

CONFIGURATION MANAGEMENT

APPL-14-002080 The macOS system must disable Airplay Receiver.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

ACCESS CONTROL, CONFIGURATION MANAGEMENT

APPL-14-002170 The macOS system must disable iCloud Private Relay.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

CONFIGURATION MANAGEMENT

Catalina - Configure Apple System Log Files Owned by Root and Group to WheelNIST macOS Catalina v1.5.0 - All ProfilesUnix

SYSTEM AND INFORMATION INTEGRITY