Item Search

Name	Audit Name	Plugin	Category
1.1.1.2 Ensure mounting of squashfs filesystems is disabled	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.1.15 Ensure separate partition exists for /var/log	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.1.17 Ensure separate partition exists for /home	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.3 Leverage the least privilege principle	CIS IBM DB2 v10 v1.1.0 Database Level 2	IBM_DB2DB
1.4.3 Ensure address space layout randomization (ASLR) is enabled	CIS Google Container-Optimized OS v1.2.0 L1 Server	Unix	SYSTEM AND INFORMATION INTEGRITY
1.5.3 Ensure address space layout randomization (ASLR) is enabled - sysctl	CIS Debian 8 Workstation L1 v2.0.2	Unix	SYSTEM AND INFORMATION INTEGRITY
3.1.1 Disable IPv6	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
4.1.1 Creating the Database Without PUBLIC Grants (RESTRICTIVE)	CIS IBM DB2 11 v1.1.0 Database Level 2	IBM_DB2DB	ACCESS CONTROL, MEDIA PROTECTION
4.1.1.1 Ensure auditd is installed	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.1.2 Ensure auditd service is enabled and running	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.2 Ensure audit logs are not automatically deleted	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.5 Ensure system is disabled when audit logs are full	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.1 Ensure events that modify date and time information are collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.2 Ensure system administrator command executions (sudo) are collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.3 Ensure session initiation information is collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.5 Ensure events that modify the system's network environment are collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.6 Ensure successful file system mounts are collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.8 Ensure changes to system administration scope (sudoers) is collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.9 Ensure file deletion events by users are collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.13 Ensure login and logout events are collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.41 Ensure the audit configuration is immutable	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.4 Review Row Permission logic according to policy	CIS IBM DB2 v10 v1.1.0 Database Level 2	IBM_DB2DB
6.4.1 Ensure Trusted Contexts are Enabled	CIS IBM DB2 11 v1.1.0 Database Level 2	IBM_DB2DB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.8 Restrict Access to SYSCAT.INDEXAUTH	CIS IBM DB2 v10 v1.1.0 Database Level 2	IBM_DB2DB	ACCESS CONTROL
6.15 Restrict Access to SYSCAT.ROLEAUTH	CIS IBM DB2 v10 v1.1.0 Database Level 2	IBM_DB2DB	ACCESS CONTROL
6.22 Restrict Access to SYSCAT.TABAUTH	CIS IBM DB2 v10 v1.1.0 Database Level 2	IBM_DB2DB	ACCESS CONTROL
6.25 Restrict Access to SYSCAT.MODULEAUTH	CIS IBM DB2 v10 v1.1.0 Database Level 2	IBM_DB2DB	ACCESS CONTROL
7.5 Secure SECADM Authority	CIS IBM DB2 v10 v1.1.0 Database Level 2	IBM_DB2DB
7.11 Secure CREATAB Authority	CIS IBM DB2 v10 v1.1.0 Database Level 2	IBM_DB2DB
7.14 Secure LOAD Authority	CIS IBM DB2 v10 v1.1.0 Database Level 2	IBM_DB2DB
8.2.1 Encrypt the Database	CIS IBM DB2 11 v1.1.0 Database Level 2	IBM_DB2DB	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
8.2.9 Rotate the Master Key	CIS IBM DB2 11 v1.1.0 Database Level 2	IBM_DB2DB	IDENTIFICATION AND AUTHENTICATION
8.2.10 Turn Off ALLOW_KEY_INSERT_WITHOUT_KEYSTORE_BACKUP	CIS IBM DB2 11 v1.1.0 Database Level 2	IBM_DB2DB	CONFIGURATION MANAGEMENT
8.2.13 Set CFG Values in a Single Command	CIS IBM DB2 11 v1.1.0 Database Level 2	IBM_DB2DB	CONFIGURATION MANAGEMENT
8.4 Review Roles granted to PUBLIC	CIS IBM DB2 v10 v1.1.0 Database Level 2	IBM_DB2DB
ARST-L2-000100 - The Arista MLS layer 2 switch must have IP Source Guard enabled on all user-facing or untrusted access switch ports.	DISA STIG Arista MLS EOS 4.2x L2S v2r1	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
Catalina - Configure SSHD to Use Secure Key Exchange Algorithms	NIST macOS Catalina v1.5.0 - All Profiles	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, MAINTENANCE
CISC-L2-000140 - The Cisco switch must have IP Source Guard enabled on all user-facing or untrusted access switch ports.	DISA STIG Cisco IOS Switch L2S v3r1	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
GEN005305 - The SNMP service must use only SNMPv3 or its successors - /etc/snmp/conf/snmpd.conf	DISA STIG Solaris 10 SPARC v2r4	Unix	CONFIGURATION MANAGEMENT
GEN005305 - The SNMP service must use only SNMPv3 or its successors.	DISA STIG AIX 5.3 v1r2	Unix	ACCESS CONTROL
JUEX-L2-000040 - The Juniper EX switch must be configured to manage excess bandwidth to limit the effects of packet flooding types of denial-of-service (DoS) attacks.	DISA Juniper EX Series Layer 2 Switch v2r3	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUEX-L2-000050 - The Juniper EX switch must be configured to permit authorized users to select a user session to capture.	DISA Juniper EX Series Layer 2 Switch v2r3	Juniper	AUDIT AND ACCOUNTABILITY
JUEX-L2-000060 - The Juniper EX switch must be configured to permit authorized users to remotely view, in real time, all content related to an established user session from a component separate from the layer 2 switch.	DISA Juniper EX Series Layer 2 Switch v2r3	Juniper	AUDIT AND ACCOUNTABILITY
JUEX-L2-000080 - The Juniper EX switch must be configured to enable Root Protection on STP switch ports connecting to access layer switches.	DISA Juniper EX Series Layer 2 Switch v2r3	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUEX-L2-000130 - The Juniper EX switch must be configured to enable IP Source Guard on all user-facing or untrusted access VLANs.	DISA Juniper EX Series Layer 2 Switch v2r3	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUEX-L2-000140 - The Juniper EX switch must be configured to enable Dynamic Address Resolution Protocol (ARP) Inspection (DAI) on all user VLANs.	DISA Juniper EX Series Layer 2 Switch v2r3	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUEX-L2-000180 - The Juniper EX switch must be configured to verify two-way connectivity on all interswitch trunked interfaces.	DISA Juniper EX Series Layer 2 Switch v2r3	Juniper	CONFIGURATION MANAGEMENT
JUEX-L2-000190 - The Juniper EX switch must be configured to assign all explicitly disabled access interfaces to an unused VLAN.	DISA Juniper EX Series Layer 2 Switch v2r3	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUEX-L2-000210 - The Juniper EX switch must be configured to prune the default VLAN from all trunked interfaces that do not require it.	DISA Juniper EX Series Layer 2 Switch v2r3	Juniper	CONFIGURATION MANAGEMENT
Monterey - Configure SSHD to Use Secure Key Exchange Algorithms	NIST macOS Monterey v1.0.0 - All Profiles	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Detections

Analytics

Item Search