Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.4 Configure TCP Wrappers - Deny access to this server from all networksCIS Solaris 10 L1 v5.2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.4 Configure TCP Wrappers - Make sure that /etc/hosts.deny does exist.CIS Solaris 10 L1 v5.2Unix

CONFIGURATION MANAGEMENT

2.5 Ensure Non-Default, Unique Cryptographic Material is in UseCIS MySQL 5.6 Community Linux OS L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.5 Ensure Non-Default, Unique Cryptographic Material is in UseCIS MySQL 5.7 Enterprise Linux OS L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

2.5 Ensure Non-Default, Unique Cryptographic Material is in UseCIS MySQL 5.7 Enterprise Windows OS L1 v2.0.0Windows
2.5 Ensure Non-Default, Unique Cryptographic Material is in UseCIS MySQL 5.6 Enterprise Windows OS L2 v2.0.0Windows
2.6 Ensure Non-Default, Unique Cryptographic Material is in UseCIS Oracle MySQL Enterprise Edition 8.4 v1.1.0 L1 MySQL RDBMS on Linux UnixUnix

CONFIGURATION MANAGEMENT

2.6 Ensure Non-Default, Unique Cryptographic Material is in UseCIS Oracle MySQL Community Server 8.4 v1.1.0 L1 MySQL RDBMS on Linux UnixUnix

CONFIGURATION MANAGEMENT

2.10 Ensure Only Approved Ciphers are UsedCIS MySQL 5.6 Enterprise Database L2 v2.0.0MySQLDB

SYSTEM AND SERVICES ACQUISITION

2.11 Implement Connection Delays to Limit Failed Login Attempts - connection_control_failed_connections_thresholdCIS MySQL 5.6 Community Database L1 v2.0.0MySQLDB

ACCESS CONTROL

2.14 Ensure Only Approved Ciphers are Used - ssl_cipherCIS MySQL 5.7 Community Database L2 v2.0.0MySQLDB

SYSTEM AND SERVICES ACQUISITION

2.14 Ensure Only Approved Ciphers are Used - ssl_cipherCIS MySQL 5.7 Enterprise Database L2 v2.0.0MySQLDB

SYSTEM AND SERVICES ACQUISITION

2.15 Implement Connection Delays to Limit Failed Login Attempts - connection_control_failed_connections_thresholdCIS MySQL 5.7 Community Database L1 v2.0.0MySQLDB

ACCESS CONTROL

2.15 Implement Connection Delays to Limit Failed Login Attempts - CONNECTION_CONTROL_FAILED_LOGIN_ATTEMPTSCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

ACCESS CONTROL

2.15 Limit Accepted Transport Layer Security (TLS) VersionsCIS Oracle MySQL Community Server 8.0 v1.2.0 L2 MySQL RDBMS on Linux MySQLDBMySQLDB

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION

2.15 Limit Accepted Transport Layer Security (TLS) VersionsCIS Oracle MySQL Community Server 8.4 v1.1.0 L2 MySQL RDBMS MySQLDBMySQLDB

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION

2.15 Limit Accepted Transport Layer Security (TLS) VersionsCIS Oracle MySQL Community Server 8.4 v1.1.0 L2 MySQL RDBMS on Linux MySQLDBMySQLDB

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION

2.15 Limit Accepted Transport Layer Security (TLS) VersionsCIS Oracle MySQL Enterprise Edition 8.4 v1.1.0 L2 MySQL RDBMS on Linux MySQLDBMySQLDB

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION

2.15 Limit Accepted Transport Layer Security (TLS) VersionsCIS Oracle MySQL Enterprise Edition 8.4 v1.1.0 L2 MySQL RDBMS MySQLDBMySQLDB

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION

2.18 Implement Connection Delays to Limit Failed Login AttemptsCIS Oracle MySQL Community Server 8.0 v1.2.0 L1 MySQL RDBMS on Linux MySQLDBMySQLDB

ACCESS CONTROL

2.18 Implement Connection Delays to Limit Failed Login AttemptsCIS Oracle MySQL Enterprise Edition 8.0 v1.5.0 L1 MySQL RDBMS MySQLDBMySQLDB

ACCESS CONTROL

2.18 Implement Connection Delays to Limit Failed Login AttemptsCIS Oracle MySQL Enterprise Edition 8.4 v1.1.0 L1 MySQL RDBMS on Linux MySQLDBMySQLDB

ACCESS CONTROL

3.3 Enable Stack Protection - Makes sure 'noexec_user_stack_log' is set to 1 in /etc/system. Note: Only applicable if NX bit is set.CIS Solaris 10 L1 v5.2Unix

AUDIT AND ACCOUNTABILITY

3.3 Enable Stack Protection - Makes sure 'noexec_user_stack' is set to 1 in /etc/system. Note: Only applicable if NX bit is set.CIS Solaris 10 L1 v5.2Unix

SYSTEM AND INFORMATION INTEGRITY

3.8 Ensure Plugin Directory Has Appropriate PermissionsCIS MySQL 5.7 Community Windows OS L1 v2.0.0Windows

ACCESS CONTROL, MEDIA PROTECTION

3.9 Ensure 'audit_log_file' Has Appropriate PermissionsCIS Oracle MySQL Enterprise Edition 8.4 v1.1.0 L1 MySQL RDBMS on Linux UnixUnix

ACCESS CONTROL, MEDIA PROTECTION

4.4 Ensure 'local_infile' Is DisabledCIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

CONFIGURATION MANAGEMENT

4.4 Harden Usage for 'local_infile' on MySQL ClientsCIS MySQL 5.7 Community Database L1 v2.0.0MySQLDB

CONFIGURATION MANAGEMENT

4.9 Enable data-at-rest encryption in MariaDBCIS MariaDB 10.11 v1.0.0 L2 MariaDB RDBMS on Linux MySQLDBMySQLDB

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

5.1 Block Pop-up WindowsCIS Mozilla Firefox 102 ESR Linux L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

5.1 Do not disable AppArmorCIS Docker 1.12.0 v1.0.0 L2 DockerUnix

ACCESS CONTROL

5.1 Do not disable AppArmor ProfileCIS Docker 1.13.0 v1.0.0 L1 DockerUnix

ACCESS CONTROL

5.1 Securely Authenticate Zone TransfersCIS BIND DNS v1.0.0 L2 Authoritative Name ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.1 Securely Authenticate Zone TransfersCIS BIND DNS v3.0.1 Authoritative Name ServerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

6.2 Ensure Log Files are Stored on a Non-System PartitionCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

AUDIT AND ACCOUNTABILITY

6.9 Ensure All Statements and Connections are Logged - audit_log_connection_policyCIS MySQL 5.6 Enterprise Database L2 v2.0.0MySQLDB

AUDIT AND ACCOUNTABILITY

6.9 Ensure All Statements and Connections are Logged - audit_log_policyCIS MySQL 5.6 Enterprise Database L2 v2.0.0MySQLDB

AUDIT AND ACCOUNTABILITY

7.2 Ensure 'secure_auth' is Set to 'ON' - ONCIS MySQL 5.6 Community Database L1 v2.0.0MySQLDB

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

7.2 Ensure 'secure_auth' is Set to 'ON' - ONCIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

7.2 Set Password Expiration Parameters on Active Accounts - Check MAXWEEKS is set to 13CIS Solaris 10 L1 v5.2Unix

IDENTIFICATION AND AUTHENTICATION

7.3 Set Strong Password Creation Policies - Check DICTIONDBDIR is set to /var/passwdCIS Solaris 10 L1 v5.2Unix

IDENTIFICATION AND AUTHENTICATION

7.3 Set Strong Password Creation Policies - Check MINLOWER is set to 1CIS Solaris 10 L1 v5.2Unix

IDENTIFICATION AND AUTHENTICATION

7.3 Set Strong Password Creation Policies - Check MINUPPER is set to 1CIS Solaris 10 L1 v5.2Unix

IDENTIFICATION AND AUTHENTICATION

7.3 Set Strong Password Creation Policies - Check NAMECHECK is set to YESCIS Solaris 10 L1 v5.2Unix

IDENTIFICATION AND AUTHENTICATION

7.6 Set Default umask for Users - Check if 'umask' is set to 077 - Check /etc/profile.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.6 Set Default umask for Users, Check if 'UMASK' is set to 077.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

7.7 Ensure No Anonymous Accounts ExistCIS Oracle MySQL Enterprise Edition 8.4 v1.1.0 L1 MySQL RDBMS MySQLDBMySQLDB

ACCESS CONTROL

7.7 Ensure No Anonymous Accounts ExistCIS Oracle MySQL Community Server 8.0 v1.2.0 L1 MySQL RDBMS MySQLDBMySQLDB

ACCESS CONTROL

8.2 Create Warning Banner for CDE Users - Check if 'Dtlogin*greeting.labelString' is set appropriately.CIS Solaris 10 L1 v5.2Unix

ACCESS CONTROL

CIS_Google_Container-Optimized_OS_v1.2.0_L1_Server.audit from CIS Google Container-Optimized OS Benchmark v1.2.0CIS Google Container-Optimized OS v1.2.0 L1 ServerUnix