Item Search

Name	Audit Name	Plugin	Category
1.1.17 - AirWatch - Enable Automatic Downloads of App Updates	AirWatch - CIS Apple iOS 9 v1.0.0 L1	MDM	ACCESS CONTROL
1.1.17 - MobileIron - Enable Automatic Downloads of App Updates	MobileIron - CIS Apple iOS 9 v1.0.0 L1	MDM	ACCESS CONTROL
1.6.1 Ensure 'Check to disable users from adding entries to server list' is set to Enabled:Publish default, disallow others	CIS Microsoft Office Outlook 2013 v1.1.0 Level 1	Windows	CONFIGURATION MANAGEMENT
1.6.1 Ensure 'Check to disable users from adding entries to server list' is set to Enabled:Publish default, disallow others	CIS Microsoft Office Outlook 2016 v1.1.0 Level 1	Windows	CONFIGURATION MANAGEMENT
1.8.9 Ensure GNOME Screensaver period of inactivity is configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
1.8.12 Ensure session idle-delay settings is enforced	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
1.11 Set 'Check to disable users from adding entries to server list' to 'Enabled:Publish default, disallow others'	CIS MS Office Outlook 2010 v1.0.0	Windows	CONFIGURATION MANAGEMENT
4.3 Ensure 'Automatic Downloads' of 'App Updates' is set to 'Enabled'	MobileIron - CIS Apple iOS 10 v2.0.0 Institution Owned L1	MDM
4.3 Ensure 'Automatic Downloads' of 'App Updates' is set to 'Enabled'	MobileIron - CIS Apple iOS 13 and iPadOS 13 v1.0.0 End User Owned L1	MDM	SYSTEM AND INFORMATION INTEGRITY
4.3 Ensure 'Automatic Downloads' of 'App Updates' is set to 'Enabled'	MobileIron - CIS Apple iOS 13 and iPadOS 13 Institution Owned L1	MDM	SYSTEM AND INFORMATION INTEGRITY
4.3 Ensure 'Automatic Downloads' of 'App Updates' is set to 'Enabled'	MobileIron - CIS Apple iOS 11 v1.0.0 End User Owned L1	MDM
4.3 Ensure 'Automatic Downloads' of 'App Updates' is set to 'Enabled'	MobileIron - CIS Apple iOS 11 v1.0.0 Institution Owned L1	MDM
4.3 Ensure 'Automatic Downloads' of 'App Updates' is set to 'Enabled'	MobileIron - CIS Apple iOS 12 v1.0.0 End User Owned L1	MDM
4.7 Ensure 'Automatic Downloads' of 'App Updates' is set to 'Enabled'	MobileIron - CIS Apple iOS 17 Institution Owned L1	MDM	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
5.216 - Internet Connection Wizard ISP Downloads	DISA Windows Vista STIG v6r41	Windows	CONFIGURATION MANAGEMENT
18.9.7.1.2 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Prevent installation of devices using drivers for these device setup' is set to 'IEEE 1394 device setup classes'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.2 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Prevent installation of devices using drivers for these device setup' is set to 'IEEE 1394 device setup classes'	CIS Microsoft Windows 11 Enterprise v4.0.0 BitLocker	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.2 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Prevent installation of devices using drivers for these device setup' is set to 'IEEE 1394 device setup classes'	CIS Microsoft Windows 11 Stand-alone v4.0.0 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.5 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Prevent installation of devices using drivers for these device setup' is set to 'IEEE 1394 device setup classes'	CIS Microsoft Windows 10 Stand-alone v4.0.0 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.5 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Prevent installation of devices using drivers for these device setup' is set to 'IEEE 1394 device setup classes'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.5 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Prevent installation of devices using drivers for these device setup' is set to 'IEEE 1394 device setup classes'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.5 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Prevent installation of devices using drivers for these device setup' is set to 'IEEE 1394 device setup classes'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.9 (L1) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Prevent installation of devices using drivers for these device setup' is set to 'IEEE 1394 device setup classes'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
AIOS-16-707400 - The Apple iOS/iPadOS 16 allow list must be configured to not include applications with the following characteristics:	AirWatch - DISA Apple iOS/iPadOS 16 BYOAD v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-16-707400 - The Apple iOS/iPadOS 16 allow list must be configured to not include applications with the following characteristics:	MobileIron - DISA Apple iOS/iPadOS BYOAD 16 v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-17-707400 - Apple iOS/iPadOS 17 allow list must be configured to not include applications with the following characteristics:	AirWatch - DISA Apple iOS/iPadOS 17 BYOAD v1r1	MDM	CONFIGURATION MANAGEMENT
AIOS-17-707400 - Apple iOS/iPadOS 17 allow list must be configured to not include applications with the following characteristics:	MobileIron - DISA Apple iOS/iPadOS BYOAD 17 v1r1	MDM	CONFIGURATION MANAGEMENT
DTAVSEL-007 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to find potentially unwanted programs.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5	Unix	SYSTEM AND INFORMATION INTEGRITY
GEN000950 - The root account's list of preloaded libraries must be empty.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN000950 - The root account's list of preloaded libraries must be empty.	DISA STIG AIX 6.1 v1r14	Unix	CONFIGURATION MANAGEMENT
GEN000950 - The root account's list of preloaded libraries must be empty.	DISA STIG Solaris 10 X86 v2r4	Unix	CONFIGURATION MANAGEMENT
GEN000950 - The root account's list of preloaded libraries must be empty.	DISA STIG Solaris 10 SPARC v2r4	Unix	CONFIGURATION MANAGEMENT
GEN000950-ESXI5-444 - The root accounts list of preloaded libraries must be empty.	DISA STIG VMWare ESXi Server 5 STIG v2r1	VMware	CONFIGURATION MANAGEMENT
Prevent installation of devices using drivers that match these device setup classes - 1	MSCT Windows 11 v24H2 v1.0.0	Windows	MEDIA PROTECTION
Prevent installation of devices using drivers that match these device setup classes - DenyDeviceClasses	MSCT Windows 11 v24H2 v1.0.0	Windows	MEDIA PROTECTION
Prevent installation of devices using drivers that match these device setup classes - DenyDeviceClasses	MSCT Windows 11 v1.0.0	Windows	MEDIA PROTECTION
Prevent installation of devices using drivers that match these device setup classes - DenyDeviceClasses	MSCT Windows 11 v22H2 v1.0.0	Windows	MEDIA PROTECTION
Prevent installation of devices using drivers that match these device setup classes - DenyDeviceClassesRetroactive	MSCT Windows 11 v22H2 v1.0.0	Windows	MEDIA PROTECTION
Prevent installation of devices using drivers that match these device setup classes - DenyDeviceClassesRetroactive	MSCT Windows 11 v1.0.0	Windows	MEDIA PROTECTION
Prevent installation of devices using drivers that match these device setup classes - DenyDeviceClassesRetroactive	MSCT Windows 11 v24H2 v1.0.0	Windows	MEDIA PROTECTION
RHEL-07-010271 - The Red Hat Enterprise Linux operating system must automatically expire temporary accounts within 72 hours.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-07-020000 - The Red Hat Enterprise Linux operating system must not have the rsh-server package installed.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-020022 - The Red Hat Enterprise Linux operating system must not allow privileged accounts to utilize SSH.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-07-021710 - The Red Hat Enterprise Linux operating system must not have the telnet-server package installed.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-030560 - The Red Hat Enterprise Linux operating system must audit all uses of the semanage command.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	AUDIT AND ACCOUNTABILITY, MAINTENANCE
RHEL-07-030580 - The Red Hat Enterprise Linux operating system must audit all uses of the chcon command.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	AUDIT AND ACCOUNTABILITY, MAINTENANCE
RHEL-07-030660 - The Red Hat Enterprise Linux operating system must audit all uses of the chage command.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	AUDIT AND ACCOUNTABILITY, MAINTENANCE
RHEL-07-030770 - The Red Hat Enterprise Linux operating system must audit all uses of the postqueue command.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	AUDIT AND ACCOUNTABILITY, MAINTENANCE
RHEL-07-041003 - The Red Hat Enterprise Linux operating system must implement certificate status checking for PKI authentication.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	IDENTIFICATION AND AUTHENTICATION
SPLK-CL-000160 - Splunk Enterprise must be configured to send an immediate alert to the system administrator (SA) and information system security officer (ISSO) (at a minimum) when allocated log record storage volume reaches 75 percent of the repository maximum log record storage capacity - at a minimum when allocated log record storage volume reaches 75 percent of the repository maximum log record storage capacity.	DISA STIG Splunk Enterprise 8.x for Linux v2r2 STIG REST API	Splunk	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search