Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 15 v1.2.0 L1 OS Linux Unix	Unix	CONFIGURATION MANAGEMENT, MAINTENANCE
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 16 v1.1.0 L1 OS Linux Unix	Unix	CONFIGURATION MANAGEMENT, MAINTENANCE
1.2 Install only required packages	CIS PostgreSQL 15 v1.2.0 L1 OS Linux Unix	Unix	CONFIGURATION MANAGEMENT
1.2 Install only required packages	CIS PostgreSQL 16 v1.1.0 L1 OS Linux Unix	Unix	CONFIGURATION MANAGEMENT
1.3 Ensure systemd Service Files Are Enabled	CIS PostgreSQL 16 v1.1.0 L1 OS Linux Unix	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.6 Verify That 'PGPASSWORD' is Not Set in Users' Profiles	CIS PostgreSQL 16 v1.1.0 L1 OS Linux Unix	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.6 Verify That 'PGPASSWORD' is Not Set in Users' Profiles	CIS PostgreSQL 15 v1.2.0 L1 OS Linux Unix	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.7 Verify That the 'PGPASSWORD' Environment Variable is Not in Use	CIS PostgreSQL 15 v1.2.0 L1 OS Linux Unix	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.1 Ensure the file permissions mask is correct	CIS PostgreSQL 15 v1.2.0 L1 OS Linux Unix	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.1 Ensure the file permissions mask is correct	CIS PostgreSQL 13 v1.3.0 L1 OS Linux Unix	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.1.4 Ensure 'SECURE_REGISTER_' Is Set to 'TCPS' or 'IPC'	CIS Oracle Server 12c Linux v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.2 Ensure extension directory has appropriate ownership and permissions	CIS PostgreSQL 15 v1.2.0 L1 OS Linux Unix	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.2 Ensure extension directory has appropriate ownership and permissions	CIS PostgreSQL 16 v1.1.0 L1 OS Linux Unix	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.4 Ensure Passwords are Not Stored in the service file	CIS PostgreSQL 16 v1.1.0 L1 OS Linux Unix	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4 Ensure SQL Authentication is not used in contained databases	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	IDENTIFICATION AND AUTHENTICATION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2022 v1.2.1 L1 AWS RDS	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2019 v1.5.2 L1 AWS RDS	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2025 v1.0.0 L1 AWS RDS MS_SQLDB	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2019 v1.5.2 L1 Database Engine	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2022 v1.2.1 L1 Database Engine	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2025 v1.0.0 L1 Database Engine MS_SQLDB	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
4.1 Ensure Interactive Login is Disabled	CIS PostgreSQL 15 v1.2.0 L1 OS Linux Unix	Unix	ACCESS CONTROL
4.1 Ensure Interactive Login is Disabled	CIS PostgreSQL 16 v1.1.0 L1 OS Linux Unix	Unix	ACCESS CONTROL
6.5.2 (L1) Host SSH daemon, if enabled, must use FIPS 140-2/140-3 validated cryptographic modules	CIS VMware ESXi 8.0 v1.2.0 L1 Unix	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used	CIS PostgreSQL 15 v1.2.0 L1 OS Linux Unix	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used	CIS PostgreSQL 16 v1.1.0 L1 OS Linux Unix	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used	CIS PostgreSQL 13 v1.3.0 L1 OS Linux Unix	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
8.2 Ensure the backup and restore tool, 'pgBackRest', is installed and configured	CIS PostgreSQL 16 v1.1.0 L1 OS Linux Unix	Unix	CONTINGENCY PLANNING
8.2 Ensure the backup and restore tool, 'pgBackRest', is installed and configured	CIS PostgreSQL 15 v1.2.0 L1 OS Linux Unix	Unix	CONTINGENCY PLANNING
8.2 Ensure the backup and restore tool, 'pgBackRest', is installed and configured	CIS PostgreSQL 13 v1.3.0 L1 OS Linux Unix	Unix	CONTINGENCY PLANNING
Big Sur - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Big Sur v1.4.0 - 800-171	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Big Sur - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Big Sur v1.4.0 - 800-53r4 High	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Big Sur - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Big Sur v1.4.0 - 800-53r5 Low	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Catalina - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Catalina v1.5.0 - 800-53r4 Moderate	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Catalina - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Catalina v1.5.0 - CNSSI 1253	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Catalina - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Catalina v1.5.0 - All Profiles	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
CD12-00-012300 - PostgreSQL must use NIST FIPS 140-2 or 140-3 validated cryptographic modules for cryptographic operations.	DISA STIG Crunchy Data PostgreSQL OS v3r1	Unix	IDENTIFICATION AND AUTHENTICATION
DG0007-ORACLE11 - The database should be secured in accordance with DoD, vendor and/or commercially accepted practices where applicable.	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DG0007-ORACLE11 - The database should be secured in accordance with DoD, vendor and/or commercially accepted practices where applicable.	DISA STIG Oracle 11 Installation v9r1 Linux	Unix
EX13-EG-000260 - The Exchange Simple Mail Transfer Protocol (SMTP) Sender filter must be enabled.	DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r6	Windows	SYSTEM AND INFORMATION INTEGRITY
EX16-ED-000520 - The Exchange Simple Mail Transfer Protocol (SMTP) Sender filter must be enabled.	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r6	Windows	SYSTEM AND INFORMATION INTEGRITY
EX19-ED-000139 - The Exchange Simple Mail Transfer Protocol (SMTP) Sender filter must be enabled.	DISA Microsoft Exchange 2019 Edge Server STIG v2r2	Windows	SYSTEM AND INFORMATION INTEGRITY
Monterey - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Monterey v1.0.0 - 800-53r5 High	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Monterey - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Monterey v1.0.0 - 800-53r4 High	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Monterey - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Monterey v1.0.0 - 800-53r4 Moderate	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Monterey - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Monterey v1.0.0 - 800-53r5 Moderate	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Monterey - Disable Unix-to-Unix Copy Protocol Service	NIST macOS Monterey v1.0.0 - All Profiles	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
PGS9-00-012300 - PostgreSQL must use NIST FIPS 140-2 or 140-3 validated cryptographic modules for cryptographic operations.	DISA STIG PostgreSQL 9.x on RHEL OS v2r5	Unix	IDENTIFICATION AND AUTHENTICATION
vCenter: vcenter-8.administration-sso-password-lifetime	VMware vSphere Security Configuration and Hardening Guide	VMware	IDENTIFICATION AND AUTHENTICATION
vCenter: vcenter-8.vami-administration-password-expiration	VMware vSphere Security Configuration and Hardening Guide	VMware	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search