Detections
Analytics

Item Search

NameAudit NamePluginCategory
ALMA-09-009480 - AlmaLinux OS 9 SSH daemon must not allow Kerberos authentication.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

ALMA-09-009700 - AlmaLinux OS 9 must ensure cryptographic verification of vendor software packages.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

ALMA-09-009810 - AlmaLinux OS 9 must check the GPG signature of locally installed software packages before installation.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

ALMA-09-010800 - AlmaLinux OS 9 library directories must have mode 755 or less permissive.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

APPL-11-002063 - The macOS system must enforce access restrictions.DISA STIG Apple macOS 11 v1r5Unix

CONFIGURATION MANAGEMENT

APPL-11-002064 - The macOS system must have the security assessment policy subsystem enabled.DISA STIG Apple macOS 11 v1r5Unix

CONFIGURATION MANAGEMENT

APPL-12-002063 - The macOS system must enforce access restrictions.DISA STIG Apple macOS 12 v1r9Unix

CONFIGURATION MANAGEMENT

CD12-00-001300 - The role(s)/group(s) used to modify database structure (including but not necessarily limited to tables, indexes, storage, etc.) and logic modules (functions, trigger procedures, links to software external to PostgreSQL, etc.) must be restricted to authorized users.DISA STIG Crunchy Data PostgreSQL OS v3r1Unix

CONFIGURATION MANAGEMENT

EPAS-00-003200 - Software, applications, and configuration files that are part of, or related to, the EDB Postgres Advanced Server installation must be monitored to discover unauthorized changes.EnterpriseDB PostgreSQL Advanced Server OS Linux v2r1Unix

CONFIGURATION MANAGEMENT

EPAS-00-003500 - Database objects must be owned by database/EDB Postgres Advanced Server principals authorized for ownership.EnterpriseDB PostgreSQL Advanced Server DB v2r1PostgreSQLDB

CONFIGURATION MANAGEMENT

EPAS-00-008500 - The EDB Postgres Advanced Server must enforce access restrictions associated with changes to the configuration of the EDB Postgres Advanced Server or database(s).EnterpriseDB PostgreSQL Advanced Server DB v2r1PostgreSQLDB

CONFIGURATION MANAGEMENT

EPAS-00-008600 - The EDB Postgres Advanced Server must produce audit records of its enforcement of access restrictions associated with changes to the configuration of the EDB Postgres Advanced Server or database(s).EnterpriseDB PostgreSQL Advanced Server DB v2r1PostgreSQLDB

CONFIGURATION MANAGEMENT

FGFW-ND-000150 - The FortiGate device must enforce access restrictions associated with changes to device configuration.DISA Fortigate Firewall NDM STIG v1r4FortiGate

CONFIGURATION MANAGEMENT

MD4X-00-002300 - Database objects (including but not limited to tables, indexes, storage, stored procedures, functions, triggers, links to software external to MongoDB, etc.) must be owned by database/DBMS principals authorized for ownership.DISA STIG MongoDB Enterprise Advanced 4.x v1r4 DBMongoDB

CONFIGURATION MANAGEMENT

MD4X-00-002400 - The role(s)/group(s) used to modify database structure (including but not necessarily limited to tables, indexes, storage, etc.) and logic modules (stored procedures, functions, triggers, links to software external to MongoDB, etc.) must be restricted to authorized users.DISA STIG MongoDB Enterprise Advanced 4.x v1r4 DBMongoDB

CONFIGURATION MANAGEMENT

MD7X-00-002600 MongoDB must limit privileges to change software modules, to include stored procedures, functions and triggers, and links to software external to MongoDB.DISA MongoDB Enterprise Advanced 7.x STIG v1r1Unix

CONFIGURATION MANAGEMENT

MS.AAD.4.1v1 - Security logs SHALL be sent to the agency's security operations center for monitoring.CISA SCuBA Microsoft 365 Entra ID v1.5.0microsoft_azure

ACCESS CONTROL, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

MS.DEFENDER.6.1v1 - Microsoft Purview Audit (Standard) logging SHALL be enabled.CISA SCuBA Microsoft 365 Defender v1.5.0microsoft_azure

ACCESS CONTROL, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

O19C-00-007300 - Oracle Database must support enforcement of logical access restrictions associated with changes to the database management system (DBMS) configuration and to the database itself.DISA Oracle Database 19c STIG v1r1 UnixUnix

CONFIGURATION MANAGEMENT

O19C-00-007300 - Oracle Database must support enforcement of logical access restrictions associated with changes to the database management system (DBMS) configuration and to the database itself.DISA Oracle Database 19c STIG v1r1 WindowsWindows

CONFIGURATION MANAGEMENT

O19C-00-008300 - The role(s)/group(s) used to modify database structure (including but not necessarily limited to tables, indexes, storage, etc.) and logic modules (stored procedures, functions, triggers, links to software external to the DBMS, etc.) must be restricted to authorized users.DISA Oracle Database 19c STIG v1r1 DatabaseOracleDB

CONFIGURATION MANAGEMENT

OL09-00-000498 - OL 9 must have GPG signature verification enabled for all software repositories.DISA Oracle Linux 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

OL09-00-002341 - OL 9 SSH daemon must not allow Generic Security Service Application Program Interface (GSSAPI) authentication.DISA Oracle Linux 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

OL09-00-002520 - OL 9 library directories must be group-owned by root or a system account.DISA Oracle Linux 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

OL09-00-002524 - OL 9 library files must be owned by root.DISA Oracle Linux 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

OL09-00-002525 - OL 9 library files must have mode 755 or less permissive.DISA Oracle Linux 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

Overview of port lockdown behaviorTenable F5 BIG-IP Best Practice AuditF5

CONFIGURATION MANAGEMENT

PHTN-40-000130 The Photon operating system TDNF package management tool must cryptographically verify the authenticity of all software packages during installation.DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1Unix

CONFIGURATION MANAGEMENT

PHTN-67-000062 - The Photon operating system RPM package management tool must cryptographically verify the authenticity of all software packages during installation.DISA STIG VMware vSphere 6.7 Photon OS v1r6Unix

CONFIGURATION MANAGEMENT

RHEL-09-255135 - RHEL 9 SSH daemon must not allow GSSAPI authentication.DISA Red Hat Enterprise Linux 9 STIG v2r4Unix

CONFIGURATION MANAGEMENT

RHEL-09-255140 - RHEL 9 SSH daemon must not allow Kerberos authentication.DISA Red Hat Enterprise Linux 9 STIG v2r4Unix

CONFIGURATION MANAGEMENT

SLES-12-010871 - The SUSE operating system library files must have mode 0755 or less permissive.DISA SLES 12 STIG v3r3Unix

CONFIGURATION MANAGEMENT

SLES-12-010873 - The SUSE operating system library files must be owned by root.DISA SLES 12 STIG v3r3Unix

CONFIGURATION MANAGEMENT

SLES-12-010874 - The SUSE operating system library directories must be owned by root.DISA SLES 12 STIG v3r3Unix

CONFIGURATION MANAGEMENT

SLES-12-010876 - The SUSE operating system library directories must be group-owned by root.DISA SLES 12 STIG v3r3Unix

CONFIGURATION MANAGEMENT

SLES-12-010883 - The SUSE operating system must have directories that contain system commands group-owned by root.DISA SLES 12 STIG v3r3Unix

CONFIGURATION MANAGEMENT

SQL2-00-004400 - SQL Server must not grant users direct access to the View Any Database permission.DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

CONFIGURATION MANAGEMENT

SQL2-00-015200 - SQL Server must be monitored to discover unauthorized changes to stored procedures.DISA STIG SQL Server 2012 Database Audit v1r20MS_SQLDB

CONFIGURATION MANAGEMENT

SQL2-00-015300 - SQL Server must monitor for security-relevant configuration settings to discover unauthorized changes.DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

CONFIGURATION MANAGEMENT

SQL2-00-015700 - Vendor-supported software and patches must be evaluated and patched against newly found vulnerabilities.DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

CONFIGURATION MANAGEMENT

UBTU-20-010427 - The Ubuntu operating system library directories must have mode 0755 or less permissive.DISA Canonical Ubuntu 20.04 LTS STIG v2r3Unix

CONFIGURATION MANAGEMENT

UBTU-20-010428 - The Ubuntu operating system library files must be owned by root.DISA Canonical Ubuntu 20.04 LTS STIG v2r3Unix

CONFIGURATION MANAGEMENT

UBTU-22-232015 - Ubuntu 22.04 LTS must have system commands set to a mode of "755" or less permissive.DISA Canonical Ubuntu 22.04 LTS STIG v2r5Unix

CONFIGURATION MANAGEMENT

VCEM-67-000028 - ESX Agent Manager must set the secure flag for cookies.DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4Unix

CONFIGURATION MANAGEMENT

VCPF-70-000008 - Performance Charts application files must be verified for their integrity.DISA STIG VMware vSphere 7.0 Perfcharts Tomcat v1r1Unix

CONFIGURATION MANAGEMENT

VCPF-80-000034 The vCenter Perfcharts service must limit privileges for creating or modifying hosted application shared files.DISA VMware vSphere 8.0 vCenter Appliance Perfcharts STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCPG-70-000007 - VMware Postgres must limit modify privileges to authorized accounts.DISA STIG VMware vSphere 7.0 PostgreSQL v1r2Unix

CONFIGURATION MANAGEMENT

VCST-80-000034 The vCenter STS service must limit privileges for creating or modifying hosted application shared files.DISA VMware vSphere 8.0 vCenter Appliance Secure Token Service (STS) STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCST-80-000144 The vCenter STS service files must have permissions in an out-of-the-box state.DISA VMware vSphere 8.0 vCenter Appliance Secure Token Service (STS) STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCUI-70-000008 - vSphere UI application files must be verified for their integrity.DISA STIG VMware vSphere 7.0 vCA UI v1r2Unix

CONFIGURATION MANAGEMENT