Item Search

Name	Audit Name	Plugin	Category
3.12 Ensure Server Header is removed - Applications	CIS IIS 10 v1.2.1 Level 2	Windows	CONFIGURATION MANAGEMENT
3.12 Ensure Server Header is removed - Default	CIS IIS 10 v1.2.1 Level 2	Windows	CONFIGURATION MANAGEMENT
4.2 Ensure 'maxURL request filter' is configured - Applications	CIS IIS 10 v1.2.1 Level 2	Windows	SYSTEM AND SERVICES ACQUISITION
4.2 Ensure 'maxURL request filter' is configured - Default	CIS IIS 10 v1.2.1 Level 2	Windows	SYSTEM AND SERVICES ACQUISITION
4.4 Ensure http server is not running	CIS Apple OSX 10.10 Yosemite L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
4.4 Ensure http server is not running	CIS Apple OSX 10.11 El Capitan L1 v1.1.0	Unix	CONFIGURATION MANAGEMENT
4.4 Ensure http server is not running	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
4.8 Ensure Handler is not granted Write and Script/Execute - Default	CIS IIS 7 L1 v1.8.0	Windows	ACCESS CONTROL
4.11 Ensure 'Dynamic IP Address Restrictions' is enabled	CIS IIS 8.0 v1.5.1 Level 1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.11 Ensure 'Dynamic IP Address Restrictions' is enabled	CIS IIS 7 L1 v1.8.0	Windows
89.18 (L1) Ensure 'Impersonate Client' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
89.20 (L1) Ensure 'Impersonate Client' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
AS24-U2-000240 - The Apache web server must not perform user management for hosted applications.	DISA STIG Apache Server 2.4 Unix Site v2r6	Unix	CONFIGURATION MANAGEMENT
AS24-U2-000240 - The Apache web server must not perform user management for hosted applications.	DISA STIG Apache Server 2.4 Unix Site v2r6 Middleware	Unix	CONFIGURATION MANAGEMENT
AS24-W1-000240 - The Apache web server must not perform user management for hosted applications.	DISA STIG Apache Server 2.4 Windows Server v3r3	Windows	CONFIGURATION MANAGEMENT
AS24-W1-000240 - The Apache web server must not perform user management for hosted applications.	DISA STIG Apache Server 2.4 Windows Server v2r3	Windows	CONFIGURATION MANAGEMENT
AS24-W2-000240 - The Apache web server must not perform user management for hosted applications.	DISA Apache Server 2.4 Windows Site STIG v2r2	Windows	CONFIGURATION MANAGEMENT
DISA_STIG_MSSQL_2012_Instance-DB_v1r20.audit from DISA Microsoft SQL Server Instance 2012 v1r20 STIG	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB
ESXI-70-000094 - The ESXi host must require TPM-based configuration encryption.	DISA VMware vSphere 7.0 ESXi STIG v1r4 Unix	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA AIX 5.3 STIG v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA STIG AIX 6.1 v1r14	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA STIG Solaris 10 X86 v2r4	Unix	CONFIGURATION MANAGEMENT
SP13-00-000125 - SharePoint must implement an information system isolation boundary that minimizes the number of nonsecurity functions included within the boundary containing security functions.	DISA Microsoft SharePoint 2013 STIG v2r4	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VCSA-70-000089 - The vCenter Server must terminate vSphere Client sessions after 10 minutes of inactivity.	DISA STIG VMware vSphere 7.0 vCenter v1r3	VMware	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
VCSA-70-000292 - The vCenter server configuration must be backed up on a regular basis.	DISA STIG VMware vSphere 7.0 vCenter v1r3	VMware	CONFIGURATION MANAGEMENT
VCSA-80-000294 - The vCenter server Native Key Provider must be backed up with a strong password.	DISA VMware vSphere 8.0 vCenter STIG v2r3	VMware	CONFIGURATION MANAGEMENT
WA000-WI035 - The IISADMPWD directory has not been removed from the Web Server - permissions	DISA STIG IIS 6.0 Server v6r16	Windows
WA000-WI035 - The IISADMPWD directory has not been removed from the Web Server.	DISA STIG IIS 6.0 Server v6r16	Windows	CONFIGURATION MANAGEMENT
WA060 A22 - A public web server, if hosted on the NIPRNet, must be isolated in an accredited DoD DMZ Extension.	DISA STIG Apache Server 2.2 Unix v1r11	Unix
WA060 A22 - A public web server, if hosted on the NIPRNet, must be isolated in an accredited DoD DMZ Extension.	DISA STIG Apache Server 2.2 Unix v1r11 Middleware	Unix
WA060 IIS6 - A public web server, if hosted on the NIPRNet, must be isolated in an accredited DoD DMZ Extension.	DISA STIG IIS 6.0 Server v6r16	Windows
WA060 W22 - A public web server, if hosted on the NIPRNet, must be isolated in an accredited DoD DMZ Extension.	DISA STIG Apache Server 2.2 Windows v1r13	Windows
WG260 A22 - Only web sites that have been fully reviewed and tested must exist on a production web server.	DISA STIG Apache Site 2.2 Unix v1r11	Unix
WG260 A22 - Only web sites that have been fully reviewed and tested must exist on a production web server.	DISA STIG Apache Site 2.2 Unix v1r11 Middleware	Unix
WG260 W22 - Only web sites that have been fully reviewed and tested must exist on a production web server.	DISA STIG Apache Site 2.2 Windows v1r13	Windows
WG280 - The access control files are owned by a privileged web server account - APP_Config_files	DISA STIG Apache Server 2.2 Unix v1r11 Middleware	Unix
WG280 - The access control files are owned by a privileged web server account - HTACCESS_DIR	DISA STIG Apache Server 2.2 Unix v1r11	Unix
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\inetpub'	DISA STIG IIS 6.0 Server v6r16	Windows	CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\inetpub\ftproot'	DISA STIG IIS 6.0 Server v6r16	Windows	CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\inetpub\ftproot\dropbox'	DISA STIG IIS 6.0 Server v6r16	Windows	CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\inetpub\wwwroot\images'	DISA STIG IIS 6.0 Server v6r16	Windows	CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\system32\inetsrv\*.exe'	DISA STIG IIS 6.0 Server v6r16	Windows	CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\system32\inetsrv\History'	DISA STIG IIS 6.0 Server v6r16	Windows	CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\system32\inetsrv\MBSchema.xml	DISA STIG IIS 6.0 Server v6r16	Windows	CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\system32\inetsrv\MetaBack'	DISA STIG IIS 6.0 Server v6r16	Windows	CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\system32\inetsrv\metabase.bin	DISA STIG IIS 6.0 Server v6r16	Windows	CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\system32\inetsrv\oblt-log.log	DISA STIG IIS 6.0 Server v6r16	Windows	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
WG300 IIS6 - Web server system files must conform to minimum file permission requirements. - '\system32\inetsrv\oblt-undone.lob	DISA STIG IIS 6.0 Server v6r16	Windows	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
WG300 W22 - Web server system files must conform to minimum file permission requirements. - 'logs'	DISA STIG Apache Server 2.2 Windows v1r13	Windows	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
WG385 A22 - All web server documentation, sample code, example applications, and tutorials must be removed from a production web server.	DISA STIG Apache Server 2.2 Unix v1r11	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search