Item Search

Name	Audit Name	Plugin	Category
1.1.2 Ensure /tmp is configured	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.6 Ensure /dev/shm is configured	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, MEDIA PROTECTION, SYSTEM AND SERVICES ACQUISITION
1.1.12 Ensure /var/tmp partition includes the noexec option	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, MEDIA PROTECTION, SYSTEM AND SERVICES ACQUISITION
1.1.13 Ensure /var/tmp partition includes the nodev option	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, MEDIA PROTECTION, SYSTEM AND SERVICES ACQUISITION
1.3.1 Ensure AIDE is installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
1.6.1.3 Ensure SELinux policy is configured	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.6.1.6 Ensure no unconfined services exist	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.7.4 Ensure remote login warning banner is configured properly	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.2.1.2 Ensure chrony is configured	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	AUDIT AND ACCOUNTABILITY
2.2.7 Ensure DNS Server is not installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
2.2.8 Ensure FTP Server is not installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
2.2.10 Ensure IMAP and POP3 server is not installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
2.2.13 Ensure net-snmp is not installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
2.2.17 Ensure nfs-utils is not installed or the nfs-server service is masked	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
2.3.2 Ensure rsh client is not installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
2.3.3 Ensure talk client is not installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
2.3.5 Ensure LDAP client is not installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.4 Ensure secure ICMP redirects are not accepted	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.10 Ensure IPv6 router advertisements are not accepted	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.5.1.5 Ensure firewalld default zone is set	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.2.1 Ensure nftables is installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.2.10 Ensure nftables service is enabled	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.3.1.1 Ensure iptables packages are installed	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.5.3.2.6 Ensure iptables is enabled and running	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.2.1.6 Ensure remote rsyslog messages are only accepted on designated log hosts.	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.2.4 Ensure permissions on all logfiles are configured	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.1 Ensure cron daemon is enabled and running	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
18.6.4.1 (L1) Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT
18.6.4.1 Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT
18.6.4.1 Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.6.4.2 (L1) Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT
18.6.4.2 (L1) Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.6.4.2 Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT
18.6.4.2 Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	CONFIGURATION MANAGEMENT
18.6.7.4 (L1) Ensure 'Enable authentication rate limiter' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.9.25.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	IDENTIFICATION AND AUTHENTICATION
18.10.17.1 (L1) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
18.10.17.1 (L1) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.18.1 (L2) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.18.3 (L1) Ensure 'Enable App Installer Hash Override' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.10.79.1 (L1) Ensure 'Enable ESS with Supported Peripherals' is set to 'Enabled: 1'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.79.1 (L1) Ensure 'Enable ESS with Supported Peripherals' is set to 'Enabled: 1'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.81.1 (L1) Ensure 'Enable MPR notifications for the system' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.10.81.1 (L1) Ensure 'Enable MPR notifications for the system' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
18.10.81.1 (L1) Ensure 'Enable MPR notifications for the system' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	CONFIGURATION MANAGEMENT
GEN001375-ESXI5-000086 - For systems using DNS resolution, at least two name servers must be configured.	DISA STIG VMWare ESXi Server 5 STIG v2r1	VMware	CONFIGURATION MANAGEMENT
OL6-00-000228 - The Oracle Linux operating system must be configured so that the SSH daemon is configured to only use Message Authentication Codes (MACs) employing FIPS 140-2 approved cryptographic hash algorithms.	DISA STIG Oracle Linux 6 v2r7	Unix	ACCESS CONTROL
OL08-00-010291 - The OL 8 SSH server must be configured to use only ciphers employing FIPS 140-2 validated cryptographic algorithms.	DISA Oracle Linux 8 STIG v2r4	Unix	MAINTENANCE
SonicWALL - Review the NTP server configuration	TNS SonicWALL v5.9	SonicWALL	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search