Item Search

Name	Audit Name	Plugin	Category
1.1.6 Set 'aaa accounting' to log all privileged use commands using 'commands 15'	CIS Cisco IOS XE 16.x v2.2.0 L2	Cisco	AUDIT AND ACCOUNTABILITY
1.1.6 Set 'aaa accounting' to log all privileged use commands using 'commands 15'	CIS Cisco IOS XE 17.x v2.2.1 L1	Cisco	AUDIT AND ACCOUNTABILITY
1.1.8 - AirWatch - Turn off Ask to Join Networks	AirWatch - CIS Apple iOS 9 v1.0.0 L2	MDM	ACCESS CONTROL
1.1.8 - MobileIron - Turn off Ask to Join Networks	MobileIron - CIS Apple iOS 9 v1.0.0 L2	MDM	ACCESS CONTROL
1.1.9 - AirWatch - Turn off Ask to Join Networks	AirWatch - CIS Apple iOS 8 v1.0.0 L2	MDM	ACCESS CONTROL
1.1.10 Set 'aaa accounting system'	CIS Cisco IOS XE 16.x v2.2.0 L2	Cisco	AUDIT AND ACCOUNTABILITY
1.1.10 Set 'aaa accounting system'	CIS Cisco IOS XE 17.x v2.2.1 L1	Cisco	AUDIT AND ACCOUNTABILITY
1.2.1.3 Ensure repo_gpgcheck is globally activated	CIS Rocky Linux 9 v2.0.0 L2 Server	Unix	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.2.3 Ensure repo_gpgcheck is globally activated	CIS Oracle Linux 7 v4.0.0 L2 Server	Unix	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.8.9 Ensure GNOME Screensaver period of inactivity is configured	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
2.6.7 Monitor Location Services Access	CIS Apple OSX 10.10 Yosemite L2 v1.2.0	Unix
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'apache account is configured'	CIS Apache HTTP Server 2.2 L2 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'apache account is configured'	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'apache account is configured'	CIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd services are running as apache user'	CIS Apache HTTP Server 2.2 L2 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd.conf Group = apache'	CIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd.conf User = apache'	CIS Apache HTTP Server 2.2 L2 v3.6.0	Unix	ACCESS CONTROL
3.4.2.9 Ensure nftables default deny firewall policy	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.3.2.1 Ensure iptables default deny firewall policy	CIS Ubuntu Linux 18.04 LTS v2.2.0 L1 Workstation	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.3.7 Ensure nftables default deny firewall policy	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.4.2.1 Ensure iptables default deny firewall policy	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.11 Ensure Network Access Control List (NACL) changes are monitored	CIS Amazon Web Services Foundations v7.0.0 L2	amazon_aws	AUDIT AND ACCOUNTABILITY
5.248 - Media Player - First Use Dialog Boxes	DISA Windows Vista STIG v6r41	Windows	CONFIGURATION MANAGEMENT
6.1.1.10 Ensure that Intune logs are captured and sent to Log Analytics	CIS Microsoft Azure Foundations v5.0.0 L2	microsoft_azure	AUDIT AND ACCOUNTABILITY
7.14 Ensure TLS Cipher Suite ordering is configured	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.15 Ensure TLS Cipher Suite ordering is configured	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Allow Trusted Locations on the network - access	MSCT M365 Apps for enterprise 2412 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow Trusted Locations on the network - access	MSCT M365 Apps for enterprise 2312 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow Trusted Locations on the network - allownetworklocations - access	MSCT Office 2016 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow Trusted Locations on the network - allownetworklocations - access	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow Trusted Locations on the network - allownetworklocations - access	MSCT Office 365 ProPlus 1908 v1.0.0	Windows	CONFIGURATION MANAGEMENT
AZLX-23-000120 - Amazon Linux 2023 must check the GPG signature of software packages originating from external software repositories before installation.	DISA Amazon Linux 2023 STIG v1r2	Unix	CONFIGURATION MANAGEMENT
CIS_Red_Hat_EL7_STIG_v2.0.0_L1_Server.audit from CIS Red Hat Enterprise Linux 7 STIG v2.0.0	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix
CIS_Red_Hat_EL7_STIG_v2.0.0_L2_Server.audit from CIS Red Hat Enterprise Linux 7 STIG v2.0.0	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Server	Unix
CIS_Red_Hat_Enterprise_Linux_8_STIG_v2.0.0_L1_Workstation.audit from CIS Red Hat Enterprise Linux 8 STIG v2.0.0	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 L1 Workstation	Unix
CIS_Red_Hat_Enterprise_Linux_8_STIG_v2.0.0_STIG.audit from CIS Red Hat Enterprise Linux 8 STIG v2.0.0	CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG	Unix
DTAM157 - McAfee VirusScan On-Delivery Email Scan Policies Artemis sensitivity level must be configured to medium or higher - enabled	DISA McAfee VirusScan 8.8 Managed Client STIG v6r1	Windows	CONFIGURATION MANAGEMENT
DTAM157 - McAfee VirusScan On-Delivery Email Scan Policies Artemis sensitivity level must be configured to medium or higher.	DISA McAfee VirusScan 8.8 Managed Client STIG v6r1	Windows	CONFIGURATION MANAGEMENT
DTAVSEL-101 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Demand scanner must be configured to decompress archives when scanning.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
JUEX-NM-000680 - The Juniper EX switch must be configured with an operating system release that is currently supported by the vendor.	DISA Juniper EX Series Network Device Management v2r4	Juniper	CONFIGURATION MANAGEMENT
KNOX-07-013000 - The Samsung Android 7 with Knox must implement the management setting: Enable Certificate Revocation Status (CRL) Check.	MobileIron - DISA Samsung Android 7 with Knox 2.x v1r1	MDM	CONFIGURATION MANAGEMENT
KNOX-07-013000 - The Samsung Android 7 with Knox must implement the management setting: Enable Certificate Revocation Status (CRL) Check.	AirWatch - DISA Samsung Android 7 with Knox 2.x v1r1	MDM	CONFIGURATION MANAGEMENT
O19C-00-010700 - Use of the Oracle Database installation account must be logged.	DISA Oracle Database 19c STIG v1r3 OracleDB	OracleDB	CONFIGURATION MANAGEMENT
O365-EX-000001 - Trusted Locations on the network must be disabled in Excel.	DISA Microsoft Office 365 ProPlus STIG v3r5	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
OL6-00-000282 - There must be no world-writable files on the system.	DISA STIG Oracle Linux 6 v2r7	Unix	CONFIGURATION MANAGEMENT
RHEL-06-000282 - There must be no world-writable files on the system.	DISA Red Hat Enterprise Linux 6 STIG v2r2	Unix	CONFIGURATION MANAGEMENT
RHEL-07-010090 - The Red Hat Enterprise Linux operating system must have the screen package installed.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-07-032000 - The Red Hat Enterprise Linux operating system must use a virus scan program.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
RHEL-07-040201 - The Red Hat Enterprise Linux operating system must implement virtual address space randomization.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-10-001030 - RHEL 10 must check the GNU Privacy Guard (GPG) signature of software packages originating from external software repositories before installation.	DISA Red Hat Enterprise Linux 10 STIG v1r1	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search