Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.1.2 (L1) Ensure 'Restrict legacy JScript execution for Office' is set to 'Enabled'CIS Microsoft Intune for Office v1.1.0 L1Windows

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

2.3 Ensure 'Cross DB Ownership Chaining' Server Configuration Option is set to '0'CIS SQL Server 2012 Database L1 DB v1.6.0MS_SQLDB

ACCESS CONTROL

2.3 Ensure 'Cross DB Ownership Chaining' Server Configuration Option is set to '0'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

ACCESS CONTROL

2.3.7.1 Ensure 'Interactive logon: Do not display last user name' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

2.8 Ensure 'Scan For Startup Procs' Server Configuration Option is set to '0'CIS SQL Server 2016 Database L1 DB v1.4.0MS_SQLDB

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.8 Ensure 'Scan For Startup Procs' Server Configuration Option is set to '0'CIS SQL Server 2017 Database L1 DB v1.3.0MS_SQLDB

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.8 Ensure 'Scan For Startup Procs' Server Configuration Option is set to '0'CIS SQL Server 2022 Database L1 DB v1.1.0MS_SQLDB

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.10 Ensure Unnecessary SQL Server Protocols are set to 'Disabled'CIS Microsoft SQL Server 2019 v1.5.0 L1 Database EngineMS_SQLDB

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.2.4 Enable AI /heuristic based malware detectionCIS Fortigate 7.0.x v1.3.0 L2FortiGate

SYSTEM AND INFORMATION INTEGRITY

6.5.5 Ensure TCP RST is Set to DisabledCIS Juniper OS Benchmark v2.1.0 L1Juniper

CONFIGURATION MANAGEMENT

18.9.77.10.2 Ensure 'Turn on e-mail scanning' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

SYSTEM AND INFORMATION INTEGRITY

20.10 (L1) Ensure 'Telnet Client is not Installed'CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1Windows

CONFIGURATION MANAGEMENT

20.11 (L1) Ensure 'TFTP Client is not Installed'CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1Windows

CONFIGURATION MANAGEMENT

20.62 Ensure 'Telnet Client is not installed'CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

CONFIGURATION MANAGEMENT

20.62 Ensure 'Telnet Client is not installed'CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MSWindows

CONFIGURATION MANAGEMENT

20.62 Ensure 'Telnet Client is not installed'CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DCWindows

CONFIGURATION MANAGEMENT

20.62 Ensure 'Telnet Client is not installed'CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DCWindows

CONFIGURATION MANAGEMENT

20.62 Ensure 'Telnet Client is not installed' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DCWindows

CONFIGURATION MANAGEMENT

20.62 Ensure 'Telnet Client is not installed' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MSWindows

CONFIGURATION MANAGEMENT

Audit insecure guest logon - LanmanWorkstationMSCT Windows 11 v24H2 v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit insecure guest logon - LanmanWorkstation AuditInsecureGuestLogonMSCT Windows Server 2025 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit insecure guest logon - LanmanWorkstation AuditInsecureGuestLogonMSCT Windows Server 2025 MS v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Configure SMB v1 client driverMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows 11 v24H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows Server 1903 DC v1.19.9Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows Server 2019 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows Server 2022 v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows Server v20H2 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows Server v20H2 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows 10 v21H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows 10 v22H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows 11 v22H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows 10 1809 v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows 10 v21H1 v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driverMSCT Windows Server v2004 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driver - StartMSCT Windows Server 2025 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure SMB v1 client driver - StartMSCT Windows Server 2025 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

DKER-EE-002000 - Docker Enterprise hosts network namespace must not be shared.DISA STIG Docker Enterprise 2.x Linux/Unix v2r2Unix

CONFIGURATION MANAGEMENT

DKER-EE-002060 - The Docker Enterprise hosts UTS namespace must not be shared.DISA STIG Docker Enterprise 2.x Linux/Unix v2r2Unix

CONFIGURATION MANAGEMENT

DKER-EE-003560 - Docker Enterprise network ports on all running containers must be limited to what is needed.DISA STIG Docker Enterprise 2.x Linux/Unix v2r2Unix

CONFIGURATION MANAGEMENT

GEN002430-ESXI5 - Removable media, remote file systems, and any file system that does not contain approved device files must be mounted with the nodev option.DISA STIG VMWare ESXi Server 5 STIG v2r1VMware

CONFIGURATION MANAGEMENT

GEN005900-ESXI5-00891 - The nosuid option must be enabled on all NFS client mounts.DISA STIG VMWare ESXi Server 5 STIG v2r1VMware

CONFIGURATION MANAGEMENT

JUSX-AG-000057 - The Juniper SRX Services Gateway Firewall must be configured to support centralized management and configuration of the audit log.DISA Juniper SRX Services Gateway ALG v3r2Juniper

AUDIT AND ACCOUNTABILITY

JUSX-DM-000146 - For nonlocal maintenance sessions using SNMP, the Juniper SRX Services Gateway must use and securely configure SNMPv3 with SHA to protect the integrity of maintenance and diagnostic communications.DISA Juniper SRX Services Gateway NDM v3r2Juniper

MAINTENANCE

OH12-1X-000203 - OHS must have the RewriteEngine directive enabled.DISA STIG Oracle HTTP Server 12.1.3 v2r3Unix

CONFIGURATION MANAGEMENT

SQL6-D0-017800 - The SQL Server Browser service must be disabled unless specifically required and approved.DISA STIG SQL Server 2016 Instance OS Audit v3r4Windows

CONFIGURATION MANAGEMENT

SQL6-D0-018000 - If the SQL Server Browser Service is specifically required and approved, SQL instances must be hidden.DISA STIG SQL Server 2016 Instance DB Audit v3r4MS_SQLDB

CONFIGURATION MANAGEMENT

SRG-OS-000095-ESXI5 - Inetd and xinetd must be disabled or removed if no network services utilizing them are enabled.DISA STIG VMWare ESXi Server 5 STIG v2r1VMware

CONFIGURATION MANAGEMENT

SYMP-AG-000600 - Symantec ProxySG providing content filtering must be configured to integrate with a system-wide intrusion detection system.DISA Symantec ProxySG Benchmark ALG v1r3BlueCoat

SYSTEM AND INFORMATION INTEGRITY

TCAT-AS-000750 - Tomcat must use FIPS-validated ciphers on secured connectors.DISA STIG Apache Tomcat Application Server 9 v3r2 MiddlewareUnix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION