Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.3.1 Ensure 'Minimum Password Complexity' is enabledCIS Palo Alto Firewall 6 Benchmark L1 v1.0.0Palo_Alto

IDENTIFICATION AND AUTHENTICATION

1.6.5 Apply Security Context to Your Pods and ContainersCIS Kubernetes 1.11 Benchmark v1.3.0 L2Unix
2.3.7.10 Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or 'Force Logoff' (STIG DC & MS only)CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MSWindows

ACCESS CONTROL

4.4 Defend against Denial of Service AttacksCIS ISC BIND 9.0/9.5 v2.0.0Unix
4.11 Ensure 'Dynamic IP Address Restrictions' is enabledCIS IIS 7 L1 v1.8.0Windows
5.3 Ensure 'ETW Logging' is enabled - Sites logFormat W3CCIS IIS 10 v1.2.1 Level 1Windows

AUDIT AND ACCOUNTABILITY

5.3 Ensure 'ETW Logging' is enabled - Sites logFormat W3C with ETW targetCIS IIS 10 v1.2.1 Level 1Windows

AUDIT AND ACCOUNTABILITY

5.7.3 Apply Security Context to Your Pods and ContainersCIS Kubernetes v1.23 Benchmark v1.0.1 L2 MasterUnix

CONFIGURATION MANAGEMENT

ESXi : apply-patchesVMWare vSphere 6.0 Hardening GuideVMware

SYSTEM AND INFORMATION INTEGRITY

ESXi : audit-exception-usersVMWare vSphere 6.5 Hardening GuideVMware

ACCESS CONTROL

ESXi : enable-auth-proxyVMWare vSphere 6.0 Hardening GuideVMware

IDENTIFICATION AND AUTHENTICATION

ESXi : enable-remote-syslogVMWare vSphere 6.0 Hardening GuideVMware

AUDIT AND ACCOUNTABILITY

ESXi : firewall-enabledVMWare vSphere 6.0 Hardening GuideVMware

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi : set-password-policiesVMWare vSphere 6.0 Hardening GuideVMware

IDENTIFICATION AND AUTHENTICATION

ESXi : set-shell-interactive-timeoutVMWare vSphere 6.0 Hardening GuideVMware

ACCESS CONTROL

ESXi : set-shell-timeoutVMWare vSphere 6.0 Hardening GuideVMware

ACCESS CONTROL

ESXi : verify-acceptance-level-certifiedVMWare vSphere 6.0 Hardening GuideVMware

SYSTEM AND INFORMATION INTEGRITY

ESXi : verify-acceptance-level-supportedVMWare vSphere 6.0 Hardening GuideVMware

SYSTEM AND INFORMATION INTEGRITY

IIST-SI-000231 - Directory Browsing on the IIS 10.0 website must be disabled.DISA IIS 10.0 Site v2r11Windows

SYSTEM AND INFORMATION INTEGRITY

IIST-SV-000124 - The IIS 10.0 web server must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell programs disabledDISA IIS 10.0 Server v2r10Windows

CONFIGURATION MANAGEMENT

IIST-SV-000124 - The IIS 10.0 web server must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell programs disabled.DISA IIS 10.0 Server v3r3Windows

CONFIGURATION MANAGEMENT

IIST-SV-000134 - The IIS 10.0 web server must use cookies to track session state.DISA IIS 10.0 Server v3r3Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IIST-SV-000138 - Directory Browsing on the IIS 10.0 web server must be disabled.DISA IIS 10.0 Server v2r10Windows

SYSTEM AND INFORMATION INTEGRITY

IIST-SV-000138 - Directory Browsing on the IIS 10.0 web server must be disabled.DISA IIS 10.0 Server v3r3Windows

SYSTEM AND INFORMATION INTEGRITY

IIST-SV-000145 - The IIS 10.0 web server must use a logging mechanism configured to allocate log record storage capacity large enough to accommodate the logging requirements of the IIS 10.0 web server.DISA IIS 10.0 Server v3r3Windows

AUDIT AND ACCOUNTABILITY

IIST-SV-000220 - The Request Smuggling filter must be enabled.DISA IIS 10.0 Server v3r3Windows

CONFIGURATION MANAGEMENT

IISW-SI-000231 - Directory Browsing on the IIS 8.5 website must be disabled.DISA IIS 8.5 Site v2r9Windows

SYSTEM AND INFORMATION INTEGRITY

IISW-SV-000124 - The IIS 8.5 web server must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell programs disabled - MIME that invoke OS shell programs disabledDISA IIS 8.5 Server v2r7Windows

CONFIGURATION MANAGEMENT

SHPT-00-000531 - SharePoint sites must not use NTLM - SharePoint sites must not use NTLM.DISA STIG SharePoint 2010 v1r9Windows

IDENTIFICATION AND AUTHENTICATION

VM : disable-disk-shrinking-shrinkVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : disable-disk-shrinking-wiperVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : disable-hgfsVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : disable-unexposed-features-protocolhandlerVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : disable-unexposed-features-toporequestVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : disable-unexposed-features-trashfolderstateVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : disable-unexposed-features-unity-interlockVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : disable-unexposed-features-unitypushVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : disconnect-devices-serialVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : limit-setinfo-sizeVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : minimize-console-VNC-useVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

VM : prevent-device-interaction-editVMWare vSphere 6.0 Hardening GuideVMware

ACCESS CONTROL

VM : TransparentPageSharing-inter-VM-EnabledVMWare vSphere 6.0 Hardening GuideVMware

SYSTEM AND INFORMATION INTEGRITY

VM : verify-network-filterVMWare vSphere 6.0 Hardening GuideVMware

ACCESS CONTROL

VM : verify-PCI-PassthroughVMWare vSphere 6.0 Hardening GuideVMware

CONFIGURATION MANAGEMENT

vNetwork : limit-network-healthcheckVMWare vSphere 6.0 Hardening GuideVMware
vNetwork : reject-forged-transmit - 'PortGroup'VMWare vSphere 6.0 Hardening GuideVMware

SYSTEM AND COMMUNICATIONS PROTECTION

vNetwork : reject-mac-changes - 'portgroup'VMWare vSphere 6.0 Hardening GuideVMware

SYSTEM AND COMMUNICATIONS PROTECTION

vNetwork : reject-mac-changes - 'vswitch'VMWare vSphere 6.0 Hardening GuideVMware

SYSTEM AND COMMUNICATIONS PROTECTION

vNetwork : reject-promiscuous-mode - 'vswitch'VMWare vSphere 6.0 Hardening GuideVMware

SYSTEM AND COMMUNICATIONS PROTECTION

vNetwork : verify-dvfilter-bindVMWare vSphere 6.0 Hardening GuideVMware

ACCESS CONTROL