Item Search

Name	Audit Name	Plugin	Category
1.6.2 Create Pod Security Policies for your cluster	CIS Kubernetes 1.7.0 Benchmark v1.1.0 L1	Unix	CONFIGURATION MANAGEMENT
1.6.2 Create Pod Security Policies for your cluster	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
2.2 Ensure 'CLR Enabled' Server Configuration Option is set to '0'	CIS Microsoft SQL Server 2022 v1.2.1 L1 AWS RDS	MS_SQLDB	CONFIGURATION MANAGEMENT
2.2 Ensure 'CLR Enabled' Server Configuration Option is set to '0'	CIS Microsoft SQL Server 2019 v1.5.2 L1 Database Engine	MS_SQLDB	CONFIGURATION MANAGEMENT
2.2 Ensure 'CLR Enabled' Server Configuration Option is set to '0'	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	CONFIGURATION MANAGEMENT
2.6.6.6.2.7 (L1) Ensure 'Trust Access to Visual Basic Project' is set to 'Disabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	CONFIGURATION MANAGEMENT
3.1 Ensure 'Server Authentication' Property is set to 'Windows Authentication Mode'	CIS Microsoft SQL Server 2019 v1.5.2 L1 Database Engine	MS_SQLDB	ACCESS CONTROL
3.1 Ensure 'Server Authentication' Property is set to 'Windows Authentication Mode'	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	IDENTIFICATION AND AUTHENTICATION
6.2 Ensure 'CLR Assembly Permission Set' is set to 'SAFE_ACCESS' for All CLR Assemblies	CIS SQL Server 2008 R2 DB Engine L1 v1.7.0	MS_SQLDB	CONFIGURATION MANAGEMENT
6.6 Ensure That Cloud SQL Database Instances Do Not Have Public IPs	CIS Google Cloud Platform Foundation v4.0.0 L2	GCP	ACCESS CONTROL, MEDIA PROTECTION
6.7 Ensure That Cloud SQL Database Instances Are Configured With Automated Backups	CIS Google Cloud Platform Foundation v4.0.0 L1	GCP	CONTINGENCY PLANNING
7.2 Ensure Asymmetric Key Size is set to 'greater than or equal to 2048' in non-system databases	CIS Microsoft SQL Server 2019 v1.5.2 L1 AWS RDS	MS_SQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.2 Ensure Asymmetric Key Size is set to' greater than or equal to 2048' in non-system databases	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
CIS VMware ESXi 5.5 v1.2.0 Level 2	CIS VMware ESXi 5.5 v1.2.0 Level 2	VMware
EX16-ED-000630 - The Exchange SMTP automated banner response must not reveal server details.	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r6	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
JUSX-IP-000013 - To protect against unauthorized data mining, the Juniper Networks SRX Series Gateway IDPS must prevent SQL injection attacks launched against data storage objects, including, at a minimum, databases, database records, and database fields.	DISA Juniper SRX Services Gateway IDPS v2r1	Juniper	ACCESS CONTROL
SQL2-00-015300 - SQL Server must monitor for security-relevant configuration settings to discover unauthorized changes.	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	CONFIGURATION MANAGEMENT
SQL2-00-015700 - Vendor-supported software and patches must be evaluated and patched against newly found vulnerabilities.	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	CONFIGURATION MANAGEMENT
SQL2-00-016700 - SQL Server must have the SQL Server Integrated Services (SSIS) software component removed from SQL Server if SSIS is unused.	DISA STIG SQL Server 2012 Database OS Audit v1r20	Windows	CONFIGURATION MANAGEMENT
SQL2-00-017500 - SQL Server must recover to a known state that is verifiable.	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	CONTINGENCY PLANNING
SQL2-00-024600 - Domain accounts used to manage a SQL Server platform must be different from those used to manage other platforms.	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	CONFIGURATION MANAGEMENT
SQL4-00-011900 - SQL Server must produce Trace or Audit records containing sufficient information to establish when the events occurred.	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-012400 - SQL Server must include organization-defined additional, more detailed information in Trace or Audit records for events identified by type, location, or subject.	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - DATABASE_OBJECT_OWNERSHIP_CH...	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - DATABASE_OBJECT_PERMISSION_C...	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - DATABASE_OWNERSHIP_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - DATABASE_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - Event ID 85	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - Event ID 86	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - Event ID 87	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - Event ID 102	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - Event ID 108	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - Event ID 173	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - SCHEMA_OBJECT_ACCESS_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - SCHEMA_OBJECT_OWNERSHIP_CHAN...	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036100 - SQL Server must generate Trace or Audit records when unsuccessful attempts to add privileges/permissions occur - SERVER_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - Event ID 82	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - Event ID 102	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - Event ID 110	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - Event ID 171	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - Event ID 177	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - SERVER_OBJECT_OWNERSHIP_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - SERVER_OBJECT_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur.	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 82	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-038100 - SQL Server must generate Trace or Audit records when successful accesses to designated objects occur - Event ID 91	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-038200 - SQL Server must generate Trace or Audit records when unsuccessful accesses to designated objects occur - Event ID 162	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-038200 - SQL Server must generate Trace or Audit records when unsuccessful accesses to designated objects occur - SUCCESSFUL_LOGIN_GROUP	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQLI-22-007300 - Access to common language runtime (CLR) code must be disabled or restricted unless specifically required and approved.	DISA Microsoft SQL Server 2022 Instance STIG v1r3 MS_SQLDB	MS_SQLDB	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search