Item Search

NameAudit NamePluginCategory
2.3.17.4 Ensure 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' is set to 'Prompt for consent on the secure desktop or Prompt for credentials on the secure desktop' (STIG only)CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MSWindows

ACCESS CONTROL

5.1.1.4 Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'Java' PackagesCIS Oracle Server 12c DB Traditional Auditing v3.0.0OracleDB

ACCESS CONTROL

5.1.1.4 Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'Java' PackagesCIS Oracle Server 12c DB Unified Auditing v3.0.0OracleDB

ACCESS CONTROL

5.1.1.4 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "Java" PackagesCIS Oracle Server 19c DB Traditional Auditing v1.2.0OracleDB

ACCESS CONTROL, MEDIA PROTECTION

AIX7-00-002057 - AIX audit logs must be rotated daily.DISA STIG AIX 7.x v3r1Unix

CONFIGURATION MANAGEMENT

DISA_STIG_McAfee_VirusScan_8.8_Managed_Client_v6r1.audit from DISA McAfee VirusScan 8.8 Managed Client Security Technical implementation Guide v6r1 STIGDISA McAfee VirusScan 8.8 Managed Client STIG v6r1Windows
DTBI061-IE11 - Java permissions must be configured with High Safety (Intranet zone).DISA STIG IE 11 v2r5Windows

CONFIGURATION MANAGEMENT

GEN002860 - Audit logs must be rotated daily.DISA STIG AIX 6.1 v1r14Unix

CONFIGURATION MANAGEMENT

Java permissions - Internet ZoneMSCT Windows 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Internet ZoneMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Intranet ZoneMSCT Windows 10 1803 v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Intranet ZoneMSCT Windows 10 1809 v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Intranet ZoneMSCT Windows 10 1903 v1.19.9Windows

CONFIGURATION MANAGEMENT

Java permissions - Intranet ZoneMSCT Windows 10 v20H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Intranet ZoneMSCT Windows 10 v21H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Intranet ZoneMSCT Windows Server 1903 DC v1.19.9Windows

CONFIGURATION MANAGEMENT

Java permissions - Locked-Down Intranet ZoneMSCT Windows 10 1903 v1.19.9Windows

CONFIGURATION MANAGEMENT

Java permissions - Locked-Down Intranet ZoneMSCT Windows 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Locked-Down Intranet ZoneMSCT Windows Server 2019 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Locked-Down Intranet ZoneMSCT Windows Server 2022 v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Locked-Down Intranet ZoneMSCT Windows Server v20H2 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Locked-Down Intranet ZoneMSCT Windows Server 2025 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

JBOS-AS-000030 - The Java Security Manager must be enabled for the JBoss application server.DISA JBoss EAP 6.3 STIG v2r6Unix

ACCESS CONTROL

TCAT-AS-000610 - JMX authentication must be secured.DISA STIG Apache Tomcat Application Server 9 v3r2 MiddlewareUnix

IDENTIFICATION AND AUTHENTICATION

WBLC-01-000010 - Oracle WebLogic must use cryptography to protect the integrity of the remote access session - Unsecure Listen PortOracle WebLogic Server 12c Linux v2r2 MiddlewareUnix

ACCESS CONTROL

WBLC-05-000172 - Oracle WebLogic, when utilizing PKI-based authentication, must validate certificates by constructing a certification path with status information to an accepted trust anchor - Secure Listen PortOracle WebLogic Server 12c Windows v2r2Windows

IDENTIFICATION AND AUTHENTICATION

WBLC-05-000172 - Oracle WebLogic, when utilizing PKI-based authentication, must validate certificates by constructing a certification path with status information to an accepted trust anchor - Unsecure Listen PortOracle WebLogic Server 12c Windows v2r2Windows

IDENTIFICATION AND AUTHENTICATION

WBLC-06-000190 - Oracle WebLogic must employ cryptographic encryption to protect the integrity and confidentiality of nonlocal maintenance and diagnostic communications - Listen PortOracle WebLogic Server 12c Linux v2r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

WBLC-08-000211 - Oracle WebLogic must establish a trusted communications path between the user and organization-defined security functions within the information system - Listen PortOracle WebLogic Server 12c Linux v2r2 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

WBLC-08-000211 - Oracle WebLogic must establish a trusted communications path between the user and organization-defined security functions within the information system - SSL Listen PortOracle WebLogic Server 12c Windows v2r2Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WBLC-08-000231 - Oracle WebLogic must protect the confidentiality of applications and leverage transmission protection mechanisms, such as TLS and SSL VPN, when deploying applications - AdminServer Listen PortOracle WebLogic Server 12c Linux v2r2 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

WBLC-08-000231 - Oracle WebLogic must protect the confidentiality of applications and leverage transmission protection mechanisms, such as TLS and SSL VPN, when deploying applications - AdminServer Listen PortOracle WebLogic Server 12c Windows v2r2Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WBLC-08-000231 - Oracle WebLogic must protect the confidentiality of applications and leverage transmission protection mechanisms, such as TLS and SSL VPN, when deploying applications - AdminServer SSL Listen PortOracle WebLogic Server 12c Linux v2r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

WBLC-08-000239 - Oracle WebLogic must employ approved cryptographic mechanisms when transmitting sensitive data - SSL Listen PortOracle WebLogic Server 12c Linux v2r2 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

WDigest AuthenticationMSCT Windows 10 1803 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT MSCT Windows Server 2022 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows 11 v24H2 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows 10 1903 v1.19.9Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows Server 1903 DC v1.19.9Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows Server v20H2 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows 10 v20H2 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows 10 v21H1 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows 10 v21H2 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows 11 v23H2 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows Server 1903 MS v1.19.9Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows Server v1909 MS v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows Server v2004 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997)MSCT Windows 10 1909 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

WDigest Authentication (disabling may require KB2871997) - UseLogonCredentialMSCT Windows Server 2025 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY