Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.2.4 Ensure 'OS_ROLES' Is Set to 'FALSE'CIS Oracle Server 18c DB Traditional Auditing v1.1.0OracleDB

ACCESS CONTROL

2.2.5 Ensure 'Allow log on locally' is set to 'Administrators, Users'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

ACCESS CONTROL

2.2.6 Ensure 'REMOTE_LOGIN_PASSWORDFILE' Is Set to 'NONE'CIS Oracle Server 18c DB Traditional Auditing v1.1.0OracleDB

IDENTIFICATION AND AUTHENTICATION

2.2.18 Ensure 'Deny log on as a service' to include 'Guests'CIS Windows 7 Workstation Level 1 v3.2.0Windows

ACCESS CONTROL

2.2.31 Ensure 'Modify an object label' is set to 'No One'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

ACCESS CONTROL

2.2.36 Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

ACCESS CONTROL

2.3.1.2 Ensure 'Accounts: Guest account status' is set to 'Disabled'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

ACCESS CONTROL

2.3.1.5 Configure 'Accounts: Rename guest account'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

ACCESS CONTROL

2.3.11.1 Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

IDENTIFICATION AND AUTHENTICATION

3.2 Ensure CONNECT permissions on the 'guest user' is Revoked within all SQL Server databases excluding the master, msdb and tempdbCIS SQL Server 2012 Database L1 AWS RDS v1.6.0MS_SQLDB

ACCESS CONTROL

4.3 Ensure 'DBA_USERS.AUTHENTICATION_TYPE' Is Not Set to 'EXTERNAL' for Any UserCIS Oracle Server 12c DB Unified Auditing v3.0.0OracleDB

IDENTIFICATION AND AUTHENTICATION

4.3 Ensure 'DBA_USERS.AUTHENTICATION_TYPE' Is Not Set to 'EXTERNAL' for Any UserCIS Oracle Server 18c DB Unified Auditing v1.1.0OracleDB

IDENTIFICATION AND AUTHENTICATION

5.1.8 Ensure at/cron is restricted to authorized users - '/etc/at.allow'CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0Unix

ACCESS CONTROL

5.1.8 Ensure at/cron is restricted to authorized users - '/etc/at.deny'CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0Unix

ACCESS CONTROL

5.3.3 Ensure password reuse is limitedCIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0Unix

ACCESS CONTROL

5.4.2 Ensure system accounts are securedCIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0Unix

ACCESS CONTROL

5.4.2 Ensure system accounts are securedCIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0Unix

ACCESS CONTROL

6.2.16 Ensure no duplicate UIDs existCIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0Unix

ACCESS CONTROL

6.2.17 Ensure no duplicate GIDs existCIS Red Hat 6 Workstation L1 v3.0.0Unix

ACCESS CONTROL

6.2.17 Ensure no duplicate GIDs existCIS Oracle Linux 6 Server L1 v2.0.0Unix

ACCESS CONTROL

6.2.19 Ensure no duplicate group names existCIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0Unix

ACCESS CONTROL

6.2.19 Ensure no duplicate group names existCIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0Unix

ACCESS CONTROL

18.9.15.1 (L1) Ensure 'Do not display the password reveal button' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

CONFIGURATION MANAGEMENT

Accounts: Guest account statusMSCT Windows Server 2016 MS v1.0.0Windows

ACCESS CONTROL

Allow log on locallyMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

Allow log on locallyMSCT Windows Server v2004 DC v1.0.0Windows

ACCESS CONTROL

Allow log on locallyMSCT Windows Server 2016 MS v1.0.0Windows

ACCESS CONTROL

Allow log on through Remote Desktop ServicesMSCT Windows Server v20H2 DC v1.0.0Windows

ACCESS CONTROL

Allow log on through Remote Desktop ServicesMSCT Windows Server 1903 DC v1.19.9Windows

ACCESS CONTROL

Allow log on through Remote Desktop ServicesMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

Allow log on through Remote Desktop ServicesMSCT Windows Server 2012 R2 MS v1.0.0Windows

ACCESS CONTROL

Deny access to this computer from the networkMSCT Windows Server 2012 R2 DC v1.0.0Windows

ACCESS CONTROL

Deny access to this computer from the networkMSCT Windows Server 2016 DC v1.0.0Windows

ACCESS CONTROL

Deny access to this computer from the networkMSCT Windows 10 v1507 v1.0.0Windows

ACCESS CONTROL

Deny access to this computer from the networkMSCT Windows 10 1909 v1.0.0Windows

ACCESS CONTROL

Deny log on locallyMSCT Windows 10 1803 v1.0.0Windows

ACCESS CONTROL

Deny log on through Remote Desktop ServicesMSCT Windows Server v2004 MS v1.0.0Windows

ACCESS CONTROL

Deny log on through Remote Desktop ServicesMSCT Windows 10 1809 v1.0.0Windows

ACCESS CONTROL

Domain member: Maximum machine account password ageMSCT Windows 10 v1507 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Domain member: Maximum machine account password ageMSCT Windows 10 1809 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Ensure password fields are not emptyTenable Cisco Firepower Management Center OS Best Practices AuditUnix

IDENTIFICATION AND AUTHENTICATION

Lock pages in memoryMSCT Windows Server 2016 DC v1.0.0Windows

ACCESS CONTROL

Lock pages in memoryMSCT Windows Server 2016 MS v1.0.0Windows

ACCESS CONTROL

Lock pages in memoryMSCT Windows 10 v1507 v1.0.0Windows

ACCESS CONTROL

Lock pages in memoryMSCT Windows 10 1903 v1.19.9Windows

ACCESS CONTROL

Lock pages in memoryMSCT Windows 10 v20H2 v1.0.0Windows

ACCESS CONTROL

Microsoft network server: Disconnect clients when logon hours expireMSCT Windows Server 2012 R2 DC v1.0.0Windows

ACCESS CONTROL

Microsoft network server: Disconnect clients when logon hours expireMSCT Windows Server 2012 R2 MS v1.0.0Windows

ACCESS CONTROL

Modify an object labelMSCT Windows Server 2012 R2 MS v1.0.0Windows

ACCESS CONTROL

Network security: Allow Local System to use computer identity for NTLMMSCT Windows 10 v1507 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION