Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.5 Ensure monitoring and alerting exist for creation, update and deletion of security integrationsCIS Snowflake Foundations v1.0.0 L1Snowflake

AUDIT AND ACCOUNTABILITY

18.9.47.15 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DCWindows

SYSTEM AND INFORMATION INTEGRITY

18.9.47.15 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MSWindows

SYSTEM AND INFORMATION INTEGRITY

18.9.47.15 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DCWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L1 MSWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 10 Enterprise v4.0.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NGWindows

SYSTEM AND INFORMATION INTEGRITY

High availability is enabledTNS Citrix HypervisorUnix

CONTINGENCY PLANNING

HP ProCurve - 'Disable HTTP'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT

HP ProCurve - 'Disable TFTP client'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT

HP ProCurve - 'Privilege mode is configured'TNS HP ProCurveHPProCurve

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Ensure default 'admin' username is not usedTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Anti-Spyware - DMZTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Anti-Spyware - LANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Anti-Spyware - WLANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - AutoDownload Firmware - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Content Filtering On - DMZTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Content Filtering On - WLANTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Disable insecure services - HTTPTNS SonicWALL v5.9SonicWALL
SonicWALL - Flood Protection - Layer 2 - All InterfacesTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - Layer 3 - Attack ThresholdTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - Layer 3 - Protection ModeTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - checksum enforcementTNS SonicWALL v5.9SonicWALL
SonicWALL - Flood Protection - TCP - Enforce complianceTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - IDP ON - DMZTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - IDP ON - WANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Log Alert Emails - EnabledTNS SonicWALL v5.9SonicWALL

AUDIT AND ACCOUNTABILITY

SonicWALL - Login Banner - VPN ZoneTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Login Banner - Wireless ZoneTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Password Policy - Affected User typesTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Affected User types - limited-adminsTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Change Period <=30 daysTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Complexity LevelTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Review the NTP server configurationTNS SonicWALL v5.9SonicWALL

AUDIT AND ACCOUNTABILITY

SonicWALL - SSL Control - Detect SSLv2TNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - SSL Control ON - WLANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Unused InterfacesTNS SonicWALL v5.9SonicWALL

CONFIGURATION MANAGEMENT

SonicWALL - User Inactivity Timeout - 5 minutes or lessTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

XenServer - Administrative actions are loggedTNS Citrix XenServerUnix
XenServer - Disable promiscuous mode on all network interfacesTNS Citrix XenServerUnix
XenServer - Enable only necessary and secure services, protocols, daemons - 'lwsmd'TNS Citrix XenServerUnix

CONFIGURATION MANAGEMENT

XenServer - Enable only necessary and secure services, protocols, daemons - 'snapwatchd'TNS Citrix XenServerUnix

CONFIGURATION MANAGEMENT

XenServer - Enable only necessary and secure services, protocols, daemons - 'sshd'TNS Citrix XenServerUnix

CONFIGURATION MANAGEMENT

XenServer - Host is enabledTNS Citrix XenServerUnix
XenServer - Restrict allowed IPv4 addresses used by each VM guestTNS Citrix XenServerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

XenServer - Snapshots are not presentTNS Citrix XenServerUnix
XenServer - Use a static IP on the management network interfaceTNS Citrix XenServerUnix
XenServer - Use a static IP on the storage network interfaceTNS Citrix XenServerUnix