Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.3.1 Ensure AIDE is installedCIS CentOS Linux 8 Server L1 v2.0.0Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

1.3.1 Ensure AIDE is installedCIS Fedora 28 Family Linux Server L1 v2.0.0Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

1.3.1 Ensure AIDE is installedCIS Amazon Linux 2023 Server L1 v1.0.0Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

5.3.1 Ensure AIDE is installedCIS Red Hat Enterprise Linux 7 v4.0.0 L1 ServerUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

5.3.1 Ensure AIDE is installedCIS Red Hat EL8 Server L1 v3.0.0Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

6.1.1 Ensure AIDE is installedCIS SUSE Linux Enterprise 15 v2.0.0 L1 ServerUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

6.1.1 Ensure AIDE is installedCIS Rocky Linux 9 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

18.9.47.15 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MSWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NGWindows

SYSTEM AND INFORMATION INTEGRITY

Disable promiscuous mode on all network interfacesTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

DTAM165 - McAfee VirusScan On-Access Default Processes Policies must be configured to detect unwanted programs.DISA McAfee VirusScan 8.8 Managed Client STIG v6r1Windows

SYSTEM AND INFORMATION INTEGRITY

Enable only necessary and secure services, protocols, daemons - 'lwsmd'TNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Ensure IP forwarding is disabledTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Configure Management VLAN'TNS HP ProCurveHPProCurve

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Disable Telnet'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT

HP ProCurve - 'Enable ARP protection'TNS HP ProCurveHPProCurve

SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Enable SFTP'TNS HP ProCurveHPProCurve

SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Secure Management VLAN is enabled'TNS HP ProCurveHPProCurve

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Snapshots are not presentTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - AAA - RADIUS server is trustedTNS SonicWALL v5.9SonicWALL

CONFIGURATION MANAGEMENT

SonicWALL - Content Filtering On - LANTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Disable insecure services - HTTPTNS SonicWALL v5.9SonicWALL
SonicWALL - Flood Protection - Layer 2 - ThresholdTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - Layer 2 - WAN machinesTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - Enforce complianceTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - Max Seg LifetimeTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Log Alert Emails - EnabledTNS SonicWALL v5.9SonicWALL

AUDIT AND ACCOUNTABILITY

SonicWALL - Login Banner - Wireless ZoneTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Password Policy - Affected User types - full-adminsTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - minimum length >= 8TNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Password Uniqueness >= 10TNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - User Lockout - EnabledTNS SonicWALL v5.9SonicWALL
SonicWALL - Review the DNS Server SettingsTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - SNMP Community Name - 'public' or 'private'TNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - SSL Control ON - LANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - SSL Control ON - WANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Syslog server - >=1 server configuredTNS SonicWALL v5.9SonicWALL
SonicWALL - Use non default admin access ports - HTTPTNS SonicWALL v5.9SonicWALL

CONFIGURATION MANAGEMENT

Use a static IP on the management network interfaceTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

User Account Control: Detect application installations and prompt for elevationMSCT Windows 10 v21H2 v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows 11 v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server v1909 MS v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server v2004 MS v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

XenServer - Enable only necessary and secure services, protocols, daemons - 'sshd'TNS Citrix XenServerUnix

CONFIGURATION MANAGEMENT

XenServer - Enable port locking by default on the VM guest networkTNS Citrix XenServerUnix
XenServer - Enable remote syslogTNS Citrix XenServerUnix

AUDIT AND ACCOUNTABILITY

XenServer - Ensure IP forwarding is disabledTNS Citrix XenServerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

XenServer - Identify a network interface to be used for storage accessTNS Citrix XenServerUnix

CONFIGURATION MANAGEMENT

XenServer - Install a trusted CA certificate on the poolTNS Citrix XenServerUnix