Item Search

Name	Audit Name	Plugin	Category
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - lsmod	CIS Debian 8 Server L1 v2.0.2	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Debian 8 Server L1 v2.0.2	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Debian 8 Workstation L1 v2.0.2	Unix	CONFIGURATION MANAGEMENT
1.1.9 Ensure noexec option set on /var/tmp partition	CIS Debian 8 Server L1 v2.0.2	Unix	CONFIGURATION MANAGEMENT
1.1.16 Ensure noexec option set on /dev/shm partition	CIS Debian 8 Workstation L1 v2.0.2	Unix	CONFIGURATION MANAGEMENT
1.1.16 Ensure noexec option set on /dev/shm partition	CIS Debian 8 Server L1 v2.0.2	Unix	CONFIGURATION MANAGEMENT
1.1.19 Ensure noexec option set on removable media partitions	CIS Debian 8 Workstation L1 v2.0.2	Unix	CONFIGURATION MANAGEMENT
2.5 (L1) Host must only run binaries delivered via signed VIB	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
3.23 (L2) Host must deny shell access for the vpxuser account	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
4.2.15 Ensure that the --IPAddressDeny is set to any	CIS Kubernetes v1.11.1 L2 Worker Node	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
5.1.2 Ensure Apple Mobile File Integrity (AMFI) Is Enabled	CIS Apple macOS 12.0 Monterey Cloud-tailored v1.1.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.2 Ensure Apple Mobile File Integrity (AMFI) Is Enabled	CIS Apple macOS 13.0 Ventura Cloud-tailored v1.1.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.2 Ensure Apple Mobile File Integrity (AMFI) Is Enabled	CIS Apple macOS 14.0 Sonoma Cloud-tailored v1.1.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.2 Ensure Apple Mobile File Integrity (AMFI) Is Enabled	CIS Apple macOS 15.0 Sequoia Cloud-tailored v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.2 Ensure System Integrity Protection Status (SIP) Is Enabled	CIS Apple macOS 12.0 Monterey v4.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
5.1.2 Ensure System Integrity Protection Status (SIP) Is Enabled	CIS Apple macOS 10.15 Catalina v3.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
5.1.2 Ensure System Integrity Protection Status (SIPS) Is Enabled	CIS Apple macOS 10.14 v2.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
5.1.3 Ensure Apple Mobile File Integrity (AMFI) Is Enabled	CIS Apple macOS 10.15 Catalina v3.0.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.3 Ensure Apple Mobile File Integrity (AMFI) Is Enabled	CIS Apple macOS 11.0 Big Sur v4.0.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.3 Ensure Apple Mobile File Integrity (AMFI) Is Enabled	CIS Apple macOS 12.0 Monterey v4.0.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.3 Ensure Apple Mobile File Integrity (AMFI) Is Enabled	CIS Apple macOS 13.0 Ventura v3.1.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.3 Ensure Apple Mobile File Integrity (AMFI) Is Enabled	CIS Apple macOS 14.0 Sonoma v2.1.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.3 Ensure Apple Mobile File Integrity (AMFI) Is Enabled	CIS Apple macOS 15.0 Sequoia v1.1.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.3 Ensure Apple Mobile File Integrity Is Enabled	CIS Apple macOS 10.14 v2.0.0 L1	Unix	CONFIGURATION MANAGEMENT
5.1.4 Ensure Library Validation Is Enabled	CIS Apple macOS 10.14 v2.0.0 L1	Unix	CONFIGURATION MANAGEMENT
5.2 (L1) Host must block network traffic by default	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
5.2.13 Minimize the admission of containers which use HostPorts	CIS Kubernetes v1.11.1 L1 Master Node	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
6.2.1 Ensure Protect Mail Activity in Mail Is Enabled	CIS Apple macOS 14.0 Sonoma v2.1.0 L2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
6.2.1 Ensure Protect Mail Activity in Mail Is Enabled	CIS Apple macOS 15.0 Sequoia v1.1.0 L2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
6.3.1 Ensure Automatic Opening of Safe Files in Safari Is Disabled	CIS Apple macOS 14.0 Sonoma v2.1.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
6.3.1 Ensure Automatic Opening of Safe Files in Safari Is Disabled	CIS Apple macOS 15.0 Sequoia v1.1.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
6.3.1 Ensure Automatic Opening of Safe Files in Safari Is Disabled	CIS Apple macOS 13.0 Ventura v3.1.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
6.3.3 Ensure Warn When Visiting A Fraudulent Website in Safari Is Enabled	CIS Apple macOS 14.0 Sonoma v2.1.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
6.3.3 Ensure Warn When Visiting A Fraudulent Website in Safari Is Enabled	CIS Apple macOS 15.0 Sequoia v1.1.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
6.3.3 Ensure Warn When Visiting A Fraudulent Website in Safari Is Enabled	CIS Apple macOS 13.0 Ventura v3.1.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
6.3.5 Audit Hide IP Address in Safari Setting	CIS Apple macOS 14.0 Sonoma v2.1.0 L2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
6.3.5 Audit Hide IP Address in Safari Setting	CIS Apple macOS 15.0 Sequoia v1.1.0 L2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
6.13 Ensure that 'User consent for applications' is set to 'Allow user consent for apps from verified publishers, for selected permissions'	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	CONFIGURATION MANAGEMENT
6.14 Ensure that 'Users can register applications' is set to 'No'	CIS Microsoft Azure Foundations v4.0.0 L1	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
7.1.1 Ensure Protect Mail Activity in Mail Is Enabled	CIS Apple macOS 10.15 Catalina v3.0.0 L2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
7.2.1 Ensure Automatic Opening of Safe Files in Safari Is Disabled	CIS Apple macOS 12.0 Monterey v4.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
7.2.1 Ensure Automatic Opening of Safe Files in Safari Is Disabled	CIS Apple macOS 11.0 Big Sur v4.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
7.2.4 Ensure Warn When Visiting A Fradulent Website in Safari Is Enabled	CIS Apple macOS 11.0 Big Sur v4.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
7.2.4 Ensure Warn When Visiting A Fradulent Website in Safari Is Enabled	CIS Apple macOS 12.0 Monterey v4.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
7.2.6 Audit Hide IP Address in Safari Setting	CIS Apple macOS 11.0 Big Sur v4.0.0 L2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
7.2.6 Audit Hide IP Address in Safari Setting	CIS Apple macOS 12.0 Monterey v4.0.0 L2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
11.3 Ensure the httpd_t Type is Not in Permissive Mode	CIS Apache HTTP Server 2.4 v2.2.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, MEDIA PROTECTION
11.4 Ensure Only the Necessary SELinux Booleans are Enabled	CIS Apache HTTP Server 2.4 v2.2.0 L2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
12.1 Ensure the AppArmor Framework Is Enabled	CIS Apache HTTP Server 2.4 v2.2.0 L2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
20.3 (L1) Ensure 'Microsoft Internet Explorer is not installed on the system'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

Detections

Analytics

Item Search