Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.4 Ensure MFA is enabled for the 'root' user accountCIS Amazon Web Services Foundations v5.0.0 L1amazon_aws

IDENTIFICATION AND AUTHENTICATION

1.5.9 Set 'priv' for each 'snmp-server group' using SNMPv3CIS Cisco IOS XE 17.x v2.1.1 L1Cisco

IDENTIFICATION AND AUTHENTICATION

1.5.10 Require 'aes 128' as minimum for 'snmp-server user' when using SNMPv3CIS Cisco IOS XE 17.x v2.1.1 L1Cisco

IDENTIFICATION AND AUTHENTICATION

2.2.6 Ensure 'REMOTE_LOGIN_PASSWORDFILE' Is Set to 'NONE'CIS Oracle Server 18c DB Unified Auditing v1.1.0OracleDB

IDENTIFICATION AND AUTHENTICATION

2.2.7 Ensure 'REMOTE_OS_AUTHENT' Is Set to 'FALSE'CIS Oracle Server 18c DB Unified Auditing v1.1.0OracleDB

IDENTIFICATION AND AUTHENTICATION

2.3.10.6 Ensure 'Network access: Named Pipes that can be accessed anonymously' is set to 'None'CIS Windows 7 Workstation Level 1 v3.2.0Windows

IDENTIFICATION AND AUTHENTICATION

2.3.11.7 (L1) Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

IDENTIFICATION AND AUTHENTICATION

3.1 Ensure 'Server Authentication' Property is set to 'Windows Authentication Mode'CIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

IDENTIFICATION AND AUTHENTICATION

3.4 Ensure SQL Authentication is not used in contained databasesCIS SQL Server 2014 Database L1 DB v1.5.0MS_SQLDB

IDENTIFICATION AND AUTHENTICATION

3.6.1.5 Ensure SSH PermitEmptyPasswords is disabledCIS IBM AIX 7.1 L1 v2.1.0Unix

IDENTIFICATION AND AUTHENTICATION

4.1.1 Ensure only MFA enabled identities can access privileged Virtual MachineCIS Microsoft Azure Foundations v4.0.0 L2microsoft_azure

IDENTIFICATION AND AUTHENTICATION

5.1 Ensure login via 'local' UNIX Domain Socket is configured correctlyCIS PostgreSQL 16 OS v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

5.3 Ensure login via 'local' UNIX Domain Socket is configured correctlyCIS PostgreSQL 13 OS v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

6.2.2 Ensure no legacy '+' entries exist in /etc/passwd - + entries exist in /etc/passwdCIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

6.2.5 Ensure no legacy '+' entries exist in /etc/group - + entries exist in /etc/groupCIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

6.2.5 Ensure no legacy '+' entries exist in /etc/group - + entries exist in /etc/groupCIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

6.9.3 Ensure SSH Key Authentication is not set for Root LoginCIS Juniper OS Benchmark v2.1.0 L1Juniper

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

6.10.1.1 Ensure SSH Service is Configured if Remote CLI is RequiredCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.1.2 Ensure SSH is Restricted to Version 2CIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.1.4 Ensure SSH Rate Limit is ConfiguredCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.1.6 Ensure Strong Ciphers are set for SSHCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.1.8 Ensure Strong MACs are set for SSHCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.1.9 Ensure Strong Key Exchange Methods are set for SSHCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.1.11 Ensure Strong Key Signing Algorithms are set for SSHCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.2.3 Ensure Web-Management is Set to use PKI Certificate for HTTPSCIS Juniper OS Benchmark v2.1.0 L2Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.2.5 Ensure Session Limited is Set for Web-ManagementCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

6.10.3.1 Ensure XNM-Clear-Text Service is Not SetCIS Juniper OS Benchmark v2.1.0 L1Juniper

IDENTIFICATION AND AUTHENTICATION

18.8.28.2 (L1) Ensure 'Do not enumerate connected users on domain-joined computers' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

IDENTIFICATION AND AUTHENTICATION

18.9.6.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

IDENTIFICATION AND AUTHENTICATION

APPL-14-003020 The macOS system must enforce smart card authentication.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

IDENTIFICATION AND AUTHENTICATION

APPL-14-003030 The macOS system must allow smart card authentication.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

IDENTIFICATION AND AUTHENTICATION

Big Sur - Configure Login Window to Prompt for Username and PasswordNIST macOS Big Sur v1.4.0 - CNSSI 1253Unix

IDENTIFICATION AND AUTHENTICATION

Big Sur - Enforce Multifactor Authentication for Privilege Escalation Through the sudo CommandNIST macOS Big Sur v1.4.0 - 800-171Unix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

Big Sur - Enforce Multifactor Authentication for the su CommandNIST macOS Big Sur v1.4.0 - 800-53r5 ModerateUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

Catalina - Configure Login Window to Prompt for Username and PasswordNIST macOS Catalina v1.5.0 - 800-171Unix

IDENTIFICATION AND AUTHENTICATION

Catalina - Configure Login Window to Prompt for Username and PasswordNIST macOS Catalina v1.5.0 - 800-53r4 HighUnix

IDENTIFICATION AND AUTHENTICATION

Catalina - Configure Login Window to Prompt for Username and PasswordNIST macOS Catalina v1.5.0 - 800-53r4 LowUnix

IDENTIFICATION AND AUTHENTICATION

Catalina - Configure Login Window to Prompt for Username and PasswordNIST macOS Catalina v1.5.0 - 800-53r5 HighUnix

IDENTIFICATION AND AUTHENTICATION

Catalina - Configure Login Window to Prompt for Username and PasswordNIST macOS Catalina v1.5.0 - CNSSI 1253Unix

IDENTIFICATION AND AUTHENTICATION

Catalina - Enforce Multifactor Authentication for LoginNIST macOS Catalina v1.5.0 - 800-53r5 LowUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

Catalina - Enforce Multifactor Authentication for LoginNIST macOS Catalina v1.5.0 - 800-53r5 ModerateUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

Catalina - Enforce Multifactor Authentication for Privilege Escalation Through the sudo CommandNIST macOS Catalina v1.5.0 - CNSSI 1253Unix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

Monterey - Configure Login Window to Prompt for Username and PasswordNIST macOS Monterey v1.0.0 - 800-53r5 HighUnix

IDENTIFICATION AND AUTHENTICATION

Monterey - Configure Login Window to Prompt for Username and PasswordNIST macOS Monterey v1.0.0 - 800-171Unix

IDENTIFICATION AND AUTHENTICATION

Monterey - Configure Login Window to Prompt for Username and PasswordNIST macOS Monterey v1.0.0 - 800-53r4 LowUnix

IDENTIFICATION AND AUTHENTICATION

Monterey - Configure Login Window to Prompt for Username and PasswordNIST macOS Monterey v1.0.0 - 800-53r4 ModerateUnix

IDENTIFICATION AND AUTHENTICATION

Monterey - Configure Login Window to Prompt for Username and PasswordNIST macOS Monterey v1.0.0 - All ProfilesUnix

IDENTIFICATION AND AUTHENTICATION

OL07-00-010500 - The Oracle Linux operating system must uniquely identify and must authenticate organizational users (or processes acting on behalf of organizational users) using multifactor authentication.DISA Oracle Linux 7 STIG v3r2Unix

IDENTIFICATION AND AUTHENTICATION

UBTU-18-010427 - The Ubuntu operating system must implement smart card logins for multifactor authentication for access to accounts.DISA STIG Ubuntu 18.04 LTS v2r15Unix

IDENTIFICATION AND AUTHENTICATION

WN22-DC-000310 - Windows Server 2022 Active Directory user accounts, including administrators, must be configured to require the use of a Common Access Card (CAC), Personal Identity Verification (PIV)-compliant hardware token, or Alternate Logon Token (ALT) for user authentication.DISA Microsoft Windows Server 2022 STIG v2r4Windows

IDENTIFICATION AND AUTHENTICATION