Detections
Analytics

Item Search

NameAudit NamePluginCategory
All network interfaces are operating in full-duplex modeTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Disable promiscuous mode on all network interfacesTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Enable only necessary and secure services, protocols, daemons - 'lwsmd'TNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Enable only necessary and secure services, protocols, daemons - 'snapwatchd'TNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Enable only necessary and secure services, protocols, daemons - 'sshd'TNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Enable port locking by default on the VM guest networkTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Enable remote syslogTNS Citrix HypervisorUnix

AUDIT AND ACCOUNTABILITY

Ensure IP forwarding is disabledTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Configure Management VLAN'TNS HP ProCurveHPProCurve

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Disable IP Stack Management'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT

HP ProCurve - 'Disable Telnet'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT

HP ProCurve - 'Enable ARP protection'TNS HP ProCurveHPProCurve

SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Enable SFTP'TNS HP ProCurveHPProCurve

SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'RADIUS or TACACS Authentication is configured'TNS HP ProCurveHPProCurve
HP ProCurve - 'Secure Management VLAN is enabled'TNS HP ProCurveHPProCurve

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Install a trusted CA certificate on the poolTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

PANW-AG-000148 - The Palo Alto Networks security platform must inspect inbound and outbound FTP and FTPS communications traffic (if authorized) for protocol compliance and protocol anomalies.DISA STIG Palo Alto ALG v3r4Palo_Alto

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Passwords stored in 'secrets' are not visibleTNS Citrix HypervisorUnix

IDENTIFICATION AND AUTHENTICATION

Snapshots are not presentTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - Handshake enforcementTNS SonicWALL v5.9SonicWALL
SonicWALL - Flood Protection - TCP - Timeout <= 5 minutesTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - IDP ON - DMZTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - IDP ON - WANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Logging Level - InformationTNS SonicWALL v5.9SonicWALL

AUDIT AND ACCOUNTABILITY

SonicWALL - Password Policy - Complexity LevelTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - PW Policy - Lockout Duration - >= 5 minutesTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Review the NTP server configurationTNS SonicWALL v5.9SonicWALL

AUDIT AND ACCOUNTABILITY

SonicWALL - Security Services - IDP - Signature TimestampTNS SonicWALL v5.9SonicWALL

AUDIT AND ACCOUNTABILITY

SonicWALL - SSL Control - Block the conn. and log the eventTNS SonicWALL v5.9SonicWALL

AUDIT AND ACCOUNTABILITY

SonicWALL - SSL Control - Detect Expired CertificatesTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

Use a static IP on the management network interfaceTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server 2012 R2 MS v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server 2016 DC v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server 2016 MS v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows 10 1903 v1.19.9Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows 11 v24H2 v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows 10 1909 v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows 10 v20H2 v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows 10 v22H2 v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server 1903 DC v1.19.9Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server v20H2 DC v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevation - EnableInstallerDetectionMSCT Windows Server 2025 MS v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevation - EnableInstallerDetectionMSCT Windows Server 2025 DC v1.0.0Windows

ACCESS CONTROL

XenServer - Enable only necessary and secure services, protocols, daemons - 'lwsmd'TNS Citrix XenServerUnix

CONFIGURATION MANAGEMENT

XenServer - Enable only necessary and secure services, protocols, daemons - 'sshd'TNS Citrix XenServerUnix

CONFIGURATION MANAGEMENT

XenServer - Enable port locking by default on the VM guest networkTNS Citrix XenServerUnix
XenServer - External authentication is disabledTNS Citrix XenServerUnix
XenServer - Restrict allowed IPv6 addresses used by each VM guestTNS Citrix XenServerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

XenServer - Snapshots are not presentTNS Citrix XenServerUnix