Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.3.6.5 (L1) Ensure 'Domain member: Maximum machine account password age' is set to '30 or fewer days, but not 0'CIS Microsoft Windows Server 2022 v4.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

2.3.7.6 Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' (MS only)CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

IDENTIFICATION AND AUTHENTICATION

2.3.7.6 Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' (MS only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MSWindows

IDENTIFICATION AND AUTHENTICATION

2.3.7.7 (L1) Ensure 'Interactive logon: Prompt user to change password before expiration' is set to 'between 5 and 14 days'CIS Windows Server 2012 R2 MS L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

2.3.7.7 (L2) Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)'CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NGWindows

IDENTIFICATION AND AUTHENTICATION

2.3.7.7 (L2) Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)'CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLockerWindows

IDENTIFICATION AND AUTHENTICATION

2.3.7.7 Ensure 'Interactive logon: Prompt user to change password before expiration' is set to 'between 5 and 14 days'CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DCWindows

IDENTIFICATION AND AUTHENTICATION

2.3.7.7 Ensure 'Interactive logon: Prompt user to change password before expiration' is set to 'between 5 and 14 days'CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

2.5.14.2.1.2 Ensure 'Missing CRLs' is set to 'Enabled: Error'CIS Microsoft Office Enterprise v1.2.0 L1Windows

IDENTIFICATION AND AUTHENTICATION

5.2.6 Ensure maxage is configuredCIS IBM AIX 7 v1.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

5.3.1.1 Ensure latest version of pam is installedCIS Debian Linux 11 v2.0.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.3.1.1 Ensure latest version of pam is installedCIS Ubuntu Linux 22.04 LTS v2.0.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

5.3.1.1 Ensure latest version of pam is installedCIS Ubuntu Linux 24.04 LTS v1.0.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

5.3.1.2 Ensure libpam-modules is installedCIS Ubuntu Linux 24.04 LTS v1.0.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

5.3.1.3 Ensure libpam-pwquality is installedCIS Debian Linux 12 v1.1.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.4.4 Ensure password hashing algorithm is SHA-512 - system-authCIS CentOS 6 Server L1 v3.0.0Unix

IDENTIFICATION AND AUTHENTICATION

6.1.3 Ensure permissions on /etc/passwd- are configuredCIS CentOS 6 Server L1 v3.0.0Unix

IDENTIFICATION AND AUTHENTICATION

6.1.4 Ensure permissions on /etc/group are configuredCIS CentOS 6 Server L1 v3.0.0Unix

IDENTIFICATION AND AUTHENTICATION

18.9.25.7 (L1) Ensure 'Post-authentication actions: Grace period (hours)' is set to 'Enabled: 8 or fewer hours, but not 0'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.25.7 (L1) Ensure 'Post-authentication actions: Grace period (hours)' is set to 'Enabled: 8 or fewer hours, but not 0'CIS Microsoft Windows Server 2022 v4.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

18.9.25.7 (L1) Ensure 'Post-authentication actions: Grace period (hours)' is set to 'Enabled: 8 or fewer hours, but not 0'CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLockerWindows

IDENTIFICATION AND AUTHENTICATION

18.10.14.1 (L1) Ensure 'Do not display the password reveal button' is set to 'Enabled'CIS Windows Server 2012 R2 MS L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

18.10.14.1 (L1) Ensure 'Do not display the password reveal button' is set to 'Enabled'CIS Windows Server 2012 DC L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

18.10.14.1 (L1) Ensure 'Do not display the password reveal button' is set to 'Enabled'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

18.10.14.1 Ensure 'Do not display the password reveal button' is set to 'Enabled'CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DCWindows

IDENTIFICATION AND AUTHENTICATION

18.10.14.1 Ensure 'Do not display the password reveal button' is set to 'Enabled'CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

18.10.15.1 (L1) Ensure 'Do not display the password reveal button' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v4.0.0 L1Windows

IDENTIFICATION AND AUTHENTICATION

18.10.57.2.2 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise v4.0.0 L1Windows

IDENTIFICATION AND AUTHENTICATION

18.10.57.2.2 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BLWindows

IDENTIFICATION AND AUTHENTICATION

18.10.57.2.3 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v4.0.0 L1Windows

IDENTIFICATION AND AUTHENTICATION

18.10.57.2.3 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLockerWindows

IDENTIFICATION AND AUTHENTICATION

Allow Basic authentication for HTTPMSCT Edge v133 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Do not allow passwords to be savedMSCT Windows Server 2022 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Do not allow passwords to be savedMSCT Windows 11 v24H2 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Do not allow passwords to be saved - DisablePasswordSavingMSCT Windows Server 2025 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Enable saving passwords to the password managerMSCT Microsoft Edge Version 80 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Enable saving passwords to the password managerMSCT Edge v86 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Enable saving passwords to the password managerMSCT Edge v87 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Enable saving passwords to the password managerMSCT Edge v91 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Enable saving passwords to the password managerMSCT edge v96 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network security: Do not store LAN Manager hash value on next password changeMSCT Windows 11 v23H2 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network security: LAN Manager authentication levelMSCT Windows Server 2022 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network security: LAN Manager authentication levelMSCT Windows 11 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network security: LAN Manager authentication levelMSCT Windows 11 v23H2 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network security: LDAP client signing requirementsMSCT Windows 10 v22H2 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network security: LDAP client signing requirements - LDAPClientIntegrityMSCT Windows Server 2025 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network security: LDAP client signing requirements - LDAPClientIntegrityMSCT Windows Server 2025 MS v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Sign-in and lock last interactive user automatically after a restartMSCT MSCT Windows Server 2022 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Sign-in and lock last interactive user automatically after a restartMSCT Windows 10 v22H2 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Sign-in and lock last interactive user automatically after a restartMSCT Windows 11 v22H2 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION