Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.1.3 Ensure mounting of jffs2 filesystems is disabled - /etc/modprobe.d/CIS.confCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

1.1.3.6.12 Configure 'Interactive logon: Display user information when the session is locked'CIS Windows 8 L1 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

1.1.3.9.1 Configure 'MSS: (AutoShareWks) Enable Administrative Shares (recommended except for highly secure environments)'CIS Windows 8 L1 v1.0.0Windows

CONFIGURATION MANAGEMENT

1.2.4.2.6 Configure 'Prevent memory overwrite on restart'CIS Windows 8 L1 v1.0.0Windows

CONFIGURATION MANAGEMENT

1.2.4.19 Configure 'Turn off Windows Location Provider'CIS Windows 8 L1 v1.0.0Windows

CONFIGURATION MANAGEMENT

1.6 Ensure 'application pool identity' is configured for anonymous user identityCIS IIS 7 L1 v1.8.0Windows

CONFIGURATION MANAGEMENT

1.7.1.1 Ensure message of the day is configured properly - banner textCIS Amazon Linux v2.1.0 L1Unix

ACCESS CONTROL

1.7.1.3 Ensure remote login warning banner is configured properly - banner textCIS Amazon Linux v2.1.0 L1Unix

ACCESS CONTROL

2.2 Set 'Specify use of ActiveX Installer Service for installation of ActiveX controls' to 'Enabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

2.2.15 Ensure mail transfer agent is configured for local-only modeCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.3 Set 'Turn on ActiveX Filtering' to 'Enabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

2.9 Pair the remote control infrared receiver if enabled - 'DeviceEnabled = 0'CIS Apple OSX 10.10 Yosemite L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.12 Configure 'Prevent changing screen saver'CIS Windows 8 L1 v1.0.0Windows

ACCESS CONTROL

3.1 Ensure 'deployment method retail' is setCIS IIS 7 L1 v1.8.0Windows

CONFIGURATION MANAGEMENT

3.3 Set 'Disable 'Configuring History' to 'Enabled'CIS IE 11 v1.0.0Windows

AUDIT AND ACCOUNTABILITY

3.6 Ensure 'httpcookie' mode is configured for session state - ApplicationsCIS IIS 7 L2 v1.8.0Windows

CONFIGURATION MANAGEMENT

3.8 Configure 'Turn off InPrivate Browsing'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

4.2.2.1 Ensure syslog-ng service is enabledCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

4.4 Ensure http server is not runningCIS Apple OSX 10.10 Yosemite L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

5.1.3 Ensure permissions on /etc/cron.hourly are configuredCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

5.2.4 Ensure SSH X11 forwarding is disabledCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

6.1 Set 'Turn off browser geolocation' to 'Enabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

6.1.7 Ensure permissions on /etc/shadow- are configuredCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

6.2.9 Ensure users own their home directoriesCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

7.1 Set 'Restrict File Download' to 'Enabled' - explorer.exeCIS IE 9 v1.0.0Windows

CONFIGURATION MANAGEMENT

7.2 Set 'Notification bar' to 'Enabled' -explorer.exeCIS IE 9 v1.0.0Windows

CONFIGURATION MANAGEMENT

7.2 Set 'Scripted Window Security Restrictions' to 'Enabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

7.4 Set 'Notification bar' to 'Enabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

7.8 Set 'MK Protocol Security Restriction' to 'Enabled' - explorer.exeCIS IE 9 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.1.2 Set 'Allow drag and drop or copy and paste files' to 'Enabled:Disable'CIS IE 9 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.1.2 Set 'Allow paste operations via script' to 'Enabled:Disable'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.1.6 Set 'Allow script- initiated windows without size or position constraints' to 'Enabled:Disable'CIS IE 9 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.2.3 Set 'Intranet Sites: Include all network paths (UNCs)' to 'Disabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.3.10 Set 'Protected Mode' to 'Enabled:Enable'CIS IE 11 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

8.3.13 Set 'Automatic prompting for file downloads' to 'Enabled:Disable'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.12 Set 'Security Zones: Do not allow users to add/delete sites' to 'Enabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

9.2 Set 'Disable the Advanced page' to 'Enabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

9.14 Set 'Turn on the auto-complete feature for user names and passwords on forms' to 'Disabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow drag and drop or copy and paste files - Internet ZoneMSCT Windows 10 v21H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow script-initiated windows without size or position constraints - Internet ZoneMSCT Windows 10 v21H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow updates to status bar via script - Internet ZoneMSCT Windows 10 v21H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Automatic prompting for file downloads - Restricted Sites ZoneMSCT Windows 10 v21H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Internet Explorer Processes - FEATURE_DISABLE_MK_PROTOCOL - iexplore.exeMSCT Windows 10 v20H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Internet Explorer Processes - FEATURE_SECURITYBAND - (Reserved)MSCT Windows 10 v20H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Internet Explorer Processes - FEATURE_WINDOW_RESTRICTIONS - (Reserved)MSCT Windows 10 v21H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Internet Explorer Processes - FEATURE_ZONE_ELEVATION - explorer.exeMSCT Windows 10 v21H2 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - FEATURE_ZONE_ELEVATION - iexplore.exeMSCT Windows 10 v20H2 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Prevent enabling lock screen slide showMSCT Windows 10 v20H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Security Zones: Do not allow users to change policiesMSCT Windows 10 v21H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Turn on Protected Mode - Restricted Sites ZoneMSCT Windows 10 v21H2 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION