Item Search

Name	Audit Name	Plugin	Category
1.1.4.6 Set 'Increase scheduling priority' to 'Administrators'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.8 Set 'Force shutdown from a remote system' to 'Administrators'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.9 Set 'Change the time zone' to 'LOCAL SERVICE, Administrators, Users'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.14 Set 'Take ownership of files or other objects' to 'Administrators'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.18 Set 'Back up files and directories' to 'Administrators'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.24 Set 'Perform volume maintenance tasks' to 'Administrators'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
2.1 Run BIND as a non-root User - UID	CIS BIND DNS v1.0.0 L1 Caching Only Name Server	Unix	ACCESS CONTROL
2.2.3 (L1) Ensure 'Act as part of the operating system' is set to 'No One'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	AUDIT AND ACCOUNTABILITY
2.2.3 Ensure 'Act as part of the operating system' is set to 'No One'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.7 Ensure that the certificate authorities file permissions are set to 644 or more restrictive	CIS Kubernetes 1.7.0 Benchmark v1.1.0 L1	Unix	CONFIGURATION MANAGEMENT
2.2.12 Ensure 'Create global objects' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.22 Ensure 'Force shutdown from a remote system' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.22 Ensure 'Force shutdown from a remote system' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.24 Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.25 Ensure 'Increase scheduling priority' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.29 Configure 'Log on as a service'	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	ACCESS CONTROL
2.2.30 Ensure 'Manage auditing and security log' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.37 Ensure 'Restore files and directories' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.37 Ensure 'Restore files and directories' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.39 Ensure 'Take ownership of files or other objects' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.3.1.4 Configure 'Accounts: Rename administrator account'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
3.2.1.11 Ensure 'Allow Erase All Content and Settings' is set to 'Disabled'	MobileIron - CIS Apple iOS 13 and iPadOS 13 Institution Owned L1	MDM	CONFIGURATION MANAGEMENT
3.2.1.15 Ensure 'Allow modifying cellular data app settings' is set to 'Disabled'	AirWatch - CIS Apple iOS 13 and iPadOS 13 Institution Owned L2	MDM	CONFIGURATION MANAGEMENT
3.4 Ensure Apache Directories and Files Are Owned By Root	CIS Apache HTTP Server 2.2 L2 v3.6.0	Unix	ACCESS CONTROL
4.1.16 Ensure system administrator actions (sudolog) are collected - auditctl	CIS Amazon Linux v2.1.0 L2	Unix	AUDIT AND ACCOUNTABILITY
6.2.5 Ensure root is the only UID 0 account	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
Access Credential Manager as a trusted caller	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Act as part of the operating system	MSCT Windows Server 2016 DC v1.0.0	Windows	ACCESS CONTROL
Act as part of the operating system	MSCT Windows Server 2016 MS v1.0.0	Windows	ACCESS CONTROL
Act as part of the operating system	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Act as part of the operating system	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL
Act as part of the operating system	MSCT Windows Server v20H2 DC v1.0.0	Windows	ACCESS CONTROL
Create a pagefile	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL
Create global objects	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Create Symbolic Links	MSCT Windows Server 2016 DC v1.0.0	Windows	ACCESS CONTROL
Debug programs	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Enable computer and user accounts to be trusted for delegation	MSCT Windows Server 2016 DC v1.0.0	Windows	ACCESS CONTROL
Enable computer and user accounts to be trusted for delegation	MSCT Windows Server v20H2 DC v1.0.0	Windows	ACCESS CONTROL
Impersonate a client after authentication	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Impersonate a client after authentication	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Manage auditing and security log	MSCT Windows Server 2016 DC v1.0.0	Windows	ACCESS CONTROL
Manage auditing and security log	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Manage auditing and security log	MSCT Windows Server v20H2 DC v1.0.0	Windows	ACCESS CONTROL
Modify firmware environment values	MSCT Windows Server 2016 MS v1.0.0	Windows	ACCESS CONTROL
Perform volume maintenance tasks	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL
Perform volume maintenance tasks	MSCT Windows Server v20H2 DC v1.0.0	Windows	ACCESS CONTROL
Perform volume maintenance tasks	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Restore files and directories	MSCT Windows Server 2016 MS v1.0.0	Windows	ACCESS CONTROL
Take ownership of files or other objects	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Take ownership of files or other objects	MSCT Windows Server v20H2 DC v1.0.0	Windows	ACCESS CONTROL

Detections

Analytics

Item Search