Item Search

Name	Audit Name	Plugin	Category
1.1.3.9.5 Set 'MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)' to 'Highest protection'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.9.8 Configure 'MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.9.10 Configure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.9.11 Configure 'MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted (3 recommended, 5 default)'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.9.15 Set 'MSS: (DisableIPSourceRouting IPv6) IP source routing protection level (protects against packet spoofing)' to 'Highest'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.9.16 Configure 'MSS: (PerformRouterDiscovery) Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS)'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.5.1.4 Set 'Windows Firewall: Domain: Apply local firewall rules' to 'Yes (default)'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.5.2.3 Set 'Windows Firewall: Private: Apply local firewall rules' to 'Yes (default)'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.5.3.2 Set 'Windows Firewall: Public: Apply local firewall rules' to 'Yes (default)'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.3.1 Ensure TCP Wrappers is installed	CIS Distribution Independent Linux Workstation L1 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.3.1 Ensure TCP Wrappers is installed	CIS Debian 9 Server L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.3.1 Ensure TCP Wrappers is installed	CIS Debian 9 Workstation L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.3.2 Ensure /etc/hosts.allow is configured	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.3.2 Ensure /etc/hosts.allow is configured	CIS Distribution Independent Linux Workstation L1 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.1.1 Ensure a Firewall package is installed	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.2 Ensure /etc/hosts.allow is configured	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.2 Ensure /etc/hosts.allow is configured	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.2 Ensure /etc/hosts.allow is configured	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.2 Ensure /etc/hosts.allow is configured	CIS CentOS 6 Server L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.2 Ensure /etc/hosts.allow is configured	CIS CentOS 6 Workstation L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.3 Ensure /etc/hosts.deny is configured	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.3 Ensure /etc/hosts.deny is configured	CIS Red Hat 6 Server L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.3 Ensure /etc/hosts.deny is configured	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.4.2.1 Ensure default deny firewall policy - 'Chain FORWARD'	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.4.2.1 Ensure default deny firewall policy - 'Chain OUTPUT'	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.5.3 Ensure iptables is installed	CIS Debian 9 Server L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.4.1.1 Ensure default deny firewall policy - 'Chain FORWARD'	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
9.3.5 Ensure 'Windows Firewall: Public: Settings: Apply local firewall rules' is set to 'No'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.3.5 Ensure 'Windows Firewall: Public: Settings: Apply local firewall rules' is set to 'No'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.4.2 Ensure 'MSS: (DisableIPSourceRouting IPv6) IP source routing protection level (protects against packet spoofing)' is set to 'Enabled: Highest protection, source routing is completely disabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.4.3 Ensure 'MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)' is set to 'Enabled: Highest protection, source routing is completely disabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.4.3 Ensure 'MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)' is set to 'Enabled: Highest protection, source routing is completely disabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.4.6 Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes (recommended)'	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.4.8 Ensure 'MSS: (PerformRouterDiscovery) Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS)' is set to 'Disabled'	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.4.11 Ensure 'MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.4.11 Ensure 'MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.4.12 Ensure 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.4.12 Ensure 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.5.19.2.1 Disable IPv6 (Ensure TCPIP6 Parameter 'DisabledComponents' is set to '0xff (255)')	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (DisableIPSourceRouting IPv6) IP source routing protection level (protects against packet spoofing)	MSCT Windows 10 v21H2 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)	MSCT Windows 10 v21H2 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)	MSCT Windows Server v1909 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)	MSCT Windows Server 2019 MS v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)	MSCT Windows Server v20H2 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)	MSCT Windows Server 1903 DC v1.19.9	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes	MSCT Windows Server v2004 MS v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes	MSCT Windows Server v20H2 MS v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search