Item Search

Name	Audit Name	Plugin	Category
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.24 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
18.2.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
18.3.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled' (MS only)	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
18.3.6 (L1) Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer' (MS only)	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGON	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	RISK ASSESSMENT
18.9.25.5 (L1) Ensure 'Password Settings: Password Length' is set to 'Enabled: 15 or more'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.7 (L1) Ensure 'Post-authentication actions: Grace period (hours)' is set to 'Enabled: 8 or fewer hours, but not 0'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.7 (L1) Ensure 'Post-authentication actions: Grace period (hours)' is set to 'Enabled: 8 or fewer hours, but not 0'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.7 (L1) Ensure 'Post-authentication actions: Grace period (hours)' is set to 'Enabled: 8 or fewer hours, but not 0'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.26.7 Ensure 'Post-authentication actions: Grace period (hours)' is set to 'Enabled: 8 or fewer hours, but not 0'	CIS Microsoft Windows Server 2025 v2.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
Big Sur - Disable Power Nap	NIST macOS Big Sur v1.4.0 - 800-53r4 High	Unix	CONFIGURATION MANAGEMENT
Big Sur - Disable Power Nap	NIST macOS Big Sur v1.4.0 - 800-53r5 High	Unix	CONFIGURATION MANAGEMENT
Big Sur - Disable Power Nap	NIST macOS Big Sur v1.4.0 - All Profiles	Unix	CONFIGURATION MANAGEMENT
Big Sur - Disable Power Nap	NIST macOS Big Sur v1.4.0 - CNSSI 1253	Unix	CONFIGURATION MANAGEMENT
Big Sur - Disable Power Nap	NIST macOS Big Sur v1.4.0 - 800-171	Unix	CONFIGURATION MANAGEMENT
Big Sur - Disable Power Nap	NIST macOS Big Sur v1.4.0 - 800-53r5 Low	Unix	CONFIGURATION MANAGEMENT
Catalina - Disable Power Nap	NIST macOS Catalina v1.5.0 - 800-53r4 Low	Unix	CONFIGURATION MANAGEMENT
Catalina - Disable Power Nap	NIST macOS Catalina v1.5.0 - 800-53r5 High	Unix	CONFIGURATION MANAGEMENT
Catalina - Disable Power Nap	NIST macOS Catalina v1.5.0 - 800-53r5 Low	Unix	CONFIGURATION MANAGEMENT
Catalina - Disable Power Nap	NIST macOS Catalina v1.5.0 - 800-53r5 Moderate	Unix	CONFIGURATION MANAGEMENT
Catalina - Disable Power Nap	NIST macOS Catalina v1.5.0 - All Profiles	Unix	CONFIGURATION MANAGEMENT
Catalina - Disable Power Nap	NIST macOS Catalina v1.5.0 - 800-171	Unix	CONFIGURATION MANAGEMENT
Catalina - Disable Power Nap	NIST macOS Catalina v1.5.0 - 800-53r4 High	Unix	CONFIGURATION MANAGEMENT
CIS_Microsoft_SQL_Server_2012_Database_v1.6.0_Level_1_OS.audit from Microsoft SQL Server 2012 Database, version 1.6.0	CIS SQL Server 2012 Database L1 OS v1.6.0	Windows
Monterey - Disable Power Nap	NIST macOS Monterey v1.0.0 - 800-53r4 Moderate	Unix	CONFIGURATION MANAGEMENT
Monterey - Disable Power Nap	NIST macOS Monterey v1.0.0 - 800-53r5 High	Unix	CONFIGURATION MANAGEMENT
Monterey - Disable Power Nap	NIST macOS Monterey v1.0.0 - 800-171	Unix	CONFIGURATION MANAGEMENT
Monterey - Disable Power Nap	NIST macOS Monterey v1.0.0 - All Profiles	Unix	CONFIGURATION MANAGEMENT
Monterey - Disable Power Nap	NIST macOS Monterey v1.0.0 - CNSSI 1253	Unix	CONFIGURATION MANAGEMENT
Monterey - Disable Power Nap	NIST macOS Monterey v1.0.0 - 800-53r4 Low	Unix	CONFIGURATION MANAGEMENT
Monterey - Disable Power Nap	NIST macOS Monterey v1.0.0 - 800-53r4 High	Unix	CONFIGURATION MANAGEMENT
Monterey - Disable Power Nap	NIST macOS Monterey v1.0.0 - 800-53r5 Low	Unix	CONFIGURATION MANAGEMENT
Network security: Force logoff when logon hours expire	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	ACCESS CONTROL
Network security: Force logoff when logon hours expire	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	ACCESS CONTROL
Out-of-Band Management port	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	SYSTEM AND COMMUNICATIONS PROTECTION
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 43	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 83	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 91	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 103	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 104	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 105	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 162	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 172	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - SCHEMA_OBJECT_OWNERSHIP_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
WDNS-IA-000008 - The Windows 2012 DNS Server permissions must be set so that the key file can only be read or modified by the account that runs the name server software.	DISA Microsoft Windows 2012 Server Domain Name System STIG v2r7	Windows	IDENTIFICATION AND AUTHENTICATION
WN19-SO-000060 - Windows Server 2019 setting Domain member: Digitally encrypt or sign secure channel data (always) must be configured to Enabled.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WN22-MS-000050 - Windows Server 2022 must limit the caching of logon credentials to four or less on domain-joined member servers.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	CONFIGURATION MANAGEMENT
WN25-SO-000080 - The Windows Server 2025 setting Domain member: Digitally sign secure channel data (when possible) must be configured to Enabled.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search