Item Search

Name	Audit Name	Plugin	Category
1.1.1.8 Ensure mounting of FAT filesystems is disabled - lsmod	CIS SUSE Linux Enterprise Workstation 11 L2 v2.1.1	Unix	CONFIGURATION MANAGEMENT
1.1.1.8 Ensure mounting of FAT filesystems is disabled - lsmod	CIS SUSE Linux Enterprise Server 11 L2 v2.1.1	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure separate partition exists for /tmp	CIS Ubuntu Linux 14.04 LTS Workstation L2 v2.1.0	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure separate partition exists for /tmp	CIS Ubuntu Linux 14.04 LTS Server L2 v2.1.0	Unix	CONFIGURATION MANAGEMENT
1.1.3.9.6 Set 'MSS: (AutoReboot) Allow Windows to automatically restart after a system crash' to 'Not Defined'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.1.5 Ensure separate partition exists for /var	CIS Ubuntu Linux 14.04 LTS Server L2 v2.1.0	Unix	CONFIGURATION MANAGEMENT
1.1.12 Ensure separate partition exists for /home	CIS Ubuntu Linux 14.04 LTS Server L2 v2.1.0	Unix	CONFIGURATION MANAGEMENT
1.2.3.10 Configure 'Detect compatibility issues for applications and drivers'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.2.4.2.2.24 Configure 'Configure TPM platform validation profile for native UEFI firmware configurations'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.8.3 Ensure last logged in user display is disabled - disable user list	CIS CentOS 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.3 Ensure last logged in user display is disabled - disable user list	CIS CentOS 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.3 Ensure last logged in user display is disabled - system-db:gdm	CIS CentOS 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.3 Ensure last logged in user display is disabled - user-db:user	CIS CentOS 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.3 Ensure last logged in user display is disabled - user-db:user	CIS CentOS 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.11.4 Ensure 'SNMP traps' is enabled - authentication	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
2.1.1.2 Set version 2 for 'ip ssh version'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	CONFIGURATION MANAGEMENT
2.1.1.2 Set version 2 for 'ip ssh version'	CIS Cisco IOS XE 16.x v2.1.0 L1	Cisco	CONFIGURATION MANAGEMENT
2.1.3 Ensure 'EIGRP authentication' is enabled	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
2.1.11 Ensure CDN is enabled for improved GUI performance	CIS Fortigate 7.0.x v1.3.0 L2	FortiGate	CONFIGURATION MANAGEMENT
2.2 Ensure 'noproxyarp' is enabled for untrusted interfaces	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	CONFIGURATION MANAGEMENT
2.4 Ensure DHCP services are disabled for untrusted interfaces - dhcprelay	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
3.3.12 nfs_use_reserved_ports - nfs_use_reserved_ports	CIS IBM AIX 7.1 L1 v2.1.0	Unix	CONFIGURATION MANAGEMENT
3.10 Ensure ActiveX filtering is enabled	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - auditctl /etc/localtime	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - auditctl clock_settime 32-bit	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - rules.d clock_settime 64-bit	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's Mandatory Access Controls are collected - auditctl /etc/selinux/	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl chown 64-bit	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl setxattr 32-bit	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - rules.d chmod 64-bit	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - rules.d setxattr 32-bit	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/insmod	CIS CentOS 6 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rules.d modules	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.4 Restrict access to Tomcat logs directory	CIS Apache Tomcat 7 L1 v1.1.0 Middleware	Unix	CONFIGURATION MANAGEMENT
4.4.9 Ensure ''trustedSensitiveHeaderOrigin'' is set to trusted host names and IP addresses for sensitive data	CIS IBM WebSphere Liberty v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT
5.3.19 Ensure SSH warning banner is configured	CIS CentOS 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.20 Ensure SSH PAM is enabled - sshd	CIS CentOS 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.22 Ensure SSH MaxStartups is configured - sshd	CIS CentOS 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.23 Ensure SSH MaxSessions is limited - sshd_config	CIS CentOS 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.23 Ensure SSH MaxSessions is limited - sshd_config	CIS CentOS 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
43 - Do not resolve hosts on logging valves - SERVER_XML	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
Directory access permissions should be restricted.	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
Directory access permissions should be restricted.	TNS IBM HTTP Server Best Practice Middleware	Unix	CONFIGURATION MANAGEMENT
Ensure 'Failover' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'noproxyarp' is enabled for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'RIP authentication' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'snmp-server host' is set to 'version 3'	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure DHCP services are disabled for untrusted interfaces - dhcprelay	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure ICMP is restricted for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Limit HTTP methods allowed by the Web Server.	TNS IBM HTTP Server Best Practice Middleware	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search