Item Search

Name	Audit Name	Plugin	Category
1.1.21 Ensure that the --kubelet-certificate-authority argument is set as appropriate	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.1.22 Ensure that the --kubelet-client-certificate and --kubelet-client-key arguments are set as appropriate - key	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.1.30 Ensure that the API Server only makes use of Strong Cryptographic Ciphers	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.2.1 Set the 'hostname'	CIS Cisco IOS XR 7.x v1.0.0 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.2.4.2.2.15 Set 'Require additional authentication at startup' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
1.4 Ensure MFA is enabled for the 'root' user account	CIS Amazon Web Services Foundations v5.0.0 L1	amazon_aws	IDENTIFICATION AND AUTHENTICATION
1.5.7 Set 'priv' for each 'snmp-server group' using SNMPv3	CIS Cisco IOS XR 7.x v1.0.0 L2	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5.9 Set 'priv' for each 'snmp-server group' using SNMPv3	CIS Cisco IOS XE 17.x v2.1.1 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5.10 Require 'aes 128' as minimum for 'snmp-server user' when using SNMPv3	CIS Cisco IOS XE 17.x v2.1.1 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'	CIS Oracle Server 12c Windows v3.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'	CIS Oracle Server 12c Linux v3.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.1.14 Ensure that the Kubelet only makes use of Strong Cryptographic Ciphers	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Debian Family Server L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.2 Ensure rsh client is not installed	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4 Ensure telnet client is not installed	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.2 Ensure rsh client is not installed	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.2 Ensure rsh client is not installed	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.2 Ensure rsh client is not installed	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.4 Ensure telnet client is not installed	CIS Distribution Independent Linux Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.4 Ensure telnet client is not installed	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
2.3.4 Ensure telnet client is not installed	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
3.6.1.5 Ensure SSH PermitEmptyPasswords is disabled	CIS IBM AIX 7.1 L1 v2.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
4.1.1 Ensure only MFA enabled identities can access privileged Virtual Machine	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
4.2 Ensure valid public keys are installed	CIS PostgreSQL 9.5 OS v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 16 OS v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 9.5 OS v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 9.6 OS v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 10 OS v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 11 OS v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.2.2.1 (L1) Ensure multifactor authentication is enabled for all users in administrative roles	CIS Microsoft 365 Foundations v4.0.0 L1 E3	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.3 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 13 OS v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.4.10 Ensure certificate status checking for PKI authentication	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
6.2.6 Ensure that multifactor authentication is required for Windows Azure Service Management API	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
6.10.1.2 Ensure SSH is Restricted to Version 2	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.4 Ensure SSH Rate Limit is Configured	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.6 Ensure Strong Ciphers are set for SSH	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.7 Ensure Only Suite B Ciphers are set for SSH - weak ciphers	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.8 Ensure Strong MACs are set for SSH	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.9 Ensure Strong Key Exchange Methods are set for SSH	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.10 Ensure Only Suite B Key Exchange Methods are set for SSH - weak key-exchange	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.1.11 Ensure Strong Key Signing Algorithms are set for SSH	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.2.1 Ensure Web-Management is not Set to HTTP	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.2.3 Ensure Web-Management is Set to use PKI Certificate for HTTPS	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.2.4 Ensure Idle Timeout is Set for Web-Management	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.2.5 Ensure Session Limited is Set for Web-Management	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.3.1 Ensure XNM-Clear-Text Service is Not Set	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.3.4 Ensure XNM-SSL SSLv3 Support is Not Set	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	IDENTIFICATION AND AUTHENTICATION
6.10.5.3 Ensure REST is Set to use PKI Certificate for HTTPS	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	IDENTIFICATION AND AUTHENTICATION
18.9.15.2 (L1) Ensure 'Enumerate administrator accounts on elevation' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.59.3.9.3 (L1) Ensure 'Require use of specific security layer for remote (RDP) connections' is set to 'Enabled: SSL'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search