Item Search

Name	Audit Name	Plugin	Category
1.1.10 Ensure nodev option set on /dev/shm partition	CIS Google Container-Optimized OS v1.2.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.16 Ensure nosuid option set on /dev/shm partition	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.16 Ensure nosuid option set on /dev/shm partition	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.18 Ensure nodev option set on removable media partitions	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.19 Ensure nosuid option set on removable media partitions	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.19 Ensure nosuid option set on removable media partitions	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.6 Ensure AppArmor is installed	CIS Google Container-Optimized OS v1.2.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.6 Ensure That IAM Users Are Not Assigned the Service Account User or Service Account Token Creator Roles at Project Level	CIS Google Cloud Platform v3.0.0 L1	GCP	ACCESS CONTROL, MEDIA PROTECTION
2.2 Ensure extension directory has appropriate ownership and permissions	CIS PostgreSQL 14 OS v 1.2.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.2 Ensure extension directory has appropriate ownership and permissions	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.3.18.4 Ensure 'Never allow users to specify groups when restricting permission for documents' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL, MEDIA PROTECTION
2.3.18.5 Ensure 'Prevent users from changing permissions on rights managed content' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL, MEDIA PROTECTION
2.3.19.4 (L1) Ensure 'Never allow users to specify groups when restricting permission for documents' is set to 'Enabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	ACCESS CONTROL, MEDIA PROTECTION
2.5.1.2.1 (L1) Ensure 'Do not allow users to change permissions on folders' is set to 'Enabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	ACCESS CONTROL, MEDIA PROTECTION
2.5.1.2.2 Ensure 'Do not allow users to change permissions on folders' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL, MEDIA PROTECTION
2.5.10.8.1.2.1 (L1) Ensure 'Access to published calendars' is set to 'Enabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	ACCESS CONTROL, MEDIA PROTECTION
2.5.10.8.1.2.1 Ensure 'Access to published calendars' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.1.5 Secure Permissions for Alternate Diagnostic Log Path (ALT_DIAGPATH)	CIS IBM DB2 11 v1.1.0 Linux OS Level 1	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.1.5 Secure Permissions for Alternate Diagnostic Log Path (ALT_DIAGPATH)	CIS IBM DB2 11 v1.1.0 Windows OS Level 1	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.1.8 Set Maximum Connection Limits (MAX_CONNECTIONS and MAX_COORDAGENTS)	CIS IBM DB2 11 v1.1.0 Windows OS Level 1	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.1.10 Secure the Java Development Kit Installation Path (JDK_PATH)	CIS IBM DB2 11 v1.1.0 Linux OS Level 1	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.1.10 Secure the Java Development Kit Installation Path (JDK_PATH)	CIS IBM DB2 11 v1.1.0 Windows OS Level 1	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.1.12 Secure the R Runtime Path (R_PATH)	CIS IBM DB2 11 v1.1.0 Windows OS Level 1	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.2.5 Limit OS Privileges of Fenced Mode Process (DB2_LIMIT_FENCED_GROUP)	CIS IBM DB2 11 v1.1.0 Linux OS Level 1	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.3 Ensure world writable directories have the SVTX bit set	CIS IBM AIX 7 v1.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.15 Ensure that the Docker socket file ownership is set to root:docker	CIS Docker v1.7.0 L1 Docker - Linux	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.1.7 Secure Permissions for the Tertiary Archive Log Location (FAILARCHPATH)	CIS IBM DB2 11 v1.1.0 Windows OS Level 1	Windows	ACCESS CONTROL, MEDIA PROTECTION
5.1.2 Ensure permissions on SSH private host key files are configured	CIS Google Container-Optimized OS v1.2.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.3.1 (L1) Ensure a dynamic group for guest users is created	CIS Microsoft 365 Foundations v4.0.0 L1 E3	microsoft_azure	ACCESS CONTROL, MEDIA PROTECTION
5.1.8 Ensure cron is restricted to authorized users	CIS CentOS Linux 8 Workstation L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.8 Ensure cron is restricted to authorized users	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.9 Ensure at is restricted to authorized users	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.5 Ensure access to the su command is restricted	CIS Google Container-Optimized OS v1.2.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.6 Ensure access to the su command is restricted - /etc/group	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.6 Ensure access to the su command is restricted - /etc/group	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.6 Ensure access to the su command is restricted - /etc/pam.d/su	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.6 Ensure access to the su command is restricted - /etc/pam.d/su	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.2 Ensure 'Skip_show_database' Database Flag for Cloud SQL MySQL Instance Is Set to 'On'	CIS Google Cloud Platform v3.0.0 L1	GCP	ACCESS CONTROL, MEDIA PROTECTION
6.1.15 Ensure the file permissions ownership and group membership of system files and commands match the vendor values	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.5 Ensure That Cloud SQL Database Instances Do Not Implicitly Whitelist All Public IP Addresses	CIS Google Cloud Platform v3.0.0 L1	GCP	ACCESS CONTROL, MEDIA PROTECTION
7.1 Ensure That BigQuery Datasets Are Not Anonymously or Publicly Accessible	CIS Google Cloud Platform v3.0.0 L1	GCP	ACCESS CONTROL, MEDIA PROTECTION
7.2.3 (L1) Ensure external content sharing is restricted	CIS Microsoft 365 Foundations v4.0.0 L1 E5	microsoft_azure	ACCESS CONTROL, MEDIA PROTECTION
7.2.4 (L2) Ensure OneDrive content sharing is restricted	CIS Microsoft 365 Foundations v4.0.0 L2 E3	microsoft_azure	ACCESS CONTROL, MEDIA PROTECTION
7.2.4 (L2) Ensure OneDrive content sharing is restricted	CIS Microsoft 365 Foundations v4.0.0 L2 E5	microsoft_azure	ACCESS CONTROL, MEDIA PROTECTION
7.2.7 (L1) Ensure link sharing is restricted in SharePoint and OneDrive	CIS Microsoft 365 Foundations v4.0.0 L1 E3	microsoft_azure	ACCESS CONTROL, MEDIA PROTECTION
9.1.7 (L1) Ensure shareable links are restricted	CIS Microsoft 365 Foundations v4.0.0 L1 E5	microsoft_azure	ACCESS CONTROL, MEDIA PROTECTION
10.2 Allowlist Approved Servers Belonging to a MySQL InnoDB Cluster	CIS Oracle MySQL Enterprise Edition 8.0 v1.4.0 L2 Database	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION
10.2 Allowlist Approved Servers Belonging to a MySQL InnoDB Cluster	CIS MySQL 8.0 Community Database L2 v1.1.0	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION
10.2 Allowlist Approved Servers Belonging to a MySQL InnoDB Cluster	CIS Oracle MySQL Community Server 8.4 v1.0.0 L2 Database	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION
10.2 Allowlist Approved Servers Belonging to a MySQL InnoDB Cluster	CIS Oracle MySQL Enterprise Edition 8.4 v1.0.0 L2 MySQL RDBMS	MySQLDB	ACCESS CONTROL, MEDIA PROTECTION

Detections

Analytics

Item Search