Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Create a separate partition for containersCIS Docker 1.13.0 v1.0.0 L1 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Create a separate partition for containersCIS Docker 1.11.0 v1.0.0 L1 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Create a separate partition for containersCIS Docker 1.12.0 v1.0.0 L1 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Create a separate partition for containersCIS Docker 1.6 v1.0.0 L1 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.6 Community Database L1 v2.0.0MySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.7 Community Windows OS L1 v2.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.7 Community Linux OS L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MariaDB 10.6 on Linux L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.6 Enterprise Windows OS L1 v2.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS Oracle MySQL Community Server 8.4 v1.0.0 L1 OS Linux on LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.2 Ensure Single-Function Member Servers are UsedCIS SQL Server 2016 Database L1 OS v1.4.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

1.2 Ensure Single-Function Member Servers are UsedCIS Microsoft SQL Server 2019 v1.5.0 L1 AWS RDSMS_SQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

1.2 Ensure Single-Function Member Servers are UsedCIS SQL Server 2022 Database L1 AWS RDS v1.1.0MS_SQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

1.7 Ensure MariaDB is Run Under a Sandbox EnvironmentCIS MariaDB 10.6 on Linux L2 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

1.7 Ensure MySQL is Run Under a Sandbox EnvironmentCIS MySQL 8.0 Community Linux OS L2 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MariaDBCIS MariaDB 10.6 Database L1 v1.1.0MySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.6 Community Linux OS L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.7 Enterprise Linux OS L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.7 Enterprise Windows OS L1 v2.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.6 Community Database L1 v2.0.0MySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.7 Community Linux OS L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.3 Dedicate the Machine Running MySQLCIS MySQL 8.0 Enterprise Linux OS L1 v1.4.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.3 Dedicate the Machine Running MySQLCIS Oracle MySQL Enterprise Edition 8.4 v1.0.0 L1 MySQL OS LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'AirWatch - CIS Apple iOS 17 Institution Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'MobileIron - CIS Apple iPadOS 17 Institutionally Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'AirWatch - CIS Apple iPadOS 18 v1.0.0 L1 Institutionally OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'MobileIron - CIS Apple iPadOS 18 v1.0.0 L1 Institutionally OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'AirWatch - CIS Apple iOS 18 v1.0.0 L1 Institution OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'AirWatch - CIS Apple iPadOS 17 Institutionally Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'MobileIron - CIS Apple iOS 18 v1.0.0 L1 Institution OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesAirWatch - CIS Apple iOS 17 Benchmark v1.1.0 End User Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesMobileIron - CIS Apple iOS 17 v1.1.0 End User Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesMobileIron - CIS Apple iPadOS 17 v1.1.0 End User Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesAirWatch - CIS Apple iOS 18 Benchmark v1.0.0 L1 End User OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesMobileIron - CIS Apple iOS 18 v1.0.0 L1 End User OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesMobileIron - CIS Apple iPadOS 18 v1.0.0 L1 End User OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

5.2.4 Minimize the admission of containers wishing to share the host network namespaceCIS Kubernetes v1.20 Benchmark v1.0.1 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.2.5 Minimize the admission of containers wishing to share the host network namespaceCIS Kubernetes v1.11.1 L1 Master NodeUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.2.12 Minimize the admission of HostPath volumesCIS Kubernetes v1.11.1 L1 Master NodeUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.11 Ensure that the memory usage for containers is limitedCIS Docker v1.8.0 L1 OS LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.12 Ensure that CPU priority is set appropriately on containersCIS Docker v1.8.0 L1 OS LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.19 Ensure that the default ulimit is overwritten at runtime if neededCIS Docker v1.8.0 L1 OS LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.31 Ensure that the host's user namespaces are not sharedCIS Docker v1.8.0 L1 OS LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

6.2 Ensure that container sprawl is avoidedCIS Docker v1.8.0 L1 OS LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

6.2.1 (L1) Host must isolate storage communicationsCIS VMware ESXi 8.0 v1.2.0 L1VMware

SYSTEM AND COMMUNICATIONS PROTECTION

6.3 (L1) Ensure storage area network (SAN) resources are segregated properlyCIS VMware ESXi 7.0 v1.5.0 L1VMware

SYSTEM AND COMMUNICATIONS PROTECTION

6.3 Ensure storage area network (SAN) resources are segregated properlyCIS VMware ESXi 6.7 v1.3.0 Level 1VMware

SYSTEM AND COMMUNICATIONS PROTECTION