Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Create a separate partition for containersCIS Docker 1.11.0 v1.0.0 L1 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Create a separate partition for containersCIS Docker 1.12.0 v1.0.0 L1 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Create a separate partition for containersCIS Docker 1.6 v1.0.0 L1 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 8.0 Enterprise Linux OS L1 v1.4.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.6 Enterprise Windows OS L1 v2.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS Oracle MySQL Community Server 8.4 v1.0.0 L1 OS Linux on LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.6 Community Windows OS L1 v2.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

1.1 Place Databases on Non-System PartitionsCIS MySQL 5.7 Enterprise Windows OS L1 v2.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

1.2 Ensure Single-Function Member Servers are UsedCIS SQL Server 2022 Database L1 AWS RDS v1.1.0MS_SQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

1.2 Ensure Single-Function Member Servers are UsedCIS Microsoft SQL Server 2019 v1.5.0 L1 Database EngineMS_SQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

1.7 Ensure MariaDB is Run Under a Sandbox EnvironmentCIS MariaDB 10.6 Database L2 v1.1.0MySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

1.7 Ensure MySQL is Run Under a Sandbox EnvironmentCIS Oracle MySQL Enterprise Edition 8.4 v1.0.0 L2 MySQL OS LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.7 Ensure MySQL is Run Under a Sandbox EnvironmentCIS MySQL 8.0 Enterprise Linux OS L2 v1.4.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MariaDBCIS MariaDB 10.6 Database L1 v1.1.0MySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.6 Community Database L1 v2.0.0MySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.7 Community Linux OS L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.6 Community Windows OS L1 v2.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

2.2 Dedicate the Machine Running MySQLCIS MySQL 5.7 Community Windows OS L1 v2.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

2.3 Dedicate the Machine Running MySQLCIS MySQL 8.0 Enterprise Linux OS L1 v1.4.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.3 Dedicate the Machine Running MySQLCIS Oracle MySQL Enterprise Edition 8.4 v1.0.0 L1 MySQL OS LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

2.3 Dedicate the Machine Running MySQLCIS Oracle MySQL Community Server 8.4 v1.0.0 L1 OS Linux on LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

2.3 Dedicate the Machine Running MySQLCIS MySQL 8.0 Community Linux OS L1 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'AirWatch - CIS Apple iPadOS 17 Institutionally Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'MobileIron - CIS Apple iOS 18 v1.0.0 L1 Institution OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'AirWatch - CIS Apple iOS 17 Institution Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'MobileIron - CIS Apple iPadOS 17 Institutionally Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'AirWatch - CIS Apple iPadOS 18 v1.0.0 L1 Institutionally OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'MobileIron - CIS Apple iPadOS 18 v1.0.0 L1 Institutionally OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1.28 Ensure 'Allow setting up new nearby devices' is set to 'Disabled'MobileIron - CIS Apple iOS 17 Institution Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesAirWatch - CIS Apple iOS 18 Benchmark v1.0.0 L1 End User OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesMobileIron - CIS Apple iOS 18 v1.0.0 L1 End User OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesMobileIron - CIS Apple iPadOS 18 v1.0.0 L1 End User OwnedMDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesAirWatch - CIS Apple iOS 17 Benchmark v1.1.0 End User Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesMobileIron - CIS Apple iOS 17 v1.1.0 End User Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesMobileIron - CIS Apple iPadOS 17 v1.1.0 End User Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.8 Ensure 'Find My iPhone/iPad' is set to 'Enabled' on end user-owned devicesAirWatch - CIS Apple iPadOS 17 v1.1.0 End User Owned L1MDM

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

5.1.2 Minimize access to secretsCIS Red Hat OpenShift Container Platform v1.7.0 L1OpenShift

SYSTEM AND COMMUNICATIONS PROTECTION

5.2.4 Minimize the admission of containers wishing to share the host network namespaceCIS Red Hat OpenShift Container Platform v1.7.0 L1OpenShift

SYSTEM AND COMMUNICATIONS PROTECTION

5.2.4 Minimize the admission of containers wishing to share the host network namespaceCIS Kubernetes v1.20 Benchmark v1.0.1 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.16 Ensure that the host's process namespace is not sharedCIS Docker v1.7.0 L1 Docker - LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.17 Ensure host devices are not directly exposed to containersCIS Docker Community Edition v1.1.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.31 Ensure that the host's user namespaces are not sharedCIS Docker v1.7.0 L1 Docker - LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

6.2 Ensure that container sprawl is avoidedCIS Docker v1.7.0 L1 Docker - LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

6.2.1 (L1) Host must isolate storage communicationsCIS VMware ESXi 8.0 v1.1.0 L1VMware

SYSTEM AND COMMUNICATIONS PROTECTION

6.2.2 (L1) Host must ensure all datastores have unique namesCIS VMware ESXi 8.0 v1.1.0 L1VMware

SYSTEM AND COMMUNICATIONS PROTECTION

6.3 (L1) Ensure storage area network (SAN) resources are segregated properlyCIS VMware ESXi 7.0 v1.4.0 L1VMware

SYSTEM AND COMMUNICATIONS PROTECTION

6.3 Ensure storage area network (SAN) resources are segregated properlyCIS VMware ESXi 6.7 v1.3.0 Level 1VMware

SYSTEM AND COMMUNICATIONS PROTECTION