Item Search

Name	Audit Name	Plugin	Category
1.6.1.8 Ensure the MCS Translation Service (mcstrans) is not installed	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.4 Ensure XDCMP is not enabled	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.4 Ensure XDCMP is not enabled	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.5 Ensure DHCP Server is not installed	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.8 Ensure DNS Server is not installed	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.11 Ensure IMAP and POP3 server are not installed - dovecot-pop3d	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.13 Ensure HTTP Proxy Server is not installed	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.15 Ensure mail transfer agent is configured for local-only mode	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.16 Ensure rsync service is not installed	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.2.2 (L1) Ensure 'Access this computer from the network' is set to 'Administrators, Authenticated Users, ENTERPRISE DOMAIN CONTROLLERS' (DC only)	CIS Windows Server 2012 DC L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT
2.2.12 Ensure HTTP Proxy Server is not installed	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.3 Ensure nonessential services are removed or masked	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.1.1 Disable IPv6	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.1.1 Disable IPv6	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
3.1.2 Set 'no ip proxy-arp'	CIS Cisco IOS XE 17.x v2.1.1 L1	Cisco	CONFIGURATION MANAGEMENT
3.4.3 Ensure RDS is disabled - lsmod	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
4.4.1.1 Disable IPv6 Router Advertisements - net.ipv6.conf.default.accept_ra = 0	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
5.2.6 Ensure SSH X11 forwarding is disabled	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
5.2.6 Ensure SSH X11 forwarding is disabled	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
5.2.21 Ensure SSH AllowTcpForwarding is disabled	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
5.2.21 Ensure SSH AllowTcpForwarding is disabled	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
5.3.7 Ensure SSH X11 forwarding is disabled	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
5.3.7 Ensure SSH X11 forwarding is disabled - sshd	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.7 Ensure SSH X11 forwarding is disabled - sshd_config	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
6.1 Ensure that MongoDB uses a non-default port	CIS MongoDB 4 L1 OS Windows v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.6.8.1 Ensure 'Enable insecure guest logons' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	CONFIGURATION MANAGEMENT
18.8.1.1 (L2) Ensure 'Turn off notifications network usage' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLocker	Windows	CONFIGURATION MANAGEMENT
18.8.1.1 (L2) Ensure 'Turn off notifications network usage' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.9.20.1.2 (L2) Ensure 'Turn off handwriting personalization data sharing' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.9.20.1.2 Ensure 'Turn off handwriting personalization data sharing' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.9.33.6.1 Ensure 'Allow network connectivity during connected-standby (on battery)' is set to 'Disabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.9.33.6.2 (L1) Ensure 'Allow network connectivity during connected-standby (plugged in)' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.9.33.6.2 (L2) Ensure 'Allow network connectivity during connected-standby (plugged in)' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.9.33.6.2 (L2) Ensure 'Allow network connectivity during connected-standby (plugged in)' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.9.33.6.2 Ensure 'Allow network connectivity during connected-standby (plugged in)' is set to 'Disabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.9.36.1 (L1) Ensure 'Enable RPC Endpoint Mapper Client Authentication' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.9.36.2 (L1) Ensure 'Restrict Unauthenticated RPC clients' is set to 'Enabled: Authenticated'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.9.36.2 (L1) Ensure 'Restrict Unauthenticated RPC clients' is set to 'Enabled: Authenticated'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	CONFIGURATION MANAGEMENT
18.9.36.2 Ensure 'Restrict Unauthenticated RPC clients' is set to 'Enabled: Authenticated' (MS only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	CONFIGURATION MANAGEMENT
18.9.49.1 Ensure 'Turn off the advertising ID' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Domain Controller	Windows	CONFIGURATION MANAGEMENT
18.10.5.1 (L1) Ensure 'Let Windows apps activate with voice while the system is locked' is set to 'Enabled: Force Deny'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLocker	Windows	CONFIGURATION MANAGEMENT
18.10.15.1 Ensure 'Allow Diagnostic Data' is set to 'Enabled: Diagnostic data off (not recommended)' or 'Enabled: Send required diagnostic data'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT
18.10.15.2 Ensure 'Allow Diagnostic Data' is set to 'Enabled: Send required diagnostic data' or 'Enabled: Send optional diagnostic data' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	CONFIGURATION MANAGEMENT
18.10.15.2 Ensure 'Configure Authenticated Proxy usage for the Connected User Experience and Telemetry service' is set to 'Enabled: Disable Authenticated Proxy usage'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.16.1 (L1) Ensure 'Allow Diagnostic Data' is set to 'Enabled: Diagnostic data off (not recommended)' or 'Enabled: Send required diagnostic data'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	CONFIGURATION MANAGEMENT
18.10.16.2 (L2) Ensure 'Configure Authenticated Proxy usage for the Connected User Experience and Telemetry service' is set to 'Enabled: Disable Authenticated Proxy usage'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.10.57.3.9.1 (L1) Ensure 'Always prompt for password upon connection' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.10.63.1 (L2) Ensure 'Turn off KMS Client Online AVS Validation' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLocker	Windows	CONFIGURATION MANAGEMENT
18.10.63.1 (L2) Ensure 'Turn off KMS Client Online AVS Validation' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.66.3 (L1) Ensure 'Turn off the offer to update to the latest version of Windows' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search