Item Search

Name	Audit Name	Plugin	Category
1.1.1.1 Configure AAA Authentication - TACACS if applicable	CIS Cisco NX-OS v1.2.0 L1	Cisco	ACCESS CONTROL
1.2.1 Restrict Access to VTY Sessions	CIS Cisco NX-OS v1.2.0 L1	Cisco	ACCESS CONTROL, CONFIGURATION MANAGEMENT, MAINTENANCE, SYSTEM AND INFORMATION INTEGRITY
1.2.5 Set 'access-class' for 'line vty'	CIS Cisco IOS XE 17.x v2.2.0 L1	Cisco	ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY
1.2.7 Disable the Telnet Feature	CIS Cisco NX-OS v1.2.0 L1	Cisco	CONFIGURATION MANAGEMENT, MAINTENANCE
1.9.4 Ensure Read Write privileges are not configured for SNMP	CIS Cisco NX-OS v1.2.0 L1	Cisco	CONFIGURATION MANAGEMENT, MAINTENANCE
2.9 (L2) Ensure VDS health check is disabled	CIS VMware ESXi 7.0 v1.5.0 L2	VMware	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.9 Ensure VDS health check is disabled	CIS VMware ESXi 6.7 v1.3.0 Level 1	VMware	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
3.1.2.1 Configure BGP to Log Neighbor Changes	CIS Cisco NX-OS v1.2.0 L1	Cisco	CONFIGURATION MANAGEMENT, CONTINGENCY PLANNING, PLANNING, PROGRAM MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION
AMLS-NM-000380 - The Arista Multilayer Switch must generate audit records when concurrent logons from different workstations occur - trap logging	DISA STIG Arista MLS DCS-7000 Series NDM v1r4	Arista	AUDIT AND ACCOUNTABILITY
ARST-ND-000470 - The Arista network device must use FIPS 140-2 approved algorithms for authentication to a cryptographic module.	DISA STIG Arista MLS EOS 4.2x NDM v2r1	Arista	IDENTIFICATION AND AUTHENTICATION
ARST-ND-000700 - The Arista network device must be configured to implement cryptographic mechanisms using a FIPS 140-2 approved algorithm to protect the confidentiality of remote maintenance sessions.	DISA STIG Arista MLS EOS 4.2x NDM v2r1	Arista	MAINTENANCE
Auditing and logging - server	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	AUDIT AND ACCOUNTABILITY
Auditing and logging - severity	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	AUDIT AND ACCOUNTABILITY
CASA-ND-000240 - The Cisco ASA must be configured to generate audit records when successful/unsuccessful attempts to access privileges occur.	DISA STIG Cisco ASA NDM v2r2	Cisco	AUDIT AND ACCOUNTABILITY
CASA-ND-000260 - The Cisco ASA must be configured to produce audit log records containing sufficient information to establish what type of event occurred.	DISA STIG Cisco ASA NDM v2r2	Cisco	AUDIT AND ACCOUNTABILITY
CASA-ND-000280 - The Cisco ASA must be configured to produce audit records containing information to establish where the events occurred.	DISA STIG Cisco ASA NDM v2r2	Cisco	AUDIT AND ACCOUNTABILITY
CASA-ND-000300 - The Cisco ASA must be configured to produce audit records that contain information to establish the outcome of the event.	DISA STIG Cisco ASA NDM v2r2	Cisco	AUDIT AND ACCOUNTABILITY
CASA-ND-000320 - The Cisco ASA must be configured to generate audit records containing the full-text recording of privileged commands.	DISA STIG Cisco ASA NDM v2r2	Cisco	AUDIT AND ACCOUNTABILITY
CASA-ND-001220 - The Cisco ASA must be configured to generate audit records when successful/unsuccessful logon attempts occur.	DISA STIG Cisco ASA NDM v2r2	Cisco	AUDIT AND ACCOUNTABILITY
Centralized authentication - configuration	ArubaOS CX 10.x Hardening Guide v1.0.0	ArubaOS	IDENTIFICATION AND AUTHENTICATION
Centralized authentication - server	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	IDENTIFICATION AND AUTHENTICATION
Centralized authentication - server	ArubaOS CX 10.x Hardening Guide v1.0.0	ArubaOS	IDENTIFICATION AND AUTHENTICATION
Centralized authentication - tacacs accounting	ArubaOS CX 10.x Hardening Guide v1.0.0	ArubaOS	IDENTIFICATION AND AUTHENTICATION
Centralized authentication - tacacs authorization	ArubaOS CX 10.x Hardening Guide v1.0.0	ArubaOS	IDENTIFICATION AND AUTHENTICATION
CISC-RT-000370 - The Cisco perimeter router must be configured to have Cisco Discovery Protocol (CDP) disabled on all external interfaces.	DISA Cisco IOS XR Router RTR STIG v3r2	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
CISC-RT-000370 - The Cisco perimeter router must be configured to have Cisco Discovery Protocol (CDP) disabled on all external interfaces.	DISA Cisco IOS XE Router RTR STIG v3r3	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
ESXI-06-000059 - The virtual switch Forged Transmits policy must be set to reject.	DISA STIG VMware vSphere 6.x ESXi v1r5	VMware	CONFIGURATION MANAGEMENT
ESXI-06-000060 - The virtual switch MAC Address Change policy must be set to reject.	DISA STIG VMware vSphere 6.x ESXi v1r5	VMware	CONFIGURATION MANAGEMENT
ESXI-70-000061 - All port groups on standard switches must be configured to reject guest promiscuous mode requests.	DISA STIG VMware vSphere 7.0 ESXi v1r4	VMware	CONFIGURATION MANAGEMENT
ESXI-80-000218 - The ESXi host must configure virtual switch security policies to reject promiscuous mode requests.	DISA VMware vSphere 8.0 ESXi STIG v2r3	VMware	CONFIGURATION MANAGEMENT
HP ProCurve - 'Configure Management VLAN'	TNS HP ProCurve	HPProCurve	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
Include Login in Session Records	Tenable Cisco ACI	Cisco_ACI	AUDIT AND ACCOUNTABILITY
PHTN-40-000067 The Photon operating system must restrict access to the kernel message buffer.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
PHTN-40-000068 The Photon operating system must be configured to use TCP syncookies.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
PHTN-40-000105 The Photon operating system must enable symlink access control protection in the kernel.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	ACCESS CONTROL
PHTN-40-000160 The Photon operating system must implement address space layout randomization to protect its memory from unauthorized code execution.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	SYSTEM AND INFORMATION INTEGRITY
PHTN-40-000224 The Photon operating system must not respond to IPv4 Internet Control Message Protocol (ICMP) echoes sent to a broadcast address.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	CONFIGURATION MANAGEMENT
PHTN-40-000225 The Photon operating system must prevent IPv4 Internet Control Message Protocol (ICMP) redirect messages from being accepted.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	CONFIGURATION MANAGEMENT
PHTN-40-000231 The Photon operating system must not perform IPv4 packet forwarding.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	CONFIGURATION MANAGEMENT
PHTN-40-000232 The Photon operating system must send TCP timestamps.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	CONFIGURATION MANAGEMENT
PHTN-40-000244 The Photon operating system must enable hardlink access control protection in the kernel.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	CONFIGURATION MANAGEMENT
PHTN-40-000246 The Photon operating system must restrict core dumps.	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1	Unix	CONFIGURATION MANAGEMENT
Port security	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	SYSTEM AND COMMUNICATIONS PROTECTION
Remote Location - Protocol	Tenable Cisco ACI	Cisco_ACI	CONFIGURATION MANAGEMENT
TFTP vs SFTP	ArubaOS CX 10.x Hardening Guide v1.0.0	ArubaOS	CONFIGURATION MANAGEMENT
TFTP vs SFTP and SCP - ip ssh filetransfer	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	SYSTEM AND COMMUNICATIONS PROTECTION
TFTP vs SFTP and SCP - no tftp client	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	CONFIGURATION MANAGEMENT
TFTP vs SFTP and SCP - no tftp server	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	CONFIGURATION MANAGEMENT
vCenter: vcenter-8.network-restrict-netflow-usage	VMware vSphere Security Configuration and Hardening Guide	VMware	CONFIGURATION MANAGEMENT
vNetwork : set-non-negotiate	VMWare vSphere 5.X Hardening Guide	VMware

Detections

Analytics

Item Search