Item Search

Name	Audit Name	Plugin	Category
1.1.4 - AirWatch - Set Auto-lock - 'Inactivity Timeout <= 2'	AirWatch - CIS Apple iOS 8 v1.0.0 L1	MDM	ACCESS CONTROL
1.1.4 - MobileIron - Set Auto-lock - 'Inactivity Timeout <= 2'	MobileIron - CIS Apple iOS 8 v1.0.0 L1	MDM	ACCESS CONTROL
2.1.1.2 Set version 2 for 'ip ssh version'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	CONFIGURATION MANAGEMENT
2.1.1.2 Set version 2 for 'ip ssh version'	CIS Cisco IOS XE 16.x v2.2.0 L1	Cisco	CONFIGURATION MANAGEMENT
2.4.2 Ensure requests for unknown host names are rejected	CIS NGINX v3.0.0 L1 Webserver	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.10 Verify that TLS CA certificate file permissions are set to 444 or more restrictive	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
5.2.2 Ensure SSH Protocol is set to 2	CIS Amazon Linux v2.1.0 L1	Unix	CONFIGURATION MANAGEMENT
5.2.2 Ensure SSH Protocol is set to 2	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	CONFIGURATION MANAGEMENT
5.2.2 Ensure SSH Protocol is set to 2	CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0	Unix	CONFIGURATION MANAGEMENT
5.2.4 Ensure SSH Protocol is set to 2	CIS Debian 8 Server L1 v2.0.2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.4 Ensure SSH Protocol is set to 2	CIS Debian 8 Workstation L1 v2.0.2	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.2.4 Ensure SSH Protocol is set to 2	CIS Debian 9 Server L1 v1.0.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.2.4 Ensure SSH Protocol is set to 2	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.3.4 Ensure SSH Protocol is set to 2	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.19 Make the Audit Configuration Immutable - -e 2	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
5.3.29 Ensure SSH Protocol is set to 2	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION
5.3.29 Ensure SSH Protocol is set to 2	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MINALPHA = 2	CIS Solaris 11.1 L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
18.3.4 (L1) Ensure 'Configure SMB v1 server' is set to 'Disabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.3.4 (L1) Ensure 'Configure SMB v1 server' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.4.2 (L1) Ensure 'Configure SMB v1 server' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.4.3 (L1) Ensure 'Configure SMB v1 server' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.4.3 (L1) Ensure 'Configure SMB v1 server' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.6.4.1 (L1) Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.6.7.4 Ensure 'Enable authentication rate limiter' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v2.0.0 L1 DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.6.7.4 Ensure 'Enable authentication rate limiter' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.6.7.4 Ensure 'Enable authentication rate limiter' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.6.7.7 Ensure 'Set authentication rate limiter delay (milliseconds)' is set to 'Enabled: 2000' or more	CIS Microsoft Windows Server 2025 v2.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.6.7.7 Ensure 'Set authentication rate limiter delay (milliseconds)' is set to 'Enabled: 2000' or more	CIS Microsoft Windows Server 2025 v2.0.0 L1 DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.7.10 (L1) Ensure 'Manage processing of Queue-specific files' is set to 'Enabled: Limit Queue-specific files to Color profiles'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.10 (L1) Ensure 'Manage processing of Queue-specific files' is set to 'Enabled: Limit Queue-specific files to Color profiles'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.10 (L1) Ensure 'Manage processing of Queue-specific files' is set to 'Enabled: Limit Queue-specific files to Color profiles'	CIS Microsoft Windows Server 2016 v4.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.11 (L1) Ensure 'Manage processing of Queue-specific files' is set to 'Enabled: Limit Queue-specific files to Color profiles'	CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.11 Ensure 'Manage processing of Queue-specific files' is set to 'Enabled: Limit Queue-specific files to Color profiles'	CIS Microsoft Windows Server 2025 v2.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.11 Ensure 'Manage processing of Queue-specific files' is set to 'Enabled: Limit Queue-specific files to Color profiles'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.2 Ensure 'Turn On Virtualization Based Security: Select Platform Security Level' is set to 'Secure Boot' or higher	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.2 Ensure 'Turn On Virtualization Based Security: Select Platform Security Level' is set to 'Secure Boot' or higher	CIS Microsoft Windows 11 Enterprise v5.0.1 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.51.1.2 (L1) Ensure 'Enable Windows NTP Server' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.9.51.1.2 (L1) Ensure 'Enable Windows NTP Server' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.18.3 (L1) Ensure 'Enable App Installer Hash Override' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
18.10.18.3 (L1) Ensure 'Enable App Installer Hash Override' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.18.3 (L1) Ensure 'Enable App Installer Hash Override' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.10.77.1.4 Ensure 'Notify Unsafe App' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.80.1 Ensure 'Enable ESS with Supported Peripherals' is set to 'Enabled: 1'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
Allow users to demote attachments to Level 2	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow users to demote attachments to Level 2	Microsoft 365 Apps for Enterprise 2306 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow users to demote attachments to Level 2	MSCT Office 365 ProPlus 1908 v1.0.0	Windows	CONFIGURATION MANAGEMENT
GEN001375-ESXI5-000086 - For systems using DNS resolution, at least two name servers must be configured.	DISA VMWare ESXi 5.0 Server STIG v2r1	VMware	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Setting Session Security - 'Session Timeout <= 2 hours'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
SQLI-22-008700 - SQL Server must use NIST FIPS 140-2 or 140-3 validated cryptographic operations for encryption, hashing, and signing.	DISA Microsoft SQL Server 2022 Instance STIG v1r4 Windows	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search