Item Search

Name	Audit Name	Plugin	Category
1.6.1.3 Ensure all AppArmor Profiles are enforcing - unconfined	CIS Ubuntu Linux 18.04 LXD Container L2 v1.0.0	Unix	ACCESS CONTROL
1.7.1.2 Ensure AppArmor is enabled in the bootloader configuration - apparmor	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
1.7.1.4 Ensure all AppArmor Profiles are enforcing - unconfined	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	ACCESS CONTROL
2.1 Ensure the file permissions mask is correct	CIS PostgreSQL 11 OS v1.0.0	Unix	ACCESS CONTROL
2.1 Ensure the file permissions mask is correct	CIS PostgreSQL 9.5 OS v1.1.0	Unix	ACCESS CONTROL
2.2 Ensure the PostgreSQL pg_wheel group membership is correct - /etc/groups	CIS PostgreSQL 9.5 OS v1.1.0	Unix	ACCESS CONTROL
2.2.3 Ensure 'GLOBAL_NAMES' Is Set to 'TRUE'	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	ACCESS CONTROL
2.2.15 Ensure '_trace_files_public' Is Set to 'FALSE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
2.2.16 Ensure 'RESOURCE_LIMIT' Is Set to 'TRUE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
2.2.17 Ensure '_trace_files_public' Is Set to 'FALSE'	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
2.3 Ensure 'Cross DB Ownership Chaining' Server Configuration Option is set to '0'	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	ACCESS CONTROL
2.3 Ensure 'Cross DB Ownership Chaining' Server Configuration Option is set to '0'	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	ACCESS CONTROL
3.1.6 Ensure the log file permissions are set correctly	CIS PostgreSQL 10 DB v1.0.0	PostgreSQLDB	ACCESS CONTROL
3.1.6 Ensure the log file permissions are set correctly	CIS PostgreSQL 9.5 DB v1.1.0	PostgreSQLDB	ACCESS CONTROL
3.2 Ensure CONNECT permissions on the 'guest user' is Revoked within all SQL Server databases excluding the master, msdb and tempdb	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	ACCESS CONTROL
3.2 Ensure CONNECT permissions on the 'guest user' is Revoked within all SQL Server databases excluding the master, msdb and tempdb	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	ACCESS CONTROL
3.8 Ensure only the default permissions specified by Microsoft are granted to the public server role	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	ACCESS CONTROL
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	ACCESS CONTROL
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	ACCESS CONTROL
4.6 Ensure Row Level Security (RLS) is configured correctly	CIS PostgreSQL 11 DB v1.0.0	PostgreSQLDB	ACCESS CONTROL
5.1.1.3 Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'Encryption' Packages	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.1.1.3 Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'Encryption' Packages - Encryption Packages	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.1.3.2 Ensure 'ALL' Is Revoked from Unauthorized 'GRANTEE' on 'DBA_%'	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.1.3.3 Ensure 'ALL' Is Revoked on 'Sensitive' Tables	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.1.4 Ensure permissions on /etc/cron.daily are configured	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
5.1.4 Ensure permissions on /etc/cron.daily are configured	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	ACCESS CONTROL
5.1.5 Ensure permissions on /etc/cron.weekly are configured	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	ACCESS CONTROL
5.1.5 Ensure permissions on /etc/cron.weekly are configured	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	ACCESS CONTROL
5.1.6 Ensure permissions on /etc/cron.monthly are configured	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
5.1.6 Ensure permissions on /etc/cron.monthly are configured	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	ACCESS CONTROL
5.1.8 Ensure at/cron is restricted to authorized users - '/etc/cron.allow'	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
5.1.8 Ensure at/cron is restricted to authorized users - '/etc/cron.deny'	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	ACCESS CONTROL
5.2.2 Ensure 'DBA_SYS_PRIVS.%' Is Revoked from Unauthorized 'GRANTEE' with 'ADMIN_OPTION' Set to 'YES'	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.2.5 Ensure 'SELECT ANY DICTIONARY' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.2.6 Ensure 'SELECT ANY TABLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.2.8 Ensure 'EXEMPT ACCESS POLICY' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.2.12 Ensure 'CREATE ANY LIBRARY' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.2.13 Ensure 'CREATE LIBRARY' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.2.14 Ensure 'GRANT ANY OBJECT PRIVILEGE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.2.15 Ensure 'GRANT ANY ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.2.15 Ensure 'GRANT ANY ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.3.1 Ensure 'DELETE_CATALOG_ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.3.3 Ensure 'EXECUTE_CATALOG_ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.3.4 Ensure 'DBA' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.4.4 Ensure default user umask is 027 or more restrictive - /etc/profile /etc/profile.d	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	ACCESS CONTROL
6.1.1 Audit system file permissions	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL
6.1.10 Ensure no world writable files exist	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	ACCESS CONTROL
6.2.9 Ensure users own their home directories	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	ACCESS CONTROL
6.2.20 Ensure shadow group is empty	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	ACCESS CONTROL
13.8 Check User Dot File Permissions	CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0	Unix	ACCESS CONTROL

Detections

Analytics

Item Search