Item Search

Name	Audit Name	Plugin	Category
1.5 Ensure the Latest Security Patches are Applied	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	PostgreSQLDB	SYSTEM AND SERVICES ACQUISITION
1.6 Verify That 'PGPASSWORD' is Not Set in Users' Profiles	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.6 Verify That 'PGPASSWORD' is Not Set in Users' Profiles	CIS PostgreSQL 14 OS v 1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.7 Verify That the 'PGPASSWORD' Environment Variable is Not in Use	CIS PostgreSQL 13 OS v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.7 Verify That the 'PGPASSWORD' Environment Variable is Not in Use	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.7 Verify That the 'PGPASSWORD' Environment Variable is Not in Use	CIS PostgreSQL 14 OS v 1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.1.5 Ensure the filename pattern for log files is set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.5 Ensure the filename pattern for log files is set correctly	CIS PostgreSQL 16 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.7 Ensure 'log_truncate_on_rotation' is enabled	CIS PostgreSQL 9.5 DB v1.1.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 11 DB v1.0.0	PostgreSQLDB	CONFIGURATION MANAGEMENT
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 15 DB v1.1.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 10 DB v1.0.0	PostgreSQLDB	ACCESS CONTROL
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 16 DB v1.0.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 12 DB v1.1.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.3 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 9.5 OS v1.1.0	Unix	ACCESS CONTROL
4.3 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.3 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 14 DB v 1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.4 Rebuild the images to include security patches	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
4.4 Scan and rebuild the images to include security patches	CIS Docker 1.13.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS Microsoft SQL Server 2019 v1.5.0 L1 Database Engine	MS_SQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
Ensure 'aaa local authentication max failed attempts' is set to less than or equal to '3'	Tenable Cisco Firepower Best Practices Audit	Cisco	ACCESS CONTROL
Ensure 'console session timeout' is less than or equal to '5' minutes	Tenable Cisco Firepower Best Practices Audit	Cisco	ACCESS CONTROL
Ensure 'EIGRP authentication' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'Failover' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'HTTP session timeout' is less than or equal to '5' minutes	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'Image Authenticity' is correct	Tenable Cisco Firepower Best Practices Audit	Cisco	SYSTEM AND INFORMATION INTEGRITY
Ensure 'noproxyarp' is enabled for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'Password Policy' is enabled - minimum-length	Tenable Cisco Firepower Best Practices Audit	Cisco	IDENTIFICATION AND AUTHENTICATION
Ensure 'SNMP traps' is enabled - authentication	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'SNMP traps' is enabled - coldstart	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'SNMP traps' is enabled - linkdown	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'SNMP traps' is enabled - linkup	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'SSH source restriction' is set to an authorized IP address	Tenable Cisco Firepower Best Practices Audit	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
Ensure 'TLS 1.0' is set for HTTPS access	Tenable Cisco Firepower Best Practices Audit	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
Ensure DHCP services are disabled for untrusted interfaces - dhcprelay	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure email logging is configured for critical to emergency	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure non-default application inspection is configured correctly	Tenable Cisco Firepower Best Practices Audit	Cisco	SYSTEM AND INFORMATION INTEGRITY
Ensure packet fragments are restricted for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure timezone is properly configured	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
EPAS-00-004700 - The DBMS must map the PKI-authenticated identity to an associated user account.	EnterpriseDB PostgreSQL Advanced Server OS Linux v2r1	Unix	IDENTIFICATION AND AUTHENTICATION
PPS9-00-002700 - The audit information produced by the EDB Postgres Advanced Server must be protected from unauthorized modification.	EDB PostgreSQL Advanced Server OS Linux Audit v2r3	Unix	AUDIT AND ACCOUNTABILITY
PPS9-00-002900 - The EDB Postgres Advanced Server must protect its audit features from unauthorized access.	EDB PostgreSQL Advanced Server OS Linux Audit v2r3	Unix	AUDIT AND ACCOUNTABILITY
PPS9-00-003100 - The EDB Postgres Advanced Server must protect its audit features from unauthorized removal.	EDB PostgreSQL Advanced Server OS Linux Audit v2r3	Unix	AUDIT AND ACCOUNTABILITY
Tenable_Best_Practices_Cisco_Firepower_Management_Center_OS.audit	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix
vCenter : monitor-admin-assignment	VMWare vSphere 5.X Hardening Guide	VMware
vCenter: vcenter-8.administration-sso-password-policy	VMware vSphere Security Configuration and Hardening Guide	VMware	IDENTIFICATION AND AUTHENTICATION
WN12-PK-000007-DC - PKI certificates associated with user accounts must be issued by the DoD PKI or an approved External Certificate Authority (ECA).	DISA Windows Server 2012 and 2012 R2 DC STIG v3r7	Windows	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search