Item Search

Name	Audit Name	Plugin	Category
1.1.1 Ensure /tmp is configured	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.7 Ensure nodev option set on /dev/shm partition	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.10 Ensure separate partition exists for /var/log	CIS Ubuntu Linux 14.04 LTS Server L2 v2.1.0	Unix	CONFIGURATION MANAGEMENT
1.1.13 Ensure /var/tmp partition includes the nosuid option	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.16 Ensure nosuid option set on /dev/shm partition	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.17 Ensure separate partition exists for /home	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.18 Ensure nodev option set on removable media partitions	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.19 Ensure nosuid option set on removable media partitions	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.1.2 Ensure local login warning banner is configured properly	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.5 Ensure permissions on /etc/issue are configured	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.1.2 Ensure local login warning banner is configured properly	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.3 Ensure last logged in user display is disabled - file-db	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure packet redirect sending is disabled - sysctl net.ipv4.conf.all.send_redirects	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - net.ipv6.conf.all.accept_redirects (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.3 Ensure secure ICMP redirects are not accepted - 'sysctl net.ipv4.conf.default.secure_redirects'	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.5 Ensure broadcast ICMP requests are ignored - sysctl.conf/sysctl.d	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.6 Ensure bogus ICMP responses are ignored - (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.7 Ensure Reverse Path Filtering is enabled - 'sysctl net.ipv4.conf.default.rp_filter'	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.9 Ensure IPv6 router advertisements are not accepted - 'net.ipv6.conf.all.accept_ra' (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - auditctl /etc/localtime	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - auditctl adjtimex settimeofday 32-bit	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl issue	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl network	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl sethostname (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - sethostname (32-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's Mandatory Access Controls are collected - /etc/apparmor.d/	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's Mandatory Access Controls are collected - auditctl /etc/apparmor/	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's Mandatory Access Controls are collected - auditctl /etc/selinux/	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl chown 64-bit	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl chown/fchown/fchownat/lchown	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - chmod/fchmod/fchmodat (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - chmod/fchmod/fchmodat (64-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - chown/fchown/fchownat/lchown (64-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - setxattr/lsetxattr/fsetxattr/removexattr	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.12 Ensure successful file system mounts are collected - auditctl (32-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/modprobe	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl /sbin/rmmod	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl modprobe	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - init_module/delete_module (64-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - init_module/delete_module (32-bit)	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - insmod	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - modprobe	CIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/insmod	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rules.d /sbin/rmmod	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.2.1.4 Ensure rsyslog default file permissions configured	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.2.20 Ensure SSH PAM is enabled	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
5.2.23 Ensure SSH MaxSessions is set to 4 or less	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.20 Ensure SSH PAM is enabled	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
6.2.3 Ensure all users' home directories exist	CIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search