Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure Web Content Is on Non-System Partition	CIS IIS 7 L1 v1.8.0	Windows	CONFIGURATION MANAGEMENT
2.2 Ensure Access to Sensitive Site Features Is Restricted To Authenticated Principals Only - Applications	CIS IIS 7 L1 v1.8.0	Windows	ACCESS CONTROL
2.2.6 Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.6 Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.24 (L1) Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' and (when the Web Server (IIS) Role with Web Services Role Service is installed) 'IIS_IUSRS'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.28 (L1) Ensure 'Log on as a batch job' is set to 'Administrators'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.34 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)	CIS Microsoft Windows Server 2008 Domain Controller Level 2 v3.3.1	Windows	ACCESS CONTROL
2.2.36 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
2.2.36 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)	CIS Windows Server 2012 DC L2 v3.0.0	Windows	ACCESS CONTROL
2.2.36 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 2 v3.3.1	Windows	ACCESS CONTROL
2.2.36 Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	IDENTIFICATION AND AUTHENTICATION
2.2.49 Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Domain Controller	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.3 Ensure 'forms authentication' require SSL - Applications	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.3 Ensure 'forms authentication' require SSL - Default	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.3 Ensure 'Protect RE' Firewall filter includes Rate-Limiting for Management Services terms	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
2.4 Ensure 'forms authentication' is set to use cookies - Applications	CIS IIS 7 L2 v1.8.0	Windows	CONFIGURATION MANAGEMENT
2.4 Ensure 'forms authentication' is set to use cookies - Default	CIS IIS 7 L2 v1.8.0	Windows	CONFIGURATION MANAGEMENT
2.5 Ensure 'cookie protection mode' is configured for forms authentication - Default	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Ensure transport layer security for 'basic authentication' is configured	CIS IIS 7 L1 v1.8.0	Windows	IDENTIFICATION AND AUTHENTICATION
3.4 Ensure IIS HTTP detailed errors are hidden from displaying remotely - Default	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
3.5 Ensure ASP.NET stack tracing is not enabled - Applications	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
3.7 Ensure 'cookies' are set with HttpOnly attribute - Applications	CIS IIS 7 L2 v1.8.0	Windows	ACCESS CONTROL
3.8 Configure MachineKey Validation Method - .Net 3.5 - Applications	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.8 Configure MachineKey Validation Method - .Net 3.5 - Default	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.9 Ensure 'MachineKey validation method - .Net 4.5' is configured - Applications	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.1 Ensure 'maxAllowedContentLength' is configured - Applications	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
4.4 Ensure non-ASCII characters in URLs are not allowed - Applications	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
4.7 Ensure Unlisted File Extensions are not allowed - Default	CIS IIS 10 v1.2.1 Level 1	Windows	SYSTEM AND SERVICES ACQUISITION
4.8 Ensure Handler is not granted Write and Script/Execute - Default	CIS IIS 7 L1 v1.8.0	Windows	ACCESS CONTROL
5.2.5 Ensure Complex Password Must Contain Special Character Is Configured	CIS Apple macOS 10.15 Catalina v3.0.0 L2	Unix	IDENTIFICATION AND AUTHENTICATION
6.1 Ensure FTP requests are encrypted - Control Channel Sites	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.2 Ensure SSLv2 is disabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.3 Ensure SSLv3 is disabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.4 Ensure TLS 1.0 is enabled - DisabledByDefault	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.5 Ensure TLS 1.0 is disabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.7 Ensure NULL Cipher Suites is disabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.8 Ensure DES Cipher Suites is disabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.9 Ensure RC2 Cipher Suites is disabled - RC2 40/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.9 Ensure RC2 Cipher Suites is disabled - RC2 56/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.10 Ensure RC4 Cipher Suites is disabled - RC4 40/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.10 Ensure RC4 Cipher Suites is disabled - RC4 56/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.10 Ensure RC4 Cipher Suites is disabled - RC4 64/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.10 Ensure RC4 Cipher Suites is disabled - RC4 128/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.12 Ensure AES 128/128 Cipher Suite is configured	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.13 Ensure AES 256/256 Cipher Suite is enabled - Enabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.14 Ensure TLS Cipher Suite ordering is configured	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
CIS_Kubernetes_v1.11.1_L1_Master_Node.audit from CIS Kubernetes Benchmark v1.11.1	CIS Kubernetes v1.11.1 L1 Master Node	Unix
CIS_NGINX_v2.1.0_Level_2_Proxy.audit from CIS NGINX Benchmark v2.1.0	CIS NGINX Benchmark v2.1.0 L2 Proxy	Unix
IISW-SV-000120 - All IIS 8.5 web server sample code, example applications, and tutorials must be removed from a production IIS 8.5 server.	DISA IIS 8.5 Server v2r7	Windows	CONFIGURATION MANAGEMENT
IISW-SV-000132 - The IIS 8.5 web server must separate the hosted applications from hosted web server management functionality.	DISA IIS 8.5 Server v2r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search