Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure a separate user and group exist for Cassandra - group	CIS Apache Cassandra 3.11 L1 Unix Audit v1.0.0	Unix	ACCESS CONTROL
1.4.2 Ensure bootloader password is set	CIS CentOS 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.4.2 Ensure bootloader password is set	CIS Distribution Independent Linux Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.1.4 Ensure permissions on /etc/motd are configured	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.1.5 Ensure permissions on /etc/issue are configured	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.1.5 Ensure permissions on /etc/issue are configured	CIS Distribution Independent Linux Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.1.6 Ensure permissions on /etc/issue.net are configured	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.1 Run BIND as a non-root User - UID	CIS BIND DNS v1.0.0 L1 Authoritative Name Server	Unix	ACCESS CONTROL
2.2.1 Ensure 'Access Credential Manager as a trusted caller' is set to 'No One'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
3.1.1 Ensure 'Controls when the profile can be removed' is set to 'Never'	AirWatch - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	CONFIGURATION MANAGEMENT
3.2.1.11 Ensure 'Allow Erase All Content and Settings' is set to 'Disabled'	AirWatch - CIS Apple iOS 13 and iPadOS 13 Institution Owned L1	MDM	CONFIGURATION MANAGEMENT
3.2.1.11 Ensure 'Allow Erase All Content and Settings' is set to 'Disabled'	MobileIron - CIS Apple iOS 13 and iPadOS 13 Institution Owned L1	MDM	CONFIGURATION MANAGEMENT
3.2.1.14 Ensure 'Allow installing configuration profiles' is set to 'Disabled'	MobileIron - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	CONFIGURATION MANAGEMENT
3.2.1.16 Ensure 'Allow modifying cellular data app settings' is set to 'Disabled'	MobileIron - CIS Apple iOS 14 and iPadOS 14 Institution Owned L2	MDM	CONFIGURATION MANAGEMENT
3.4 Ensure Apache Directories and Files Are Owned By Root	CIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware	Unix	ACCESS CONTROL
4.1.16 Ensure system administrator actions (sudolog) are collected	CIS Amazon Linux v2.1.0 L2	Unix	AUDIT AND ACCOUNTABILITY
5.2.3 Ensure permissions on SSH public host key files are configured	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.2.20 Ensure SSH PAM is enabled	CIS Distribution Independent Linux Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.2.22 Ensure SSH MaxStartups is configured	CIS Distribution Independent Linux Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.5 Ensure root login is restricted to system console	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.7 Ensure access to the su command is restricted - pam_wheel.so	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
5.7 Ensure access to the su command is restricted - wheel group contains root	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
6.2.6 Ensure root is the only UID 0 account	CIS CentOS 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
6.2.20 Ensure shadow group is empty	CIS Distribution Independent Linux Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
Access Credential Manager as a trusted caller	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Access Credential Manager as a trusted caller	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL
Act as part of the operating system	MSCT Windows Server 2016 MS v1.0.0	Windows	ACCESS CONTROL
Adjust memory quotas for a process	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	ACCESS CONTROL
Create global objects	MSCT Windows Server 2016 MS v1.0.0	Windows	ACCESS CONTROL
Create global objects	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL
Create permanent shared objects	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Create permanent shared objects	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Debug programs	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Enable computer and user accounts to be trusted for delegation	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Force shutdown from a remote system	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL
Force shutdown from a remote system	MSCT Windows Server v20H2 DC v1.0.0	Windows	ACCESS CONTROL
Impersonate a client after authentication	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	ACCESS CONTROL
Impersonate a client after authentication	MSCT Windows Server 2016 MS v1.0.0	Windows	ACCESS CONTROL
Load and unload device drivers	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	ACCESS CONTROL
Load and unload device drivers	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL
Load and unload device drivers	MSCT Windows Server v20H2 DC v1.0.0	Windows	ACCESS CONTROL
Manage auditing and security log	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL
Perform volume maintenance tasks	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	ACCESS CONTROL
Perform volume maintenance tasks	MSCT Windows Server 2016 MS v1.0.0	Windows	ACCESS CONTROL
Perform volume maintenance tasks	MSCT Windows Server v20H2 DC v1.0.0	Windows	ACCESS CONTROL
Perform volume maintenance tasks	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Profile single process	MSCT Windows Server 2016 DC v1.0.0	Windows	ACCESS CONTROL
Profile system performance	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	ACCESS CONTROL
Take ownership of files or other objects	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	ACCESS CONTROL
Take ownership of files or other objects	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL

Detections

Analytics

Item Search