Item Search

Name	Audit Name	Plugin	Category
1.2 Ensure 'host headers' are on all sites	CIS IIS 8.0 v1.5.1 Level 1	Windows	CONFIGURATION MANAGEMENT
1.4 Ensure 'application pool identity' is configured for all application pools	CIS IIS 10 v1.2.1 Level 1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2 Ensure Access to Sensitive Site Features Is Restricted To Authenticated Principals Only - Applications	CIS IIS 7 L1 v1.8.0	Windows	ACCESS CONTROL
2.2 Ensure Access to Sensitive Site Features Is Restricted To Authenticated Principals Only - Default	CIS IIS 7 L1 v1.8.0	Windows
2.2.4 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2022 v4.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.6 Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.6 Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.28 (L1) Ensure 'Log on as a batch job' is set to 'Administrators'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.28 (L2) Ensure 'Log on as a batch job' is set to 'Administrators'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.28 (L2) Ensure 'Log on as a batch job' is set to 'Administrators'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BL NG	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.33 (L1) Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' and (when the Web Server (IIS) Role with Web Services Role Service is installed) 'IIS_IUSRS' (MS only)	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.33 (L1) Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' and (when the Web Server (IIS) Role with Web Services Role Service is installed) 'IIS_IUSRS' (MS only)	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.34 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)	CIS Microsoft Windows Server 2008 Domain Controller Level 2 v3.3.1	Windows	ACCESS CONTROL
2.2.36 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)	CIS Windows Server 2012 DC L2 v3.0.0	Windows	ACCESS CONTROL
2.2.36 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 2 v3.3.1	Windows	ACCESS CONTROL
2.2.49 Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Domain Controller	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.4 Ensure 'forms authentication' is set to use cookies - Applications	CIS IIS 7 L2 v1.8.0	Windows	CONFIGURATION MANAGEMENT
2.5 Ensure 'cookie protection mode' is configured for forms authentication	CIS IIS 8.0 v1.5.1 Level 1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.5 Ensure 'cookie protection mode' is configured for forms authentication - Applications	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.5 Ensure 'cookie protection mode' is configured for forms authentication - Default	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.5 Ensure ASP.NET stack tracing is not enabled - Default	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
3.7 Ensure 'cookies' are set with HttpOnly attribute - Default	CIS IIS 7 L2 v1.8.0	Windows	ACCESS CONTROL
3.8 Configure MachineKey Validation Method - .Net 3.5 - Applications	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.9 Ensure 'MachineKey validation method - .Net 4.5' is configured - Default	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.4 Ensure non-ASCII characters in URLs are not allowed - Applications	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
4.8 Ensure Handler is not granted Write and Script/Execute - Applications	CIS IIS 7 L1 v1.8.0	Windows	ACCESS CONTROL
4.8 Ensure Handler is not granted Write and Script/Execute - Default	CIS IIS 7 L1 v1.8.0	Windows	ACCESS CONTROL
5.2 Ensure External File System Access is disabled - enable cis	CIS Sybase 15.0 L1 DB v1.1.0	SybaseDB
6.1 Ensure FTP requests are encrypted - Control Channel Default	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
6.1 Ensure FTP requests are encrypted - Data Channel Sites	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure HSTS Header is set	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.2 Ensure SSLv2 is disabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.4 Ensure TLS 1.0 is enabled - enabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.10 Ensure RC4 Cipher Suites is disabled - RC4 64/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.11 Ensure Triple DES Cipher Suite is configured	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.15 Ensure TLS Cipher Suite ordering is configured	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
CIS Amazon Linux Benchmark Level 1	CIS Amazon Linux v2.1.0 L1	Unix
CIS Control 10 (10.4) Protect Backups	CAS Implementation Group 1 Audit File	Unix	CONTINGENCY PLANNING
CIS_MariaDB_10.6_Benchmark_v1.1.0_L2_Database.audit from CIS MariaDB 10.6 Benchmark	CIS MariaDB 10.6 Database L2 v1.1.0	MySQLDB
CIS_NGINX_v2.1.0_Level_1_Webserver.audit from CIS NGINX Benchmark v2.1.0	CIS NGINX Benchmark v2.1.0 L1 Webserver	Unix
IIST-SI-000225 - The IIS 10.0 website must be configured to limit the maxURL.	DISA IIS 10.0 Site v2r11	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IISW-SV-000132 - The IIS 8.5 web server must separate the hosted applications from hosted web server management functionality.	DISA IIS 8.5 Server v2r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search