Item Search

Name	Audit Name	Plugin	Category
1.2 Set 'Allow Active X One Off Forms' to 'Enabled:Load only Outlook Controls'	CIS MS Office Outlook 2010 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.3.1.8 Ensure SETroubleshoot is not installed	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.5.1 Ensure core dumps are restricted - /etc/sysctl.conf, /etc/sysctl.d/*	CIS Amazon Linux v2.1.0 L1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT
1.5.1 Ensure core dumps are restricted - limits.conf, limits.d/*	CIS Amazon Linux v2.1.0 L1	Unix	ACCESS CONTROL
1.5.1 Ensure core dumps are restricted - sysctl	CIS Amazon Linux v2.1.0 L1	Unix	ACCESS CONTROL
1.5.1.8 Ensure SETroubleshoot is not installed	CIS Red Hat EL8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.1.8 Ensure SETroubleshoot is not installed	CIS Oracle Linux 8 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.1.8 Ensure SETroubleshoot is not installed	CIS Rocky Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.1.8 Ensure SETroubleshoot is not installed	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.5.1.8 Ensure SETroubleshoot is not installed	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.5.1.8 Ensure SETroubleshoot is not installed	CIS Oracle Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.6.1.7 Ensure SETroubleshoot is not installed	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	ACCESS CONTROL
4.1.16 Ensure kernel module loading and unloading is collected - auditctl init_module/delete_module (32-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rmmod	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl init_module	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl init_module	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl insmod	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl insmod	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl modprobe	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - init_module	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - insmod	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - insmod	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - modprobe	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - modprobe	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - rmmod	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - rmmod	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.3 Do not install unnecessary packages in the container	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
4.3 Ensure excessive function privileges are revoked	CIS PostgreSQL 12 DB v1.1.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.3 Ensure excessive function privileges are revoked	CIS PostgreSQL 16 DB v1.0.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.6 Enable OCSP and CRL certificate checking - CRL	CIS Apple OSX 10.9 L2 v1.3.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.6 Enable OCSP and CRL certificate checking - OCSP	CIS Apple OSX 10.9 L2 v1.3.0	Unix	IDENTIFICATION AND AUTHENTICATION
8.1.17 Collect Kernel Module Loading and Unloading - '/sbin/modprobe'	CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.17 Collect Kernel Module Loading and Unloading - '64bit init_module/delete_module'	CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.17 Collect Kernel Module Loading and Unloading- '/sbin/insmod'	CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
ARST-L2-000050 - The Arista MLS switch must have Root Guard enabled on all switch ports connecting to access layer switches and hosts.	DISA STIG Arista MLS EOS 4.2x L2S v2r1	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
BIND-9X-001059 - On the BIND 9.x server the platform on which the name server software is hosted must be configured to send outgoing DNS messages from a random port.	DISA BIND 9.x STIG v2r3	Unix	CONFIGURATION MANAGEMENT
CISC-RT-000240 - The Cisco perimeter switch must be configured to deny network traffic by default and allow network traffic by exception.	DISA STIG Cisco IOS Switch RTR v3r1	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
DTAVSEL-013 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Clean as first action when a virus or Trojan is detected.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-015 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Clean as first action when programs and jokes are found.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-016 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Quarantine if first action fails when programs and jokes are found.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
Enable IKE Version 1/2 - cipher-suite	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	SYSTEM AND COMMUNICATIONS PROTECTION
GEN000000-LNX00360 - The X server must have the correct options enabled - '-audit = 4'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	CONFIGURATION MANAGEMENT
GEN000800 - The system must prohibit the reuse of passwords within five iterations.	DISA STIG AIX 5.3 v1r2	Unix	IDENTIFICATION AND AUTHENTICATION
GEN000800 - The system must prohibit the reuse of passwords within five iterations.	DISA STIG AIX 6.1 v1r14	Unix	IDENTIFICATION AND AUTHENTICATION
GEN002753 - The audit system must be configured to audit account termination - 'groupdel'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL
GEN002753 - The audit system must be configured to audit account termination - 'userdel'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL
GEN002753 - The audit system must be configured to audit account termination - 'userdel'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL

Detections

Analytics

Item Search