Item Search

Name	Audit Name	Plugin	Category
1.13.2 Ensure 'Scan archive files' is set to 'Enabled'	CIS Microsoft Defender Antivirus v1.0.0 L1 Workstation	Windows	SYSTEM AND INFORMATION INTEGRITY
1.13.2 Ensure 'Scan archive files' is set to 'Enabled'	CIS Microsoft Defender Antivirus v1.0.0 L1 Server	Windows	SYSTEM AND INFORMATION INTEGRITY
1.15.1 Ensure 'Specify threat alert levels at which default action should not be taken when detected' is set to 'Enabled'	CIS Microsoft Defender Antivirus v1.0.0 L1 Server	Windows	SYSTEM AND INFORMATION INTEGRITY
2.7 Ensure monitoring and alerting exist for SCIM token creation	CIS Snowflake Foundations v1.0.0 L1	Snowflake	AUDIT AND ACCOUNTABILITY
3.10 (L1) Host must not suppress warnings that the shell is enabled	CIS VMware ESXi 8.0 v1.3.0 L1 VMware	VMware	SYSTEM AND INFORMATION INTEGRITY
4.2.2 Restrict Access to SYSCAT.AUDITUSE	CIS IBM DB2 11 v1.2.0 Database Level 1	IBM_DB2DB	ACCESS CONTROL, MEDIA PROTECTION
4.2.2 Restrict Access to SYSCAT.AUDITUSE	CIS IBM DB2 12.1 v1.0.0 Database Level 1	IBM_DB2DB	ACCESS CONTROL, MEDIA PROTECTION
4.3.2 Restrict Access to SYSIBM.SYSAUDITUSE	CIS IBM DB2 11 v1.2.0 Database Level 1	IBM_DB2DB	ACCESS CONTROL, MEDIA PROTECTION
4.9 (L1) Host must transmit audit records to a remote log collector	CIS VMware ESXi 8.0 v1.3.0 L1 VMware	VMware	AUDIT AND ACCOUNTABILITY
6.1.1.7 Ensure that virtual network flow logs are captured and sent to Log Analytics	CIS Microsoft Azure Foundations v5.0.0 L2	microsoft_azure	SYSTEM AND INFORMATION INTEGRITY
6.1.1.10 Ensure that Intune logs are captured and sent to Log Analytics	CIS Microsoft Azure Foundations v5.0.0 L2	microsoft_azure	AUDIT AND ACCOUNTABILITY
6.2 Restrict Access to SYSCAT.AUDITUSE	CIS IBM DB2 9 Benchmark v3.0.1 Level 1 DB	IBM_DB2DB	ACCESS CONTROL
8.2.1 Ensure That Microsoft Defender for IoT Hub Is Set To 'On'	CIS Microsoft Azure Foundations v5.0.0 L2	microsoft_azure	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
14 - SSL Encryption - WSDL Secure Port	TNS Best Practice JBoss 7 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
Adtran : Disable SSLv2	TNS Adtran AOS Best Practice Audit	Adtran	CONFIGURATION MANAGEMENT
Adtran : Disable TFTP	TNS Adtran AOS Best Practice Audit	Adtran	CONFIGURATION MANAGEMENT
Adtran : Enable Firewall	TNS Adtran AOS Best Practice Audit	Adtran	SYSTEM AND COMMUNICATIONS PROTECTION
Adtran : Enable service password-encryption	TNS Adtran AOS Best Practice Audit	Adtran	IDENTIFICATION AND AUTHENTICATION
Adtran : List enabled interfaces	TNS Adtran AOS Best Practice Audit	Adtran	CONFIGURATION MANAGEMENT
Adtran : Set 'motd' Banner	TNS Adtran AOS Best Practice Audit	Adtran	ACCESS CONTROL
AIX7-00-002140 - The AIX /etc/hosts file must be owned by root.	DISA STIG AIX 7.x v3r1	Unix	CONFIGURATION MANAGEMENT
AIX7-00-002141 - The AIX /etc/hosts file must be group-owned by system.	DISA STIG AIX 7.x v3r1	Unix	CONFIGURATION MANAGEMENT
AIX7-00-002142 - The AIX /etc/hosts file must have a mode of 0640 or less permissive.	DISA STIG AIX 7.x v3r1	Unix	CONFIGURATION MANAGEMENT
ARST-L2-000020 - The Arista MLS layer 2 switch must uniquely identify all network-connected endpoint devices before establishing any connection.	DISA STIG Arista MLS EOS 4.2x L2S v2r1	Arista	IDENTIFICATION AND AUTHENTICATION
DTBC-0052 - Deletion of browser history must be disabled.	DISA Google Chrome Current Windows STIG v2r11	Windows	AUDIT AND ACCOUNTABILITY
F5BI-AP-300043 - The F5 BIG-IP appliance that provides intermediary services for HTTP must inspect inbound and outbound HTTP traffic for protocol compliance and protocol anomalies.	DISA F5 BIG-IP TMOS ALG STIG v1r2	F5	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
F5BI-AS-000165 - To protect against data mining, The BIG-IP ASM module must be configured to detect SQL injection attacks launched against data storage objects, including, at a minimum, databases, database records, and database fields when providing content filtering to virtual servers.	DISA F5 BIG-IP Application Security Manager STIG v2r2	F5	ACCESS CONTROL
F5BI-LT-000165 - To protect against data mining, the BIG-IP Core implementation providing content filtering must be configured to detect SQL injection attacks being launched against data storage objects, including, at a minimum, databases, database records, and database fields.	DISA F5 BIG-IP Local Traffic Manager STIG v2r4	F5	ACCESS CONTROL
GEN006560 - The system vulnerability assessment, host-based intrusion detection, and file integrity tools must notify of a security breach.	DISA STIG AIX 6.1 v1r14	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
JUSX-IP-000005 - The Juniper Networks SRX Series Gateway IDPS must block outbound traffic containing known and unknown DoS attacks by ensuring that rules are applied to outbound communications traffic.	DISA Juniper SRX Services Gateway IDPS v2r1	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
OL07-00-010020 - The Oracle Linux operating system must be configured so that the cryptographic hash of system files and commands matches vendor values.	DISA Oracle Linux 7 STIG v3r5	Unix	CONFIGURATION MANAGEMENT
OL07-00-040180 - The Oracle Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) authentication communications - LDAP authentication communications.	DISA Oracle Linux 7 STIG v3r5	Unix	ACCESS CONTROL
OL07-00-040190 - The Oracle Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) communications - LDAP communications.	DISA Oracle Linux 7 STIG v3r5	Unix	ACCESS CONTROL
OL07-00-040200 - The Oracle Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) communications - LDAP communications.	DISA Oracle Linux 7 STIG v3r5	Unix	ACCESS CONTROL
OL07-00-040200 - The Oracle Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) communications.	DISA Oracle Linux 7 STIG v3r5	Unix	ACCESS CONTROL
OS10-L2S-000020 - The Dell OS10 Switch must uniquely identify all network-connected endpoint devices before establishing any connection.	DISA Dell OS10 Switch Layer 2 Switch STIG v1r1	Dell_OS10	IDENTIFICATION AND AUTHENTICATION
PANW-IP-000018 - The Palo Alto Networks security platform must have a denial-of-service (DoS) Protection Profile for outbound traffic applied to a policy for traffic originating from the internal zone going to the external zone.	DISA Palo Alto Networks IDPS STIG v3r2	Palo_Alto	SYSTEM AND COMMUNICATIONS PROTECTION
PANW-IP-000041 - The Palo Alto Networks security platform must protect against or limit the effects of known and unknown types of denial-of-service (DoS) attacks by employing rate-based attack prevention behavior analysis (traffic thresholds) - traffic thresholds	DISA Palo Alto Networks IDPS STIG v3r2	Palo_Alto	SYSTEM AND COMMUNICATIONS PROTECTION
PANW-IP-000055 - The Palo Alto Networks security platform must send an alert to, at a minimum, the ISSO and ISSM when denial of service incidents are detected.	DISA Palo Alto Networks IDPS STIG v3r2	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
RHEL-07-010020 - The Red Hat Enterprise Linux operating system must be configured so that the cryptographic hash of system files and commands matches vendor values.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	CONFIGURATION MANAGEMENT
RHEL-07-040190 - The Red Hat Enterprise Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) communications.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-07-040200 - The Red Hat Enterprise Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) communications.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-09-212040 - RHEL 9 must clear the page allocator to prevent use-after-free attacks.	DISA Red Hat Enterprise Linux 9 STIG v2r8	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
SLES-12-010500 - Advanced Intrusion Detection Environment (AIDE) must verify the baseline SUSE operating system configuration at least weekly.	DISA SLES 12 STIG v3r4	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
SLES-12-030270 - The SUSE operating system SSH server must be configured to use only FIPS-validated key exchange algorithms.	DISA SLES 12 STIG v3r4	Unix	ACCESS CONTROL
SLES-15-010420 - Advanced Intrusion Detection Environment (AIDE) must verify the baseline SUSE operating system configuration at least weekly.	DISA SUSE Linux Enterprise Server 15 STIG v2r6	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
SLES-15-010570 - The SUSE operating system must notify the System Administrator (SA) when Advanced Intrusion Detection Environment (AIDE) discovers anomalies in the operation of any security functions.	DISA SUSE Linux Enterprise Server 15 STIG v2r6	Unix	SYSTEM AND INFORMATION INTEGRITY
SYMP-AG-000260 - Symantec ProxySG providing intermediary services for HTTP must inspect inbound HTTP traffic for protocol compliance and protocol anomalies - Explicit	DISA Symantec ProxySG Benchmark ALG v1r3	BlueCoat	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
SYMP-AG-000260 - Symantec ProxySG providing intermediary services for HTTP must inspect inbound HTTP traffic for protocol compliance and protocol anomalies - External	DISA Symantec ProxySG Benchmark ALG v1r3	BlueCoat	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
SYMP-AG-000260 - Symantec ProxySG providing intermediary services for HTTP must inspect inbound HTTP traffic for protocol compliance and protocol anomalies - Internal	DISA Symantec ProxySG Benchmark ALG v1r3	BlueCoat	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search