| 1.122 APPL-14-003013 | CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II | Unix | CONFIGURATION MANAGEMENT |
| 1.141 APPL-14-005050 | CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-011570 - AlmaLinux OS 9 must disable core dump backtraces. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-011790 - AlmaLinux OS 9 cron configuration files directory must be group-owned by root. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-012120 - AlmaLinux OS 9 /etc/crontab file must have mode 0600. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-012450 - All AlmaLinux OS 9 local files and directories must have a valid group owner. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-012670 - AlmaLinux OS 9 /etc/group- file must be group owned by root. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-013880 - AlmaLinux OS 9 /etc/gshadow- file must have mode 0000 or less permissive to prevent unauthorized access. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-013990 - AlmaLinux OS 9 /etc/gshadow file must be group-owned by root. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-014980 - A separate file system must be used for user home directories (such as /home or an equivalent). | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-015640 - AlmaLinux OS 9 must enforce a delay of at least four seconds between logon prompts following a failed logon attempt. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-016520 - AlmaLinux OS 9 /etc/passwd file must have mode 0644 or less permissive to prevent unauthorized access. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-016630 - AlmaLinux OS 9 /etc/shadow- file must be group-owned by root. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-016850 - AlmaLinux OS 9 /etc/shadow- file must have mode 0000 or less permissive to prevent unauthorized access. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-017070 - AlmaLinux OS 9 /etc/shadow file must be owned by root. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-018170 - AlmaLinux OS 9 must use a file integrity tool that is configured to use FIPS 140-3-approved cryptographic hashes for validating file contents and directories. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-018940 - AlmaLinux OS 9 must limit the number of bogus Internet Control Message Protocol (ICMP) response errors logs. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-019160 - AlmaLinux OS 9 must not enable IP packet forwarding unless the system is a router. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-020810 - AlmaLinux OS 9 must not allow a noncertificate trusted host SSH logon to the system. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-022240 - AlmaLinux OS 9 must have the gnutls-utils package installed. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-022350 - The kdump service on AlmaLinux OS 9 must be disabled. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-022790 - AlmaLinux OS 9 must prevent code from being executed on file systems that are used with removable media. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| ALMA-09-025760 - AlmaLinux OS 9 must use cron logging. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | CONFIGURATION MANAGEMENT |
| CISC-RT-000236 - The Cisco router must be configured to advertise a hop limit of at least 32 in Router Advertisement messages for IPv6 stateless auto-configuration deployments. | DISA Cisco IOS Router RTR STIG v3r3 | Cisco | CONFIGURATION MANAGEMENT |
| CISC-RT-000236 - The Cisco switch must be configured to advertise a hop limit of at least 32 in Switch Advertisement messages for IPv6 stateless auto-configuration deployments. | DISA Cisco NX OS Switch RTR STIG v3r3 | Cisco | CONFIGURATION MANAGEMENT |
| CISC-RT-000237 - The Cisco switch must not be configured to use IPv6 Site Local Unicast addresses. | DISA Cisco NX OS Switch RTR STIG v3r3 | Cisco | CONFIGURATION MANAGEMENT |
| CISC-RT-000391 - The Cisco perimeter router must be configured to suppress Router Advertisements on all external IPv6-enabled interfaces. | DISA Cisco IOS XR Router RTR STIG v3r2 | Cisco | CONFIGURATION MANAGEMENT |
| CNTR-K8-003190 - The Kubernetes kubelet KubeConfig must have file permissions set to 644 or more restrictive. | DISA STIG Kubernetes v2r4 | Unix | CONFIGURATION MANAGEMENT |
| CNTR-K8-003210 - The Kubernetes kubeadm.conf must be owned by root. | DISA STIG Kubernetes v2r4 | Unix | CONFIGURATION MANAGEMENT |
| CNTR-K8-003230 - The Kubernetes kubelet config must have file permissions set to 644 or more restrictive. | DISA STIG Kubernetes v2r4 | Unix | CONFIGURATION MANAGEMENT |
| CNTR-K8-003300 - The Kubernetes API Server must be set to audit log maximum backup. | DISA STIG Kubernetes v2r4 | Unix | CONFIGURATION MANAGEMENT |
| MOTO-09-000200 - The Motorola Android Pie must be configured to not allow passwords that include more than two repeating or sequential characters - Characters | AirWatch - DISA Motorola Android Pie.x COBO v1r2 | MDM | CONFIGURATION MANAGEMENT |
| MOTO-09-000200 - The Motorola Android Pie must be configured to not allow passwords that include more than two repeating or sequential characters - Numbers | AirWatch - DISA Motorola Android Pie.x COBO v1r2 | MDM | CONFIGURATION MANAGEMENT |
| MOTO-09-008800 - Motorola Android Pie must be configured to enforce that Wi-Fi Sharing is disabled. | AirWatch - DISA Motorola Android Pie.x COBO v1r2 | MDM | CONFIGURATION MANAGEMENT |
| O19C-00-008400 - Oracle Database must be configured in accordance with the security configuration settings based on DOD security configuration and implementation guidance, including STIGs, NSA configuration guides, CTOs, DTMs, and IAVMs. | DISA Oracle Database 19c STIG v1r2 OracleDB | OracleDB | CONFIGURATION MANAGEMENT |
| O19C-00-008600 - Oracle instance names must not contain Oracle version numbers. | DISA Oracle Database 19c STIG v1r2 OracleDB | OracleDB | CONFIGURATION MANAGEMENT |
| O19C-00-010100 - Oracle application administration roles must be disabled if not required and authorized. | DISA Oracle Database 19c STIG v1r2 OracleDB | OracleDB | CONFIGURATION MANAGEMENT |
| O19C-00-010600 - Oracle Database production application and data directories must be protected from developers on shared production/development database management system (DBMS) host systems. | DISA Oracle Database 19c STIG v1r2 OracleDB | OracleDB | CONFIGURATION MANAGEMENT |
| O19C-00-011500 - The /diag subdirectory under the directory assigned to the DIAGNOSTIC_DEST parameter must be protected from unauthorized access. | DISA Oracle Database 19c STIG v1r2 Windows | Windows | CONFIGURATION MANAGEMENT |
| O19C-00-011600 - Remote administration must be disabled for the Oracle connection manager. | DISA Oracle Database 19c STIG v1r2 Windows | Windows | CONFIGURATION MANAGEMENT |
| O19C-00-011700 - Network client connections must be restricted to supported versions. | DISA Oracle Database 19c STIG v1r2 Windows | Windows | CONFIGURATION MANAGEMENT |
| O19C-00-012000 - Oracle Database must provide a mechanism to automatically identify accounts designated as temporary or emergency accounts. | DISA Oracle Database 19c STIG v1r2 OracleDB | OracleDB | CONFIGURATION MANAGEMENT |
| OL09-00-002539 - OL 9 /etc/gshadow- file must be group-owned by root. | DISA Oracle Linux 9 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| OL09-00-002555 - OL 9 /etc/shadow file must have mode 0000 to prevent unauthorized access. | DISA Oracle Linux 9 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| OL09-00-002582 - OL 9 cron configuration files directory must be owned by root. | DISA Oracle Linux 9 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| OL09-00-003070 - OL 9 must enforce a delay of at least four seconds between logon prompts following a failed logon attempt. | DISA Oracle Linux 9 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| OL09-00-006026 - OL 9 must not forward IPv4 source-routed packets by default. | DISA Oracle Linux 9 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| OL09-00-006028 - OL 9 must not enable IPv4 packet forwarding unless the system is a router. | DISA Oracle Linux 9 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| OL09-00-006033 - OL 9 must not allow interfaces to perform Internet Control Message Protocol (ICMP) redirects by default. | DISA Oracle Linux 9 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
| OL09-00-006044 - OL 9 must not accept router advertisements on all IPv6 interfaces by default. | DISA Oracle Linux 9 STIG v1r2 | Unix | CONFIGURATION MANAGEMENT |
