Item Search

Name	Audit Name	Plugin	Category
1.1.1 Create Separate Partition for /tmp	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.14 Add nodev Option to /dev/shm Partition	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.2 Ensure Installation of Binary Packages	CIS PostgreSQL 10 OS v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.2 Ensure Installation of Binary Packages	CIS PostgreSQL 9.6 OS v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.1 Set User/Group Owner on /etc/grub.conf	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
1.5.5 Disable Interactive Boot	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
1.6.5 Disable Prelink - PRELINKING=no	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.9 Remove talk	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.12 Disable chargen-dgram	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.15 Disable daytime-stream	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.17 Disable echo-stream	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.14 Ensure 'sa' Login Account is set to 'Disabled'	CIS SQL Server 2008 R2 DB Engine L1 v1.7.0	MS_SQLDB	ACCESS CONTROL
3.1.3 Check Responses TTL Field - check-response-ttl=yes	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
3.1.6 Restrict Published Information (if publishing is required) - publish-workstation=no	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
3.1.17 Reserve the desired port number or name for incoming connection requests	CIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS Linux	Unix	CONFIGURATION MANAGEMENT
3.3 Remove X Windows - /etc/inittab- id:3:initdefault:	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
3.4 Disable Print Server - CUPS	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
3.4.1.3 Ensure nftables either not installed or masked with firewalld	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.1.3 Ensure nftables either not installed or masked with firewalld	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
3.8 Disable NFS and RPC - nfslock	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
3.8 Disable NFS and RPC - portmap	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
3.16 Configure Mail Transfer Agent for Local-Only Mode - O DaemonPortOptions=Port=smtp, Addr=127.0.0.1, Name=MTA	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's network environment are collected - /etc/hosts	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's network environment are collected - auditctl /etc/sysconfig/network	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's network environment are collected - auditctl b32 sethostname	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.7 Ensure events that modify the system's network environment are collected - b32 sethostname	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.2.2 Disable ICMP Redirect Acceptance - net.ipv4.conf.default.accept_redirects = 0	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
4.2.4 Log Suspicious Packets - net.ipv4.conf.all.log_martians = 1	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
4.4.1.2 Ensure nftables is not in use with iptables	CIS Debian Linux 12 v1.1.0 L1 Workstation	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.5.4 Create /etc/hosts.deny	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.6.3 Disable RDS	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
5.1.1 Configure /etc/syslog.conf - auth,user	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
5.4 CIFS - 'ldap.security.level = 1 or 2'	TNS NetApp Data ONTAP 7G	NetApp	SYSTEM AND COMMUNICATIONS PROTECTION
6.1 Setup Client-cert Authentication	CIS Apache Tomcat 10 L2 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
6.1 Setup Client-cert Authentication	CIS Apache Tomcat 9 L2 v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
6.1 Setup Client-cert Authentication	CIS Apache Tomcat 9 L2 v1.2.0 Middleware	Unix	IDENTIFICATION AND AUTHENTICATION
6.2.1 Set SSH Protocol to 2	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
8.3.1 Disable unnecessary or superfluous functions inside VMs	CIS VMware ESXi 5.1 v1.0.1 Level 1	VMware
8.4.26 Ensure all but VGA mode on virtual machines is disabled	CIS VMware ESXi 6.7 v1.3.0 Level 2	VMware	CONFIGURATION MANAGEMENT
9.3.1 Set SSH Protocol to 2	CIS Debian Linux 7 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
9.3.1 Set SSH Protocol to 2	CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0	Unix	CONFIGURATION MANAGEMENT
ALMA-09-023010 - AlmaLinux OS 9 must disable the use of user namespaces.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	CONFIGURATION MANAGEMENT
AS24-W1-000010 - The Apache web server must limit the number of allowed simultaneous session requests.	DISA STIG Apache Server 2.4 Windows Server v3r3	Windows	ACCESS CONTROL
DKER-EE-001810 - On Linux, a non-AUFS storage driver in the Docker Engine - Enterprise component of Docker Enterprise must be used.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	CONFIGURATION MANAGEMENT
DKER-EE-002130 - The Docker Enterprise socket must not be mounted inside any containers.	DISA STIG Docker Enterprise 2.x Linux/Unix v2r2	Unix	CONFIGURATION MANAGEMENT
Enable QoS on all VM guests	TNS Citrix Hypervisor	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
FFOX-00-000003 - Firefox must be configured to ask which certificate to present to a website when a certificate is required.	DISA STIG Mozilla Firefox Windows v6r6	Windows	IDENTIFICATION AND AUTHENTICATION
GEN002730 - The audit system must alert the SA when the audit storage volume approaches its capacity - audit_warn	DISA STIG Solaris 10 X86 v2r4	Unix	AUDIT AND ACCOUNTABILITY
GEN002730 - The audit system must alert the SA when the audit storage volume approaches its capacity - minfree	DISA STIG Solaris 10 SPARC v2r4	Unix	AUDIT AND ACCOUNTABILITY
SonicWALL - Flood Protection - Layer 2 - Threshold	TNS SonicWALL v5.9	SonicWALL	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search