Item Search

Name	Audit Name	Plugin	Category
1.2 Ensure 'host headers' are on all sites	CIS IIS 8.0 v1.5.1 Level 1	Windows	CONFIGURATION MANAGEMENT
2.2.4 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.4 Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.2.6 (L1) Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2016 v4.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.23 Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'	CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.24 (L1) Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' and (when the Web Server (IIS) Role with Web Services Role Service is installed) 'IIS_IUSRS'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.24 (L1) Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' and (when the Web Server (IIS) Role with Web Services Role Service is installed) 'IIS_IUSRS'	CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.33 (L1) Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' and (when the Web Server (IIS) Role with Web Services Role Service is installed) 'IIS_IUSRS' (MS only)	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.34 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.37 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)	CIS Microsoft Windows Server 2016 v4.0.0 L2 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.37 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)	CIS Microsoft Windows Server 2019 v4.0.0 L2 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.41 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.41 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.44 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.2.44 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.2.44 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.4 Ensure 'forms authentication' is set to use cookies - Applications	CIS IIS 7 L2 v1.8.0	Windows	CONFIGURATION MANAGEMENT
2.4 Ensure 'forms authentication' is set to use cookies - Default	CIS IIS 7 L2 v1.8.0	Windows	CONFIGURATION MANAGEMENT
2.5 Ensure 'cookie protection mode' is configured for forms authentication - Applications	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.5 Ensure 'cookie protection mode' is configured for forms authentication - Default	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6 Ensure transport layer security for 'basic authentication' is configured	CIS IIS 7 L1 v1.8.0	Windows	IDENTIFICATION AND AUTHENTICATION
3.5 Ensure ASP.NET stack tracing is not enabled - Applications	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
3.7 Ensure 'cookies' are set with HttpOnly attribute - Applications	CIS IIS 7 L2 v1.8.0	Windows	ACCESS CONTROL
3.8 Configure MachineKey Validation Method - .Net 3.5 - Applications	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.9 Ensure 'MachineKey validation method - .Net 4.5' is configured - Default	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.5 Configure Solaris Auditing - active audit policies = argv,cnt,zonename	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - active user flags = cis,ex,aa,ua,as,ss,lo,ft	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit condition = auditing	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit_binfile (active)	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit_binfile attributes: p_minfree=1;	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit_flags root = lo,ad,ft,ex,cis:no	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - configured audit policies = argv,cnt,zonename	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - configured non-attributable flags = lo	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - configured non-attributable flags = lo	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - configured user flags = cis,ex,aa,ua,as,ss,lo,ft	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - configured user flags = cis,ex,aa,ua,as,ss,lo,ft	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - var/audit/.not_terminated.	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - var/audit/.not_terminated.	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.7 Ensure Unlisted File Extensions are not allowed - Applications	CIS IIS 10 v1.2.1 Level 1	Windows	SYSTEM AND SERVICES ACQUISITION
4.8 Ensure Handler is not granted Write and Script/Execute - Default	CIS IIS 7 L1 v1.8.0	Windows	ACCESS CONTROL
7.1 Ensure HSTS Header is set	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.5 Ensure TLS 1.0 is disabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.7 Ensure NULL Cipher Suites is disabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.10 Ensure RC4 Cipher Suites is disabled - RC4 56/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.10 Ensure RC4 Cipher Suites is disabled - RC4 64/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.13 Ensure AES 256/256 Cipher Suite is enabled - Enabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.15 Ensure TLS Cipher Suite ordering is configured	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search