Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Keep ESXi system properly patchedCIS VMware ESXi 5.1 v1.0.1 Level 1VMware
1.2 Verify Image Profile and VIB Acceptance LevelsCIS VMware ESXi 5.1 v1.0.1 Level 1VMware
1.3 Verify no unauthorized kernel modules are loaded on the hostCIS VMware ESXi 5.1 v1.0.1 Level 1VMware
1.6 Restrict port-level configuration overrides on vDSCIS VMware ESXi 5.1 v1.0.1 Level 1VMware
2.5 Enable SSL for Network File copy (NFC)CIS VMware ESXi 5.1 v1.0.1 Level 2VMware

SYSTEM AND COMMUNICATIONS PROTECTION

3.2 Configure Host Profiles to monitor and alert on configuration changesCIS VMware ESXi 5.1 v1.0.1 Level 1VMware
3.3 Configure persistent logging for all ESXi hostCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

AUDIT AND ACCOUNTABILITY

3.4 Configure remote logging for ESXi hostsCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

AUDIT AND ACCOUNTABILITY

4.1 Configure 'URL to be displayed for updates:'CIS IE 11 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

4.1 Ensure that logging is enabled. - nodetool getlogginglevelsCIS Apache Cassandra 3.11 L1 Unix Audit v1.0.0Unix

AUDIT AND ACCOUNTABILITY

4.1 Ensure the Latest Security Patches are AppliedCIS MariaDB 10.11 v1.0.0 L1 MariaDB RDBMS on Linux MySQLDBMySQLDB

SYSTEM AND SERVICES ACQUISITION

4.1 Review Organization's Policies against DB2 RCAC PoliciesCIS IBM DB2 v10 v1.1.0 Database Level 2IBM_DB2DB
4.1 Review Organization's Policies against DB2 RCAC PoliciesCIS IBM DB2 v10 v1.1.0 Linux OS Level 2Unix
4.1 Use TSIG Keys 256 Bits in LengthCIS BIND DNS v3.0.1 Authoritative Name ServerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

4.1 Use TSIG Keys 256 Bits in LengthCIS BIND DNS v3.0.1 Caching Only Name ServerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

4.2 Ensure Example or Test Databases are Not Installed on Production ServersCIS Oracle MySQL Community Server 8.0 v1.2.0 L1 MySQL RDBMS MySQLDBMySQLDB

PLANNING, SYSTEM AND SERVICES ACQUISITION

4.2 Ensure Example or Test Databases are Not Installed on Production ServersCIS Oracle MySQL Enterprise Edition 8.4 v1.1.0 L1 MySQL RDBMS on Linux MySQLDBMySQLDB

PLANNING, SYSTEM AND SERVICES ACQUISITION

4.3 Establish a password policy for password complexityCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

IDENTIFICATION AND AUTHENTICATION

4.9 Ensure 'sql_mode' Contains 'STRICT_ALL_TABLES'CIS MySQL 5.6 Enterprise Database L2 v2.0.0MySQLDB

PLANNING, SYSTEM AND SERVICES ACQUISITION

4.9 Ensure 'sql_mode' Contains 'STRICT_ALL_TABLES'CIS MySQL 5.7 Enterprise Database L2 v2.0.0MySQLDB

PLANNING, SYSTEM AND SERVICES ACQUISITION

5.1 Ensure that system activity is auditedCIS MongoDB 3.4 L1 Unix Audit v1.0.0Unix

AUDIT AND ACCOUNTABILITY

5.1 Ensure that system activity is auditedCIS MongoDB 6 v1.2.0 L1 MongoDBUnix

AUDIT AND ACCOUNTABILITY

5.1 Ensure that system activity is auditedCIS MongoDB 6 v1.2.0 L1 MongoDBWindows

AUDIT AND ACCOUNTABILITY

5.3 Disable SSHCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

CONFIGURATION MANAGEMENT

5.4 Ensure 'SUPER' is Not Granted to Non-Administrative UsersCIS MySQL 5.6 Community Database L1 v2.0.0MySQLDB

ACCESS CONTROL

5.4 Ensure 'SUPER' is Not Granted to Non-Administrative UsersCIS MySQL 5.7 Community Database L1 v2.0.0MySQLDB

ACCESS CONTROL

5.4 Ensure 'SUPER' is Not Granted to Non-Administrative UsersCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

ACCESS CONTROL

6.2 Ensure uniqueness of CHAP authentication secretsCIS VMware ESXi 5.1 v1.0.1 Level 1VMware
7.1 Ensure default_authentication_plugin is Set to a Secure OptionCIS Oracle MySQL Community Server 8.0 v1.2.0 L1 MySQL RDBMS MySQLDBMySQLDB

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

7.3.2 Ensure that the vSwitch MAC Address Change policy is set to rejectCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

SYSTEM AND COMMUNICATIONS PROTECTION

7.3.3 Ensure that the vSwitch Promiscuous Mode policy is set to rejectCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

SYSTEM AND COMMUNICATIONS PROTECTION

8.2.6 Prevent unauthorized removal, connection, and modification of devicesCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

ACCESS CONTROL

8.3 Set Maximum Connection Limits for Server and per UserCIS Oracle MySQL Enterprise Edition 8.0 v1.5.0 L1 MySQL RDBMS on Linux MySQLDBMySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

8.3 Set Maximum Connection Limits for Server and per UserCIS Oracle MySQL Enterprise Edition 8.4 v1.1.0 L1 MySQL RDBMS on Linux MySQLDBMySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

8.3 Set Maximum Connection Limits for Server and per UserCIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

ACCESS CONTROL

8.3 Set Maximum Connection Limits for Server and per UserCIS Oracle MySQL Community Server 8.0 v1.2.0 L1 MySQL RDBMS MySQLDBMySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

8.3 Set Maximum Connection Limits for Server and per UserCIS MySQL 5.7 Community Database L1 v2.0.0MySQLDB

ACCESS CONTROL

8.3 Set Maximum Connection Limits for Server and per UserCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

ACCESS CONTROL

8.3 Set Maximum Connection Limits for Server and per UserCIS Oracle MySQL Community Server 8.4 v1.1.0 L1 MySQL RDBMS MySQLDBMySQLDB

SYSTEM AND COMMUNICATIONS PROTECTION

8.4.1 Control access to VMs through the dvfilter network APIsCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

ACCESS CONTROL

8.4.2 Control VMsafe Agent AddressCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

SYSTEM AND INFORMATION INTEGRITY

8.4.5 Disable AutologonCIS VMware ESXi 5.1 v1.0.1 Level 2VMware

ACCESS CONTROL

8.4.18 Disable UnityCIS VMware ESXi 5.1 v1.0.1 Level 2VMware

CONFIGURATION MANAGEMENT

8.4.25 Disable VM Console Copy operationsCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

CONFIGURATION MANAGEMENT

9.4 Ensure 'super_priv' Is Not Set to 'Y' for Replication UsersCIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

ACCESS CONTROL

10.2 Allowlist Approved Servers Belonging to a MySQL InnoDB ClusterCIS Oracle MySQL Community Server 8.0 v1.2.0 L2 MySQL RDBMS MySQLDBMySQLDB

ACCESS CONTROL, MEDIA PROTECTION

10.2 Allowlist Approved Servers Belonging to a MySQL InnoDB ClusterCIS Oracle MySQL Community Server 8.4 v1.1.0 L2 MySQL RDBMS on Linux MySQLDBMySQLDB

ACCESS CONTROL, MEDIA PROTECTION

10.2 Allowlist Approved Servers Belonging to a MySQL InnoDB ClusterCIS Oracle MySQL Enterprise Edition 8.4 v1.1.0 L2 MySQL RDBMS MySQLDBMySQLDB

ACCESS CONTROL, MEDIA PROTECTION

KNOX-07-017600 - The Samsung must be configured to disable authentication mechanisms providing user access. Disable Iris Scanner.AirWatch - DISA Samsung Android 7 with Knox 2.x v1r1MDM

CONFIGURATION MANAGEMENT

KNOX-07-017600 - The Samsung must be configured to disable authentication mechanisms providing user access. Disable Iris Scanner.MobileIron - DISA Samsung Android 7 with Knox 2.x v1r1MDM

CONFIGURATION MANAGEMENT