Item Search

Name	Audit Name	Plugin	Category
1.2.1.3 Ensure repo_gpgcheck is globally activated	CIS Red Hat Enterprise Linux 8 v4.0.0 L2 Workstation	Unix	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.4.4 Remove SETroubleshoot	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	SYSTEM AND INFORMATION INTEGRITY
1.8.6.1 Ensure 'Default File Format' is set to Enabled (Word Document (.docx))	CIS Microsoft Office Word 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.8.6.1 Ensure 'Default File Format' is set to Enabled (Word Document (.docx))	CIS Microsoft Office Word 2013 v1.1.0	Windows	CONFIGURATION MANAGEMENT
2.3.7.4 (L1) Ensure 'Interactive logon: Prompt user to change password before expiration' is set to 'between 5 and 14 days'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.7.7 (L1) Ensure 'Interactive logon: Prompt user to change password before expiration' is set to 'between 5 and 14 days'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.7.7 Ensure 'Interactive logon: Prompt user to change password before expiration' is set to 'between 5 and 14 days'	CIS Microsoft Windows Server 2025 v2.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
3.1 Ensure 'FAILED_LOGIN_ATTEMPTS' Is Less than or Equal to '5'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
3.1 Ensure 'FAILED_LOGIN_ATTEMPTS' Is Less than or Equal to '5'	CIS Oracle Server 11g R2 DB v2.2.0	OracleDB
3.1 Ensure 'FAILED_LOGIN_ATTEMPTS' Is Less than or Equal to '5'	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
3.1 Ensure 'FAILED_LOGIN_ATTEMPTS' Is Less than or Equal to '5'	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	ACCESS CONTROL
3.6 Ensure 'PASSWORD_GRACE_TIME' Is Less than or Equal to '5'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
3.6 Ensure 'PASSWORD_GRACE_TIME' Is Less than or Equal to '5'	CIS Oracle Server 11g R2 DB v2.2.0	OracleDB
4.1.16 Ensure kernel module loading and unloading is collected - auditctl modprobe	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl modprobe	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl init_module	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl insmod	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - auditctl modprobe	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - insmod	CIS Distribution Independent Linux Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - insmod	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.18 Ensure kernel module loading and unloading is collected - rmmod	CIS Distribution Independent Linux Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
4.5 Ensure excessive function privileges are revoked	CIS PostgreSQL 16 v1.1.0 L1 OS Linux PostgreSQLDB	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5 Ensure excessive function privileges are revoked	CIS PostgreSQL 13 v1.3.0 L1 Database PostgreSQLDB	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5 Ensure excessive function privileges are revoked	CIS PostgreSQL 14 DB v 1.3.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5 Ensure excessive function privileges are revoked	CIS PostgreSQL 15 v1.2.0 L1 OS Linux PostgreSQLDB	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.1.6 Ensure sudo authentication timeout is configured	CIS Linux Mint 22 v1.0.0 L1 Workstation	Unix	ACCESS CONTROL
5.2.6 Ensure sudo authentication timeout is configured	CIS Ubuntu Linux 20.04 LTS v3.0.0 L1 Server	Unix	ACCESS CONTROL
5.4.3 Ensure password reuse is limited	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	ACCESS CONTROL
5.4.11 Ensure password prohibited reuse is at a minimum 5	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
5.26 Ensure fewer than 5 users have global administrator assignment	CIS Microsoft Azure Foundations v5.0.0 L1	microsoft_azure	ACCESS CONTROL
7.7 Ensure Firewall is active - iptables-persistent run level 5	CIS Debian Linux 7 L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
8.1.17 Collect Kernel Module Loading and Unloading - '32bit init_module/delete_module'	CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.17 Collect Kernel Module Loading and Unloading - '64bit init_module/delete_module'	CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
8.1.17 Collect Kernel Module Loading and Unloading- '/sbin/rmmod'	CIS Ubuntu 12.04 LTS Benchmark L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
8.2.2 Ensure the rsyslog Service is activated - run level 5	CIS Debian Linux 7 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
AIX7-00-002128 - If bash is used, AIX must display logout messages.	DISA STIG AIX 7.x v3r1	Unix	ACCESS CONTROL
AIX7-00-002130 - If csh/tcsh shell is used, AIX must display logout messages.	DISA STIG AIX 7.x v3r1	Unix	ACCESS CONTROL
CISC-RT-000240 - The Cisco perimeter switch must be configured to deny network traffic by default and allow network traffic by exception.	DISA Cisco IOS Switch RTR STIG v3r2	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
CISC-RT-000520 - The Cisco BGP router must be configured to reject outbound route advertisements for any prefixes that do not belong to any customers or the local autonomous system (AS).	DISA Cisco IOS Router RTR STIG v3r4	Cisco	ACCESS CONTROL
Configure IPsec Tunnel Parameters - rekey	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	ACCESS CONTROL
DTAVSEL-013 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Clean as first action when a virus or Trojan is detected.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
DTAVSEL-016 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be configured to Quarantine if first action fails when programs and jokes are found.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
Enable IKE Version 1/2 - group	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	SYSTEM AND COMMUNICATIONS PROTECTION
Enable IKE Version 1/2 - rekey	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	ACCESS CONTROL
GEN000800 - The system must prohibit the reuse of passwords within five iterations.	DISA STIG AIX 6.1 v1r14	Unix	IDENTIFICATION AND AUTHENTICATION
GEN000800 - The system must prohibit the reuse of passwords within five iterations.	DISA AIX 5.3 STIG v1r2	Unix	IDENTIFICATION AND AUTHENTICATION
SLEM-05-214015 - The SLEM 5 tool zypper must have gpgcheck enabled.	DISA SUSE Linux Enterprise Micro SLEM 5 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
SLEM-05-411020 - SLEM 5 shadow password suite must be configured to enforce a delay of at least five seconds between logon prompts following a failed logon attempt.	DISA SUSE Linux Enterprise Micro SLEM 5 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
SLEM-05-411055 - SLEM 5 must not have unnecessary accounts.	DISA SUSE Linux Enterprise Micro SLEM 5 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
VCLD-80-000100 The vCenter VAMI service must implement prevent rendering inside a frame or iframe on another site.	DISA VMware vSphere 8.0 vCenter Appliance Management Interface (VAMI) STIG v2r1	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search