Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.11 Ensure 'Unknown sources' is set to DisabledAirWatch - CIS Google Android 7 v1.0.0 L1MDM

CONFIGURATION MANAGEMENT

18.7.9 (L2) Ensure 'Configure Windows protected print' is set to 'Enabled'CIS Microsoft Windows Server 2025 v1.0.0 L2 DCWindows

CONFIGURATION MANAGEMENT

18.7.9 (L2) Ensure 'Configure Windows protected print' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v4.0.0 L2Windows

CONFIGURATION MANAGEMENT

18.9.8.2 (L1) Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1Windows

MEDIA PROTECTION

18.9.8.2 Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

18.10.7.2 (L1) Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Microsoft Windows Server 2016 v3.0.0 L1 MSWindows

MEDIA PROTECTION

18.10.7.2 (L1) Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Windows Server 2012 MS L1 v3.0.0Windows

MEDIA PROTECTION

18.10.7.2 Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain ControllerWindows

MEDIA PROTECTION

18.10.7.2 Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

MEDIA PROTECTION

18.10.7.2 Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DCWindows

MEDIA PROTECTION

18.10.8.2 (L1) Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Microsoft Windows Server 2025 v1.0.0 L1 DCWindows

MEDIA PROTECTION

18.10.8.2 (L1) Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Microsoft Windows Server 2022 v4.0.0 L1 DCWindows

MEDIA PROTECTION

18.10.8.2 (L1) Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BLWindows

MEDIA PROTECTION

Auto-start is not enabledTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Check for server certificate revocationMSCT Windows Server 2025 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Check for server certificate revocationMSCT Windows 11 v24H2 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Enable QoS on all VM guestsTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Disable SNMPv2'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

HP ProCurve - 'Disable TFTP client'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT

HP ProCurve - 'Enable HTTPS'TNS HP ProCurveHPProCurve

SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Privilege mode is configured'TNS HP ProCurveHPProCurve

IDENTIFICATION AND AUTHENTICATION

HP ProCurve - 'Secure Management VLAN is configured'TNS HP ProCurveHPProCurve

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Identify a network interface to be used for storage accessTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Limits print driver installation to Administrators - RestrictDriverInstallationToAdministratorsMSCT Windows Server 2025 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Limits print driver installation to Administrators - RestrictDriverInstallationToAdministratorsMSCT Windows Server 2025 MS v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Restrict allowed IPv6 addresses used by each VM guestTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Anti-Spyware - DMZTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - AutoUpdate - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Content Filtering On - DMZTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Detection Prevention - IP TTL DecrementTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Detection Prevention - Stealth ModeTNS SonicWALL v5.9SonicWALL
SonicWALL - Flood Protection - Layer 2 - All InterfacesTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - checksum enforcementTNS SonicWALL v5.9SonicWALL
SonicWALL - GAV ON - LANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - GAV ON - WANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - GAV ON - WLANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Login Banner - Public ZoneTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Security Services - Gateway AV - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - TCP Stream InboundTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - IDP - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Settings - Max SecurityTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - SSL Control - Enable SSL ControlTNS SonicWALL v5.9SonicWALL
SonicWALL - Use non default admin access ports - 'SSH'TNS SonicWALL v5.9SonicWALL

CONFIGURATION MANAGEMENT

SonicWALL - User Inactivity Timeout - 5 minutes or lessTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

vCenter : restrict-vcs-db-userVMWare vSphere 5.X Hardening GuideVMware
XenServer - Administrative actions are loggedTNS Citrix XenServerUnix
XenServer - Disable promiscuous mode on all network interfacesTNS Citrix XenServerUnix
XenServer - Enable only necessary and secure services, protocols, daemons - 'snapwatchd'TNS Citrix XenServerUnix

CONFIGURATION MANAGEMENT

XenServer - High availability is enabledTNS Citrix XenServerUnix
XenServer - Install a trusted certificate in place of the default self-signed SSL certificateTNS Citrix XenServerUnix