Item Search

Name	Audit Name	Plugin	Category
3.6 Configure Network Time Protocol (NTP) - OPTIONS=-u ntp:ntp -p /var/run/ntpd.pid	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
3.6 Configure Network Time Protocol (NTP) - server aaa.bbb.ccc.ddd	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	AUDIT AND ACCOUNTABILITY
3.10 Ensure Windows local groups are not SQL Logins	CIS Microsoft SQL Server 2019 v1.5.0 L1 AWS RDS	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.10 Ensure Windows local groups are not SQL Logins	CIS SQL Server 2016 Database L1 DB v1.4.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.10 Ensure Windows local groups are not SQL Logins	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	ACCESS CONTROL
18.6.7.6 (L1) Ensure 'Mandate the minimum version of SMB' is set to 'Enabled: 3.1.1'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.6.7.6 (L1) Ensure 'Mandate the minimum version of SMB' is set to 'Enabled: 3.1.1'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.8.5.2 Ensure 'Turn On Virtualization Based Security: Select Platform Security Level' is set to 'Secure Boot and DMA Protection'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 MS NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.8.5.2 Ensure 'Turn On Virtualization Based Security: Select Platform Security Level' is set to 'Secure Boot and DMA Protection'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 DC NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.8.37.1 Ensure 'Enable RPC Endpoint Mapper Client Authentication' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
18.8.37.1 Ensure 'Enable RPC Endpoint Mapper Client Authentication' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.28.4 (L1) Ensure 'Enumerate local users on domain-joined computers' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.9.35.1 (L1) Ensure 'Configure Offer Remote Assistance' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
18.9.35.1 (L1) Ensure 'Configure Offer Remote Assistance' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.9.36.2 (L1) Ensure 'Restrict Unauthenticated RPC clients' is set to 'Enabled: Authenticated'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
18.9.36.2 (L1) Ensure 'Restrict Unauthenticated RPC clients' is set to 'Enabled: Authenticated'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	CONFIGURATION MANAGEMENT
18.9.36.2 (L1) Ensure 'Restrict Unauthenticated RPC clients' is set to 'Enabled: Authenticated'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.9.77.3.1 Ensure 'Join Microsoft MAPS' is set to 'Disabled'	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	ACCESS CONTROL
18.9.97.2.2 Ensure 'Allow remote server management through WinRM' is set to 'Disabled'	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL
18.10.65.3 (L1) Ensure 'Turn off Automatic Download and Install of updates' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.65.3 (L1) Ensure 'Turn off Automatic Download and Install of updates' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.66.2 (L1) Ensure 'Turn off Automatic Download and Install of updates' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.66.2 (L1) Ensure 'Turn off Automatic Download and Install of updates' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.66.2 (L1) Ensure 'Turn off Automatic Download and Install of updates' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.66.4 (L2) Ensure 'Turn off the Store application' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.10.77.3 (L1) Ensure 'Automatically send memory dumps for OS-generated error reports' is set to 'Disabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.10.90.1 (L2) Ensure 'Allow Remote Shell Access' is set to 'Disabled'	CIS Windows Server 2012 DC L2 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.10.90.1 (L2) Ensure 'Allow Remote Shell Access' is set to 'Disabled'	CIS Windows Server 2012 R2 DC L2 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.10.90.1 (L2) Ensure 'Allow Remote Shell Access' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
ESXI-80-000204 - The ESXi host Secure Shell (SSH) daemon must not permit user environment settings.	DISA VMware vSphere 8.0 ESXi STIG v2r3	Unix	CONFIGURATION MANAGEMENT
ESXI-80-000207 - The ESXi host Secure Shell (SSH) daemon must be configured to not allow gateway ports.	DISA VMware vSphere 8.0 ESXi STIG v2r3	Unix	CONFIGURATION MANAGEMENT
ESXI-80-000210 - The ESXi host Secure Shell (SSH) daemon must set a timeout count on idle sessions.	DISA VMware vSphere 8.0 ESXi STIG v2r3	Unix	CONFIGURATION MANAGEMENT
ESXI-80-000211 - The ESXi host Secure Shell (SSH) daemon must set a timeout interval on idle sessions.	DISA VMware vSphere 8.0 ESXi STIG v2r3	Unix	CONFIGURATION MANAGEMENT
ESXI-80-000230 - The ESXi host Secure Shell (SSH) daemon must disable port forwarding.	DISA VMware vSphere 8.0 ESXi STIG v2r3	Unix	CONFIGURATION MANAGEMENT
Extended Protection for LDAP Authentication (Domain Controllers only) (DEPRECATED)	MSCT Windows Server 2025 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Network security: LAN Manager authentication level	MSCT Windows Server 1903 DC v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT Windows Server v1909 MS v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT Windows Server 2019 MS v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT Windows 10 v1507 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT Windows 10 v2004 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT Windows 10 1903 v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT Windows 10 v21H1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT Windows Server 2016 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT Windows Server 2019 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level	MSCT Windows 11 v22H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level - LmCompatibilityLevel	MSCT Windows Server 2025 MS v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: LAN Manager authentication level - LmCompatibilityLevel	MSCT Windows Server 2025 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search