Item Search

Name	Audit Name	Plugin	Category
2.10 Ensure Unnecessary SQL Server Protocols are set to 'Disabled'	CIS Microsoft SQL Server 2019 v1.5.0 L1 Database Engine	MS_SQLDB	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.12 Ensure 'Hide Instance' option is set to 'Yes' for Production SQL Server instances	CIS SQL Server 2017 Database L1 DB v1.3.0	MS_SQLDB	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.12 Ensure 'Hide Instance' option is set to 'Yes' for Production SQL Server instances	CIS SQL Server 2022 Database L1 DB v1.1.0	MS_SQLDB	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.16 Ensure no login exists with the name 'sa'	CIS SQL Server 2022 Database L1 DB v1.1.0	MS_SQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.17 Ensure no login exists with the name 'sa'	CIS SQL Server 2016 Database L1 DB v1.4.0	MS_SQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.17 Ensure no login exists with the name 'sa'	CIS SQL Server 2016 Database L1 AWS RDS v1.4.0	MS_SQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.4 Scan and rebuild the images to include security patches	CIS Docker 1.13.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
Configuration files should be secured against unauthorized access.	TNS IBM HTTP Server Best Practice Middleware	Unix
Ensure 'console session timeout' is less than or equal to '5' minutes	Tenable Cisco Firepower Best Practices Audit	Cisco	ACCESS CONTROL
Ensure 'Failover' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'noproxyarp' is enabled for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure DHCP services are disabled for untrusted interfaces - dhcprelay	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure non-default application inspection is configured correctly	Tenable Cisco Firepower Best Practices Audit	Cisco	SYSTEM AND INFORMATION INTEGRITY
File permissions in the root document should only be accessible by administrator	TNS IBM HTTP Server Best Practice Middleware	Unix
HTTP TRACE method should be disabled. 'RewriteCond'	TNS IBM HTTP Server Best Practice Middleware	Unix	CONFIGURATION MANAGEMENT
HTTP TRACE method should be disabled. 'RewriteEngine'	TNS IBM HTTP Server Best Practice Middleware	Unix	CONFIGURATION MANAGEMENT
HTTP TRACE method should be disabled. 'RewriteLogLevel'	TNS IBM HTTP Server Best Practice Middleware	Unix	CONFIGURATION MANAGEMENT
Logging Directives should be restricted to authorized users. - 'LogFormat'	TNS IBM HTTP Server Best Practice Middleware	Unix	AUDIT AND ACCOUNTABILITY
Logs containing auditing information should be secured at the directory level.	TNS IBM HTTP Server Best Practice Middleware	Unix	AUDIT AND ACCOUNTABILITY
MaxKeepAliveRequests parameter value should be appropriately configured.	TNS IBM HTTP Server Best Practice Middleware	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
MaxSpareServers parameter value should be appropriately configured.	TNS IBM HTTP Server Best Practice Middleware	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
Non-Essential modules should be disabled. 'mod_autoindex'	TNS IBM HTTP Server Best Practice Middleware	Unix	CONFIGURATION MANAGEMENT
Non-Essential modules should be disabled. 'mod_status'	TNS IBM HTTP Server Best Practice Middleware	Unix	CONFIGURATION MANAGEMENT
SQL2-00-018200 - SQL Server backups of system-level information per organization-defined frequency must be performed that is consistent with recovery time and recovery point objectives.	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	CONTINGENCY PLANNING
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - DATABASE_OBJECT_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - DATABASE_OWNERSHIP_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - DATABASE_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - DATABASE_ROLE_MEMBER_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 89	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 90	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 102	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 103	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 108	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 109	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 110	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 173	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - Event ID 177	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added - SERVER_OBJECT_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-036000 - SQL Server must generate Trace or Audit records when privileges/permissions are added.	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - DB_OBJECT_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - Event ID 42	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - Event ID 83	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - Event ID 111	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - Event ID 170	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - SCHEMA_OBJECT_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037000 - SQL Server must generate Trace or Audit records when unsuccessful attempts to delete privileges/permissions occur - SERVER_PERMISSION_CHANGE_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037200 - SQL Server must generate Trace or Audit records when unsuccessful attempts to drop locally-defined security objects occur - Event ID 47	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037200 - SQL Server must generate Trace or Audit records when unsuccessful attempts to drop locally-defined security objects occur - Event ID 162	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-037200 - SQL Server must generate Trace or Audit records when unsuccessful attempts to drop locally-defined security objects occur - Event ID 164	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL6-D0-007900 - If DBMS authentication using passwords is employed, SQL Server must enforce the DOD standards for password complexity and lifetime.	DISA STIG SQL Server 2016 Instance DB Audit v3r4	MS_SQLDB	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search