Detections
Analytics

Item Search

NameAudit NamePluginCategory
18.10.8.2 (L1) Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NGWindows

MEDIA PROTECTION

18.10.8.2 (L1) Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'CIS Microsoft Windows Server 2019 v4.0.0 L1 MSWindows

MEDIA PROTECTION

Administrative actions are loggedTNS Citrix HypervisorUnix

AUDIT AND ACCOUNTABILITY

Check for signatures on downloaded programsMSCT MSCT Windows Server 2022 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows Server v20H2 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows Server v2004 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows Server 2019 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows 10 1803 v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows 11 v24H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows 10 1809 v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows 10 v20H2 v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows Server 2025 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows 10 v1507 v1.0.0Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows Server 1903 DC v1.19.9Windows

CONFIGURATION MANAGEMENT

Check for signatures on downloaded programsMSCT Windows Server v2004 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

HP ProCurve - 'Configure login attempts'TNS HP ProCurveHPProCurve

ACCESS CONTROL

HP ProCurve - 'Disable TFTP server'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT

Install a trusted certificate in place of the default self-signed SSL certificateTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

Restrict allowed IPv4 addresses used by each VM guestTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Ensure default 'admin' username is not usedTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Anti-Spyware - WLANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - AutoDownload Firmware - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Client AV Enforcement On - DMZTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Client AV Enforcement On - WLANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Flood Protection - Layer 3 - Attack ThresholdTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - Layer 3 - Protection ModeTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Login Banner - Trusted ZoneTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Password Policy - Affected User typesTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Affected User types - limited-adminsTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Change Period <=30 daysTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - PW Policy - Lockout - Num Attempts <=3TNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Security Services - Client AV - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - CIFS/NetbiosTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - IMAPTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - SMTP InboundTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - IDP - ActivatedTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - SSL Control - Enable BlacklistTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Unused InterfacesTNS SonicWALL v5.9SonicWALL

CONFIGURATION MANAGEMENT

SonicWALL - Use non default admin access ports - HTTPSTNS SonicWALL v5.9SonicWALL

CONFIGURATION MANAGEMENT

SonicWALL - Web Interface - Does not use self-signed certTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

Use a static IP on the storage network interfaceTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

XenServer - All network interfaces are operating in full-duplex modeTNS Citrix XenServerUnix
XenServer - Auto-start is not enabledTNS Citrix XenServerUnix
XenServer - Disallow unplug detection on the storage network interfaceTNS Citrix XenServerUnix
XenServer - Enable QoS on all VM guestsTNS Citrix XenServerUnix
XenServer - Host is enabledTNS Citrix XenServerUnix
XenServer - Passwords stored in 'secrets' are not visibleTNS Citrix XenServerUnix
XenServer - Restrict allowed IPv4 addresses used by each VM guestTNS Citrix XenServerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

XenServer - Use a static IP on the management network interfaceTNS Citrix XenServerUnix