Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Ensure packages are obtained from authorized repositoriesCIS PostgreSQL 9.5 OS v1.1.0Unix

CONFIGURATION MANAGEMENT

1.1.16 Ensure that the --audit-log-maxbackup argument is set to 10 or as appropriateCIS Kubernetes 1.8 Benchmark v1.2.0 L1Unix

AUDIT AND ACCOUNTABILITY

1.1.17 Ensure that the --audit-log-maxbackup argument is set to 10 or as appropriateCIS Kubernetes 1.11 Benchmark v1.3.0 L1Unix

AUDIT AND ACCOUNTABILITY

1.1.18 Ensure that the --audit-log-maxbackup argument is set to 10 or as appropriateCIS Kubernetes 1.7.0 Benchmark v1.1.0 L1Unix

AUDIT AND ACCOUNTABILITY

1.2.18 Ensure that the --audit-log-maxbackup argument is set to 10 or as appropriateCIS Kubernetes v1.12.0 L1 Master NodeUnix

AUDIT AND ACCOUNTABILITY

1.2.20 Ensure that the maximumRetainedFiles argument is set to 10 or as appropriateCIS Red Hat OpenShift Container Platform v1.9.0 L1OpenShift

AUDIT AND ACCOUNTABILITY

1.4 SNMP Security - c) SNMP Security Protection FunctionTenable ZTE ROSNGZTE_ROSNG

SYSTEM AND COMMUNICATIONS PROTECTION

1.16 APPL-14-000051CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT IIUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.17 APPL-14-000052CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT IIUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.26 APPL-14-000120CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT IIUnix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

1.27 APPL-14-000130CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT IIUnix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

1.52 APPL-14-001100CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT IIUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

5.3.22 Ensure SSH MaxStartups is configured - sshdCIS CentOS 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

5.3.22 Ensure SSH MaxStartups is configured - sshdCIS Oracle Linux 6 Server L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

5.3.22 Ensure SSH MaxStartups is configured - sshdCIS Red Hat 6 Server L1 v3.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

5.3.22 Ensure SSH MaxStartups is configured - sshdCIS Red Hat 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

5.3.22 Ensure SSH MaxStartups is configured - sshd_configCIS CentOS 6 Server L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

5.3.22 Ensure SSH MaxStartups is configured - sshd_configCIS Red Hat 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

5.3.22 Ensure SSH MaxStartups is configured - sshd_configCIS CentOS 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

5.28 Ensure PIDs cgroup limit is usedCIS Docker Community Edition v1.1.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.28 Use PIDs cgroup limitCIS Docker 1.12.0 v1.0.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.28 Use PIDs cgroup limitCIS Docker 1.13.0 v1.0.0 L1 DockerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

6.2 Ensure 'CLR Assembly Permission Set' is set to 'SAFE_ACCESS' for All CLR AssembliesCIS SQL Server 2008 R2 DB Engine L1 v1.7.0MS_SQLDB

CONFIGURATION MANAGEMENT

APPL-14-000051 - The macOS system must configure SSHD ClientAliveInterval to 900.DISA Apple macOS 14 Sonoma STIG v2r4Unix

SYSTEM AND COMMUNICATIONS PROTECTION

APPL-14-000052 - The macOS system must configure SSHD ClientAliveCountMax to 1.DISA Apple macOS 14 Sonoma STIG v2r4Unix

SYSTEM AND COMMUNICATIONS PROTECTION

APPL-14-000053 - The macOS system must set Login Grace Time to 30.DISA Apple macOS 14 Sonoma STIG v2r4Unix

SYSTEM AND COMMUNICATIONS PROTECTION

APPL-14-001100 - The macOS system must disable root logon for SSH.DISA Apple macOS 14 Sonoma STIG v2r4Unix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

APPL-15-000051 - The macOS system must configure SSHD ClientAliveInterval to 900.DISA Apple macOS 15 Sequoia STIG v1r7Unix

SYSTEM AND COMMUNICATIONS PROTECTION

APPL-15-000052 - The macOS system must configure SSHD ClientAliveCountMax to 1.DISA Apple macOS 15 Sequoia STIG v1r7Unix

SYSTEM AND COMMUNICATIONS PROTECTION

APPL-26-000052 - The macOS system must configure SSHD ClientAliveCountMax to 1.DISA Apple macOS 26 Tahoe STIG v1r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

APPL-26-000053 - The macOS system must set login grace time to 30.DISA Apple macOS 26 Tahoe STIG v1r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

APPL-26-001100 - The macOS system must disable root login for SSH.DISA Apple macOS 26 Tahoe STIG v1r2Unix

CONFIGURATION MANAGEMENT

ARST-RT-000070 - The Arista Multicast Source Discovery Protocol (MSDP) router must be configured to filter received source-active multicast advertisements for any undesirable multicast groups and sources.DISA Arista MLS EOS 4.X Router STIG v2r2Arista

ACCESS CONTROL

Buffer overflow protection should be configured 'LimitRequestBody'TNS IBM HTTP Server Best PracticeUnix

SYSTEM AND INFORMATION INTEGRITY

Buffer overflow protection should be configured 'LimitRequestBody'TNS IBM HTTP Server Best PracticeWindows

SYSTEM AND COMMUNICATIONS PROTECTION

Buffer overflow protection should be configured 'LimitRequestBody'TNS IBM HTTP Server Best Practice MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

Buffer overflow protection should be configured 'LimitRequestFields'TNS IBM HTTP Server Best Practice MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

Buffer overflow protection should be configured 'LimitRequestFields'TNS IBM HTTP Server Best PracticeWindows

SYSTEM AND COMMUNICATIONS PROTECTION

Buffer overflow protection should be configured 'LimitRequestFields'TNS IBM HTTP Server Best PracticeUnix

SYSTEM AND INFORMATION INTEGRITY

Buffer overflow protection should be configured 'LimitRequestFieldsize'TNS IBM HTTP Server Best PracticeWindows

SYSTEM AND COMMUNICATIONS PROTECTION

Buffer overflow protection should be configured 'LimitRequestFieldsize'TNS IBM HTTP Server Best Practice MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

Buffer overflow protection should be configured 'LimitRequestFieldsize'TNS IBM HTTP Server Best PracticeUnix

SYSTEM AND INFORMATION INTEGRITY

Buffer overflow protection should be configured 'LimitRequestline'TNS IBM HTTP Server Best PracticeWindows

SYSTEM AND COMMUNICATIONS PROTECTION

Buffer overflow protection should be configured 'LimitRequestline'TNS IBM HTTP Server Best PracticeUnix

SYSTEM AND INFORMATION INTEGRITY

Buffer overflow protection should be configured 'LimitRequestline'TNS IBM HTTP Server Best Practice MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

DTAVSEL-100 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x must be configured to run a scheduled On-Demand scan at least once a week.McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5Unix

SYSTEM AND INFORMATION INTEGRITY

ESXI-80-000113 - The ESXi host must allocate audit record storage capacity to store at least one week's worth of audit records.DISA VMware vSphere 8.0 ESXi STIG v2r3 VMwareVMware

AUDIT AND ACCOUNTABILITY

ESXI-80-000113 - The ESXi host must allocate audit record storage capacity to store at least one week's worth of audit records.DISA VMware vSphere 8.0 ESXi STIG v2r3 VMwareVMware

AUDIT AND ACCOUNTABILITY

JUEX-L2-000150 - The Juniper EX switch must be configured to enable Storm Control on all host-facing access interfaces.DISA Juniper EX Series Layer 2 Switch v2r4Juniper

CONFIGURATION MANAGEMENT

SQL2-00-022400 - SQL Server must ensure, if Database Availability Groups are being used and there is a server failure, that none of the potential failover servers would suffer from resource exhaustion.DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

SYSTEM AND COMMUNICATIONS PROTECTION