Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	Unix	CONFIGURATION MANAGEMENT, MAINTENANCE
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 15 OS v1.1.0	Unix	CONFIGURATION MANAGEMENT, MAINTENANCE
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 13 OS v1.2.0	Unix	CONFIGURATION MANAGEMENT, MAINTENANCE
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 16 OS v1.0.0	Unix	CONFIGURATION MANAGEMENT, MAINTENANCE
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 12 OS v1.1.0	Unix	CONFIGURATION MANAGEMENT, MAINTENANCE
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 14 OS v 1.2.0	Unix	CONFIGURATION MANAGEMENT, MAINTENANCE
1.1.4.3 network accounting	CIS Cisco IOS XR 7.x v1.0.1 L1	Cisco	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
1.2 Do Not Install a Multi-Use System - chkconfig	CIS BIND DNS v3.0.1 Authoritative Name Server	Unix	CONFIGURATION MANAGEMENT
1.2 Do Not Install a Multi-Use System - chkconfig	CIS BIND DNS v3.0.1 Caching Only Name Server	Unix	CONFIGURATION MANAGEMENT
1.2 Do Not Install a Multi-Use System - chkconfig	CIS BIND DNS v1.0.0 L1 Caching Only Name Server	Unix	CONFIGURATION MANAGEMENT
1.2 Do Not Install a Multi-Use System - chkconfig	CIS BIND DNS v1.0.0 L1 Authoritative Name Server	Unix	CONFIGURATION MANAGEMENT
1.2 Do Not Install a Multi-Use System - systemctl	CIS BIND DNS v1.0.0 L1 Authoritative Name Server	Unix	CONFIGURATION MANAGEMENT
1.2 Do Not Install a Multi-Use System - systemctl	CIS BIND DNS v1.0.0 L1 Caching Only Name Server	Unix	CONFIGURATION MANAGEMENT
1.2 Use the updated Linux Kernel	CIS Docker 1.11.0 v1.0.0 L1 Linux	Unix	SYSTEM AND INFORMATION INTEGRITY
1.8.3 Ensure GDM session lock is enabled	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
2.3.3 - AirWatch - Mark Company Mail Domain	AirWatch - CIS Apple iOS 9 v1.0.0 L2	MDM	ACCESS CONTROL
2.3.3 - MobileIron - Mark Company Mail Domain	MobileIron - CIS Apple iOS 9 v1.0.0 L2	MDM	ACCESS CONTROL
5.5.1.6 Ensure shadow file is configured to use only encrypted representations of passwords	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
5.5.1.7 Ensure password expiration is 60 Day maximum for new users	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
5.5.2 Ensure system accounts are secured - non-login shell	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - non-login shell	CIS CentOS 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - non-login shell	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - non-login shell	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - non-login shell	CIS Red Hat 6 Server L1 v3.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.5.2 Ensure system accounts are secured - unlocked non-root	CIS CentOS 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - unlocked non-root	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - unlocked non-root	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - unlocked non-root	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - unlocked non-root	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.5.6 Ensure user and group account administration utilities are configured to store only encrypted representations of passwords	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
DTAVSEL-019 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Access scanner must be enabled to scan mounted volumes when mounted volumes point to a network server without an anti-virus solution installed.	McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6	Unix	SYSTEM AND INFORMATION INTEGRITY
FireEye - TNS Best Practices FireEye Audit	TNS FireEye	FireEye
JBOS-AS-000010 - HTTP management session traffic must be encrypted.	DISA JBoss EAP 6.3 STIG v2r6	Unix	ACCESS CONTROL
JBOS-AS-000655 - JBoss must be configured to use an approved cryptographic algorithm in conjunction with TLS.	DISA JBoss EAP 6.3 STIG v2r6	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
MD7X-00-012500 MongoDB must be configured in accordance with the security configuration settings based on DOD security configuration and implementation guidance, including STIGs, NSA configuration guides, CTOs, DTMs, and IAVMs.	DISA MongoDB Enterprise Advanced 7.x STIG v1r1	Unix	CONFIGURATION MANAGEMENT
RHEL-06-000010 - The Red Hat Enterprise Linux operating system must be a vendor-supported release.	DISA Red Hat Enterprise Linux 6 STIG v2r2	Unix	CONFIGURATION MANAGEMENT
RHEL-06-000504 - The operating system must conduct backups of user-level information contained in the operating system per organization defined frequency to conduct backups consistent with recovery time and recovery point objectives.	DISA Red Hat Enterprise Linux 6 STIG v2r2	Unix	CONFIGURATION MANAGEMENT
RHEL-06-000505 - The operating system must conduct backups of system-level information contained in the information system per organization defined frequency to conduct backups that are consistent with recovery time and recovery point objectives.	DISA Red Hat Enterprise Linux 6 STIG v2r2	Unix	CONFIGURATION MANAGEMENT
TNS_BestPractice_Citrix_XenServer.audit from TNS Citrix XenServer Best Practices	TNS Citrix XenServer	Unix
WBSP-AS-000630 - The WebSphere Application Server must provide an immediate real-time alert of all log failure events - notification	DISA IBM WebSphere Traditional 9 STIG v1r1	Unix	AUDIT AND ACCOUNTABILITY
WBSP-AS-000630 - The WebSphere Application Server must provide an immediate real-time alert of all log failure events - notification	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware	Unix	AUDIT AND ACCOUNTABILITY
WBSP-AS-000630 - The WebSphere Application Server must provide an immediate real-time alert of all log failure events - enabled	DISA IBM WebSphere Traditional 9 Windows STIG v1r1	Windows	AUDIT AND ACCOUNTABILITY
WBSP-AS-000630 - The WebSphere Application Server must provide an immediate real-time alert of all log failure events - enabled	DISA IBM WebSphere Traditional 9 STIG v1r1	Unix	AUDIT AND ACCOUNTABILITY
WBSP-AS-000630 - The WebSphere Application Server must provide an immediate real-time alert of all log failure events - enabled	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware	Unix	AUDIT AND ACCOUNTABILITY
WBSP-AS-000640 - The WebSphere Application Server must alert the SA and ISSO, in the event of a log processing failure - enabled	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware	Unix	AUDIT AND ACCOUNTABILITY
WBSP-AS-000640 - The WebSphere Application Server must alert the SA and ISSO, in the event of a log processing failure - enabled	DISA IBM WebSphere Traditional 9 STIG v1r1	Unix	AUDIT AND ACCOUNTABILITY
WBSP-AS-000640 - The WebSphere Application Server must alert the SA and ISSO, in the event of a log processing failure - enabled	DISA IBM WebSphere Traditional 9 Windows STIG v1r1	Windows	AUDIT AND ACCOUNTABILITY
WBSP-AS-000640 - The WebSphere Application Server must alert the SA and ISSO, in the event of a log processing failure - notification	DISA IBM WebSphere Traditional 9 Windows STIG v1r1	Windows	AUDIT AND ACCOUNTABILITY
WBSP-AS-000640 - The WebSphere Application Server must alert the SA and ISSO, in the event of a log processing failure - notification	DISA IBM WebSphere Traditional 9 STIG v1r1	Unix	AUDIT AND ACCOUNTABILITY
WBSP-AS-000640 - The WebSphere Application Server must alert the SA and ISSO, in the event of a log processing failure - notification	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware	Unix	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search