Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.1.2 Ensure mounting of freevxfs filesystems is disabledCIS Amazon Linux v2.1.0 L2Unix

CONFIGURATION MANAGEMENT

1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - /etc/modprobe.d/CIS.confCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

1.1.1.7 Ensure mounting of udf filesystems is disabled - /etc/modprobe.d/CIS.confCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

1.2 Use IP address rather than hostnameCIS IBM DB2 v10 v1.1.0 Linux OS Level 1Unix

CONFIGURATION MANAGEMENT

1.7.1.2 Ensure local login warning banner is configured properly - mrsvCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.2.1.2 Ensure ntp is configured - daemonCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.3.2 Ensure timezone is properly configuredCIS Check Point Firewall L1 v1.1.0CheckPoint

CONFIGURATION MANAGEMENT

2.5.1 Disable 'Wake for network access' - Wake for network accessCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

3.1 Restrict Core Dumps to Protected Directory - /var/coresCIS Solaris 11 L1 v1.1.0Unix
3.1.8 Require instance name for discovery requestsCIS IBM DB2 v10 v1.1.0 Linux OS Level 1Unix

CONFIGURATION MANAGEMENT

3.1.8 Require instance name for discovery requestsCIS IBM DB2 v10 v1.1.0 Linux OS Level 2Unix

CONFIGURATION MANAGEMENT

3.1.14 Set failed archive retry delayCIS IBM DB2 v10 v1.1.0 Linux OS Level 1Unix

CONFIGURATION MANAGEMENT

3.1.14 Set failed archive retry delayCIS IBM DB2 v10 v1.1.0 Linux OS Level 2Unix

CONFIGURATION MANAGEMENT

3.1.14 Set failed archive retry delayCIS IBM DB2 v10 v1.1.0 Windows OS Level 2Windows

CONFIGURATION MANAGEMENT

3.1.15 Auto-restart after abnormal terminationCIS IBM DB2 v10 v1.1.0 Linux OS Level 2Unix

CONFIGURATION MANAGEMENT

3.1.18 Reserve the desired port number or name for incoming SSL connectionsCIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS WindowsWindows

CONFIGURATION MANAGEMENT

3.3 Verify that docker-registry.service file ownership is set to root:rootCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

3.3.2 Set a generic system nameCIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS WindowsWindows

CONFIGURATION MANAGEMENT

3.4 Set 'Days to keep pages in History' to '40'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

3.4.4 Ensure permissions on /etc/hosts.allow are configuredCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

3.4.5 Ensure permissions on /etc/hosts.deny are configuredCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

3.5 Control access to audit records - /var/auditCIS Apple macOS 10.13 L1 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

3.5 Verify that docker.socket file ownership is set to root:rootCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.2.10 Ensure SSH PermitUserEnvironment is disabledCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

5.11 Require an administrator password to access system-wide preferencesCIS Apple macOS 10.13 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

6.1 Set 'Turn off browser geolocation' to 'Enabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

7.1 Set 'Restrict File Download' to 'Enabled' - reservedCIS IE 9 v1.0.0Windows

CONFIGURATION MANAGEMENT

7.2 Set 'Notification bar' to 'Enabled' -iexplore.exeCIS IE 9 v1.0.0Windows

CONFIGURATION MANAGEMENT

7.2 Set 'Scripted Window Security Restrictions' to 'Enabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

7.8 Set 'MK Protocol Security Restriction' to 'Enabled' - (Reserved)CIS IE 9 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.1.2 Set 'Allow paste operations via script' to 'Enabled:Disable'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.1.3 Set 'Protected Mode' to 'Enabled:Enable'CIS IE 11 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

8.1.32 Configure 'First-Run Opt-In'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.2 Restrict access to starting and stopping the DB2 administration serverCIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS LinuxUnix

ACCESS CONTROL

8.3.2 Set 'Allow drag and drop or copy and paste files' to 'Enabled:Disable'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.3.34 Set 'Include local directory path when uploading files to a server' to 'Enabled:Disable'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

8.3.39 Configure 'First-Run Opt-In'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

9.1.2 Set User/Group Owner and Permission on /etc/crontabCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.1.5 Set User/Group Owner and Permission on /etc/cron.weeklyCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.3.10 Do Not Allow Users to Set Environment OptionsCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

9.12 Set 'Turn off Crash Detection' to 'Enabled'CIS IE 11 v1.0.0Windows

CONFIGURATION MANAGEMENT

10.1 Restrict access to the DB2 Control CenterCIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS WindowsWindows

ACCESS CONTROL

10.2 Restrict access to the DB2 Configuration Assistant utilityCIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS LinuxUnix

ACCESS CONTROL

10.3 Restrict access to the DB2 Health Monitor utilityCIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS WindowsWindows

ACCESS CONTROL

10.4 Restrict access to the DB2 Activity Monitor utilityCIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS LinuxUnix

ACCESS CONTROL

10.4 Restrict access to the DB2 Activity Monitor utilityCIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS WindowsWindows

ACCESS CONTROL

11.2 Remove OS Information from Login Warning Banners - /etc/issue.netCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

13.9 Check Permissions on User .netrc FilesCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

13.12 Check That Users Are Assigned Valid Home DirectoriesCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

Configuration files should be secured against unauthorized access.TNS IBM HTTP Server Best PracticeWindows