Item Search

Name	Audit Name	Plugin	Category
1.1.2 Ensure that the --basic-auth-file argument is not set	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.1.4.1.5 Ensure 'Information Bar' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.10 Ensure that the admission control policy is set to AlwaysPullImages	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	ACCESS CONTROL
1.1.14 Ensure that the --audit-log-path argument is set as appropriate	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	AUDIT AND ACCOUNTABILITY
1.1.15 Ensure that the --audit-log-maxage argument is set to 30 or as appropriate	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	AUDIT AND ACCOUNTABILITY
1.1.22 Ensure that the --kubelet-client-certificate and --kubelet-client-key arguments are set as appropriate - kubelet-client-key	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.1.24 Ensure that the admission control policy is set to PodSecurityPolicy	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	ACCESS CONTROL
1.1.31 Ensure that the --authorization-mode argument is set to Node	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	ACCESS CONTROL
1.4.1 Ensure that the API server pod specification file permissions are set to 644 or more restrictive	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.6 Ensure that the scheduler pod specification file ownership is set to root:root	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.16 Ensure that the scheduler.conf file ownership is set to root:root	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.4.18 Ensure that the controller-manager.conf file ownership is set to root:root	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
1.5.3 Ensure that the --auto-tls argument is not set to true	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
1.6.8 Configure Network policies as appropriate	CIS Kubernetes 1.8 Benchmark v1.2.0 L2	Unix
1.6.9 Place compensating controls in the form of PSP and RBAC for privileged containers usage - clusterrolebinding	CIS Kubernetes 1.8 Benchmark v1.2.0 L2	Unix	CONFIGURATION MANAGEMENT
1.6.9 Place compensating controls in the form of PSP and RBAC for privileged containers usage - psp	CIS Kubernetes 1.8 Benchmark v1.2.0 L2	Unix	CONFIGURATION MANAGEMENT
1.6.9 Place compensating controls in the form of PSP and RBAC for privileged containers usage - rolebinding	CIS Kubernetes 1.8 Benchmark v1.2.0 L2	Unix	CONFIGURATION MANAGEMENT
2.1.1.3.2.3 Ensure 'Disable Trust Bar Notification for unsigned application add-ins and block them' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.1.6 Ensure that the --streaming-connection-idle-timeout argument is not set to 0	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.1.7 Ensure that the --protect-kernel-defaults argument is set to true	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	CONFIGURATION MANAGEMENT
2.1.8 Ensure that the --make-iptables-util-chains argument is set to true	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.1.12 Ensure that the --tls-cert-file and --tls-private-key-file arguments are set as appropriate - tls-private-key-file	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
2.2.4.5.1.1 Ensure 'Internet and network paths as hyperlinks' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.2.4.7.2.2.3 Ensure 'Excel 2 macrosheets and add-in files' is set to 'Enabled: Open/Save blocked, use open policy'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.2.4.7.2.3.6 Ensure 'Turn off Protected View for attachments opened from Outlook' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.4.7.2.5 Ensure 'Block Excel XLL Add-ins that come from an untrusted source' is set to 'Enabled: Blocked'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.2.4.7.2.13 Ensure 'Trust access to Visual Basic Project' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.2.4.7.4 Ensure 'Scan encrypted macros in Excel Open XML workbooks' is set to 'Enabled: Scan encrypted macros (default)'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.2.4.7.5 Ensure 'Turn off file validation' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.3 Ensure authentication is enabled in the sharded cluster	CIS MongoDB 7 v1.2.0 L2 Unix	Unix	CONFIGURATION MANAGEMENT
2.4.2 Disable Internet Sharing	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.4.3 Disable Screen Sharing	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.5.1 Disable 'Wake for network access' - Wake for network access	CIS Apple macOS 10.12 L1 v1.2.0	Unix	ACCESS CONTROL
2.6.2 Enable Gatekeeper	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.6.5 Review Application Firewall Rules	CIS Apple macOS 10.12 L1 v1.2.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.3.1 Ensure 'Allow Trusted Locations on the network' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.6.6.6.2.4 Ensure 'Block macros from running in Office files from the Internet' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.6.6.6.2.9 Ensure 'VBA Macro Notification Settings' is set to 'Require macros to be signed by a trusted publisher'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND SERVICES ACQUISITION
2.11.8.7.2.1.8 Ensure 'Word 97 binary documents and templates' is set to 'Enabled: Open/Save blocked, use open policy'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.11.8.7.2.2.2 Ensure 'Do not open files in unsafe locations in Protected View' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.11.8.7.2.9 Ensure 'Trust access to Visual Basic Project' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.11.8.7.4 Ensure 'Turn off file validation' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
3.1 Ensure least privilege for database accounts	CIS MongoDB 7 v1.2.0 L1 MongoDB	MongoDB	ACCESS CONTROL
3.1.12 Ensure that the --audit-log-maxbackup argument is set to 10 or as appropriate	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	AUDIT AND ACCOUNTABILITY
3.1.18 Ensure that the --etcd-certfile and --etcd-keyfile arguments are set as appropriate - etcd-certfile	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
4.3 Ensure Encryption of Data in Transit TLS or SSL (Transport Encryption)	CIS MongoDB 7 v1.2.0 L1 Unix	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.4 Ensure Federal Information Processing Standard (FIPS) is enabled	CIS MongoDB 7 v1.2.0 L2 Unix	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.5 Ensure Encryption of Data at Rest	CIS MongoDB 7 v1.2.0 L2 Unix	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.1 Ensure that system activity is audited	CIS MongoDB 7 v1.2.0 L1 Unix	Unix	AUDIT AND ACCOUNTABILITY
18.9.18.2 Ensure 'Turn Off user-installed desktop gadgets' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search