Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Ensure Latest SQL Server Service Packs and Hotfixes are InstalledCIS SQL Server 2012 Database L1 AWS RDS v1.6.0MS_SQLDB

CONFIGURATION MANAGEMENT

1.1 Ensure Latest SQL Server Service Packs and Hotfixes are InstalledCIS SQL Server 2012 Database L1 DB v1.6.0MS_SQLDB

CONFIGURATION MANAGEMENT

1.2.27 Ensure that the --etcd-certfile and --etcd-keyfile arguments are set as appropriateCIS Red Hat OpenShift Container Platform v1.7.0 L1OpenShift

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

2.3.3 Ensure 'MLE_PROG_LANGUAGES' Is Set To 'OFF'CIS Oracle Database 23ai v1.0.0 L1 RDBMSOracleDB

CONFIGURATION MANAGEMENT

2.6 Ensure 'Remote Access' Server Configuration Option is set to '0'CIS SQL Server 2014 Database L1 AWS RDS v1.5.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.6 Ensure 'Remote Access' Server Configuration Option is set to '0'CIS SQL Server 2014 Database L1 DB v1.5.0MS_SQLDB

SYSTEM AND INFORMATION INTEGRITY

2.17 Ensure 'clr strict security' Server Configuration Option is set to '1'CIS Microsoft SQL Server 2019 v1.5.0 L1 Database EngineMS_SQLDB

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

3.3 (L1) Ensure remote logging is configured for ESXi hostsCIS VMware ESXi 7.0 v1.5.0 L1VMware

AUDIT AND ACCOUNTABILITY

3.034 - Unencrypted passwords must not be sent to third-party SMB Servers.DISA Windows Vista STIG v6r41Windows

IDENTIFICATION AND AUTHENTICATION

3.075 - The system is not configured to recommended LDAP client signing requirements.DISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

5.1.1.1.4 Ensure journald is not configured to receive logs from a remote clientCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

5.1.1.1.4 Ensure journald is not configured to receive logs from a remote clientCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

5.1.2.1.4 Ensure journald is not configured to receive logs from a remote clientCIS Oracle Linux 7 v4.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

5.1.2.1.4 Ensure journald is not configured to receive logs from a remote clientCIS CentOS Linux 7 v4.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

5.1.2.1.4 Ensure journald is not configured to receive logs from a remote clientCIS Amazon Linux 2 v3.0.0 L1Unix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

5.1.2.1.4 Ensure journald is not configured to receive logs from a remote clientCIS Oracle Linux 7 v4.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

5.4 Ensure 'Default Restrict' is set in all client listsCIS Juniper OS Benchmark v2.1.0 L1Juniper

SYSTEM AND COMMUNICATIONS PROTECTION

5.116 - Terminal Services / Remote Desktop Service - Prevent password saving in the Remote Desktop ClientDISA Windows Vista STIG v6r41Windows

IDENTIFICATION AND AUTHENTICATION

6.2.3.7 Ensure rsyslog logrotate is configuredCIS SUSE Linux Enterprise 15 v2.0.1 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.2.3.8 Ensure rsyslog logrotate is configuredCIS Rocky Linux 9 v2.0.0 L1 WorkstationUnix

AUDIT AND ACCOUNTABILITY

DTAM016 - McAfee VirusScan must be configured to receive DAT and Engine updates - schedule is daily.DISA McAfee VirusScan 8.8 Local Client STIG v6r1Windows

SYSTEM AND INFORMATION INTEGRITY

JUNI-RT-000180 - The Juniper router must be configured to have Internet Control Message Protocol (ICMP) mask reply messages disabled on all external interfaces.DISA STIG Juniper Router RTR v3r2Juniper

SYSTEM AND COMMUNICATIONS PROTECTION

Microsoft network client: Digitally sign communications (if server agrees)MSCT Windows Server 2012 R2 MS v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

RHEV: Clusters Memory BalooningTenable RedHat Enterprise VirtualizationRHEV
RHEV: Storage Domains - Backup storageTenable RedHat Enterprise VirtualizationRHEV
RHEV: VMs copy/paste featureTenable RedHat Enterprise VirtualizationRHEV
RHEV: VMs file transfer featureTenable RedHat Enterprise VirtualizationRHEV
SonicWALL - Security Services - Gateway AV - CIFS/NetbiosTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - SMTP InboundTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - SMTP OutboundTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - TCP Stream OutboundTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

WN10-00-000115 - The Telnet Client must not be installed on the system.DISA Microsoft Windows 10 STIG v3r4Windows

CONFIGURATION MANAGEMENT

WN10-00-000120 - The TFTP Client must not be installed on the system.DISA Microsoft Windows 10 STIG v3r4Windows

CONFIGURATION MANAGEMENT

WN10-SO-000110 - Unencrypted passwords must not be sent to third-party SMB Servers.DISA Microsoft Windows 10 STIG v3r4Windows

IDENTIFICATION AND AUTHENTICATION

WN11-00-000115 - The Telnet Client must not be installed on the system.DISA Microsoft Windows 11 STIG v2r3Windows

CONFIGURATION MANAGEMENT

WN11-00-000120 - The TFTP Client must not be installed on the system.DISA Microsoft Windows 11 STIG v2r3Windows

CONFIGURATION MANAGEMENT

WN11-CC-000270 - Passwords must not be saved in the Remote Desktop Client.DISA Microsoft Windows 11 STIG v2r3Windows

IDENTIFICATION AND AUTHENTICATION

WN11-SO-000110 - Unencrypted passwords must not be sent to third-party SMB Servers.DISA Microsoft Windows 11 STIG v2r3Windows

IDENTIFICATION AND AUTHENTICATION

WN11-SO-000210 - The system must be configured to the required LDAP client signing level.DISA Microsoft Windows 11 STIG v2r3Windows

CONFIGURATION MANAGEMENT

WN12-CC-000096 - Passwords must not be saved in the Remote Desktop Client.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

IDENTIFICATION AND AUTHENTICATION

WN12-CC-000136 - Only the default client printer must be redirected to the Remote Desktop Session Host. (Remote Desktop Services Role).DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

CONFIGURATION MANAGEMENT

WN12-CC-000136 - Only the default client printer must be redirected to the Remote Desktop Session Host. (Remote Desktop Services Role).DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

CONFIGURATION MANAGEMENT

WN12-SO-000030 - Unencrypted passwords must not be sent to third-party SMB Servers.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

IDENTIFICATION AND AUTHENTICATION

WN12-SO-000030 - Unencrypted passwords must not be sent to third-party SMB Servers.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

IDENTIFICATION AND AUTHENTICATION

WN12-SO-000068 - The system must be configured to the required LDAP client signing level.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

CONFIGURATION MANAGEMENT

WN12-SO-000068 - The system must be configured to the required LDAP client signing level.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

CONFIGURATION MANAGEMENT

WN16-CC-000370 - Passwords must not be saved in the Remote Desktop Client.DISA Microsoft Windows Server 2016 STIG v2r10Windows

IDENTIFICATION AND AUTHENTICATION

WN19-CC-000340 - Windows Server 2019 must not save passwords in the Remote Desktop Client.DISA Microsoft Windows Server 2019 STIG v3r4Windows

IDENTIFICATION AND AUTHENTICATION

WN19-SO-000180 - Windows Server 2019 unencrypted passwords must not be sent to third-party Server Message Block (SMB) servers.DISA Microsoft Windows Server 2019 STIG v3r4Windows

IDENTIFICATION AND AUTHENTICATION

WN22-SO-000180 - Windows Server 2022 unencrypted passwords must not be sent to third-party Server Message Block (SMB) servers.DISA Microsoft Windows Server 2022 STIG v2r4Windows

IDENTIFICATION AND AUTHENTICATION