Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.22 Disable AutomountingCIS Debian 9 Server L1 v1.0.1Unix

SYSTEM AND INFORMATION INTEGRITY

1.1.22 Disable AutomountingCIS Debian 9 Workstation L2 v1.0.1Unix

SYSTEM AND INFORMATION INTEGRITY

1.1.22 Disable AutomountingCIS CentOS 6 Workstation L2 v3.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

1.1.22 Disable AutomountingCIS Debian Family Server L1 v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

1.1.22 Disable AutomountingCIS Oracle Linux 6 Server L1 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

1.2.1 - MobileIron - Disable JavaScriptMobileIron - CIS Apple iOS 8 v1.0.0 L2MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

1.2.1 - MobileIron - Disable JavaScriptMobileIron - CIS Apple iOS 9 v1.0.0 L2MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

1.2.2 - MobileIron - Enable Fraudulent Website WarningMobileIron - CIS Apple iOS 9 v1.0.0 L1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

1.2.3 - MobileIron - Disable Auto Fill for Contact InformationMobileIron - CIS Apple iOS 8 v1.0.0 L2MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

1.2.4 - MobileIron - Disable Auto Fill for Names and PasswordsMobileIron - CIS Apple iOS 9 v1.0.0 L2MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

1.2.5 - MobileIron - Disable Auto Fill for Credit Card InformationMobileIron - CIS Apple iOS 9 v1.0.0 L2MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

1.2.6 - MobileIron - Delete Saved Password InformationMobileIron - CIS Apple iOS 8 v1.0.0 L2MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

1.2.7 - MobileIron - Delete Saved Credit Card InformationMobileIron - CIS Apple iOS 8 v1.0.0 L2MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

1.2.9 - System account lockdown - 'sys login=false rlogin=false'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.25 - /etc/inetd.conf - 'exec has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.27 - /etc/inetd.conf - 'shell has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.30 - /etc/inetd.conf - 'uucp has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.31 - /etc/inetd.conf - 'time-tcp has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.31 - /etc/inetd.conf - 'time-udp has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.32 - /etc/inetd.conf - 'login has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.35 - /etc/inetd.conf - 'ftp has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.36 - /etc/inetd.conf - 'chargen-udp has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.37 - /etc/inetd.conf - 'discard-tcp has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.38 - /etc/inetd.conf - 'dtspc has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.42 - /etc/inetd.conf - 'rusersd has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.3.52 - /etc/inetd.conf - 'instsrv has been disabled'CIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.5.1 - Removal of .rhosts and .netrc files - .rhostsCIS AIX 5.3/6.1 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.5.1 Ensure 'V3' is selected for SNMP pollingCIS Palo Alto Firewall 6 Benchmark L1 v1.0.0Palo_Alto

CONFIGURATION MANAGEMENT

1.5.1 Ensure 'V3' is selected for SNMP pollingCIS Palo Alto Firewall 7 Benchmark L1 v1.0.0Palo_Alto

CONFIGURATION MANAGEMENT

2.7 Only enable Kerberos-related daemons if absolutely necessary (kpasswdd_server_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

2.07 otrace - 'Disable' - no directoryCIS v1.1.0 Oracle 11g OS Windows Level 1Windows

CONFIGURATION MANAGEMENT

2.9 Only enable Solaris Volume Manager daemons if absolutely necessary - Uncomment service 100229 in /etc/inet/inetd.confCIS Solaris 9 v1.3Unix

CONFIGURATION MANAGEMENT

2.10 OEM objects - 'Remove if OEM not used'CIS v1.1.0 Oracle 11g OS L2Unix

CONFIGURATION MANAGEMENT

3.1 Disable login prompts on serial ports (ttyd1)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.1 Disable login prompts on serial ports (ttyd3)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.5 Disable the email server if possible (sendmail_msp_queue_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.5.2.1 Ensure default deny firewall policy - Chain OUTPUTCIS Distribution Independent Linux Workstation L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.5.3.3.3 Ensure ip6tables outbound and established connections are configuredCIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.6 Only enable BIND if absolutely necessaryCIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.6.5 Ensure firewall rules exist for all open portsCIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.9 Only enable NFS client processes if absolutely necessary - Ensure file /etc/rc2.d/S73nfs.client does NOT exist.CIS Solaris 9 v1.3Unix

CONFIGURATION MANAGEMENT

3.12 Only enable NIS if absolutely necessary (nis_yppasswdd_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.12 Only enable NIS if absolutely necessary (rpc_ypupdated_enable)CIS FreeBSD v1.0.5Unix

CONFIGURATION MANAGEMENT

3.16 Only enable the volume manager if absolutely necessary - Ensure file /etc/rc2.d/S92volmgt does NOT exist.CIS Solaris 9 v1.3Unix

CONFIGURATION MANAGEMENT

3.19 Only enable SNMP if absolutely necessary - Ensure file /etc/rc3.d/S76snmpdx does NOT exist.CIS Solaris 9 v1.3Unix

CONFIGURATION MANAGEMENT

3.20 Only enable DHCP server if absolutely necessary - Ensure file /etc/rc3.d/S34dhcp does NOT exist.CIS Solaris 9 v1.3Unix

CONFIGURATION MANAGEMENT

4.05 init.ora - 'remote_listener = NULL String'CIS v1.1.0 Oracle 11g OS Windows Level 1Windows

CONFIGURATION MANAGEMENT

4.43 listener.ora - 'extproc_dlls = ONLY'CIS v1.1.0 Oracle 11g OS Windows Level 1Windows

CONFIGURATION MANAGEMENT

5.2 Turn on additional logging for FTP daemon - Check if '-l' & '-d' flags are set for ftpd in /etc/inet/inetd.conf.CIS Solaris 9 v1.3Unix

CONFIGURATION MANAGEMENT

8.0.5 Remove Default Databases - 'Database name != SAMPLE'CIS IBM DB2 OS L2 v1.2.0Unix

CONFIGURATION MANAGEMENT