Item Search

Name	Audit Name	Plugin	Category
2.2.29 (L2) Configure 'Log on as a service'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	ACCESS CONTROL
2.3.10.3 Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts' is set to 'Enabled' (STIG only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.10.5 Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts and shares' is set to 'Enabled' (STIG only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
5.10 (L1) Ensure 'Microsoft FTP Service (FTPSVC)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.12 (L1) Ensure 'Microsoft FTP Service (FTPSVC)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	CONFIGURATION MANAGEMENT
5.12 (L1) Ensure 'Microsoft FTP Service (FTPSVC)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
81.12 (L1) Ensure 'Microsoft FTP Service (FTPSVC)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
CIS AIX 5.3 and 6.1 v1.1.0 Level 1	CIS AIX 5.3/6.1 L1 v1.1.0	Unix
CIS AIX 5.3 and 6.1 v1.1.0 Level 2	CIS AIX 5.3/6.1 L2 v1.1.0	Unix
CIS Control 6 (6.2(b)) Activate Audit Logging	CAS Implementation Group 1 Audit File	Unix	AUDIT AND ACCOUNTABILITY
CIS_AlmaLinux_OS_9_v2.0.0_L1_Server.audit from CIS AlmaLinux OS 9 Benchmark v2.0.0	CIS AlmaLinux OS 9 v2.0.0 L1 Server	Unix
CIS_AlmaLinux_OS_9_v2.0.0_L2_Workstation.audit from CIS AlmaLinux OS 9 Benchmark v2.0.0	CIS AlmaLinux OS 9 v2.0.0 L2 Workstation	Unix
CIS_CentOS_Linux_7_v4.0.0_L2_Server.audit from CIS CentOS Linux 7 Benchmark v4.0.0	CIS CentOS Linux 7 v4.0.0 L2 Server	Unix
CIS_Cisco_IOS_15_v4.1.1_Level_2.audit from CIS Cisco IOS 15 Benchmark	CIS Cisco IOS 15 L2 v4.1.1	Cisco
CIS_Debian_Linux_9_Server_v1.0.1_L2.audit from CIS Debian Linux 9 Benchmark	CIS Debian 9 Server L2 v1.0.1	Unix
CIS_Debian_Linux_9_Workstation_v1.0.1_L1.audit from CIS Debian Linux 9 Benchmark	CIS Debian 9 Workstation L1 v1.0.1	Unix
CIS_Debian_Linux_12_v1.1.0_L1_Workstation.audit from CIS Debian Linux 12 Benchmark v1.1.0	CIS Debian Linux 12 v1.1.0 L1 Workstation	Unix
CIS_IBM_DB2_9_Benchmark_v3.0.1_Level_2_OS_Windows.audit from CIS IBM DB2 9 Benchmark v3.0.1	CIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS Windows	Windows
CIS_IBM_DB2_10_v1.1.0_Level_1_OS_Windows.audit from CIS DB2 10.x Windows OS	CIS IBM DB2 v10 v1.1.0 Windows OS Level 1	Windows
CIS_MacOS_Safari_Benchmark_v2.0.0_L1.audit from CIS MacOS Safari Benchmark v2.0.0	CIS MacOS Safari v2.0.0 L1	Unix
CIS_Microsoft_Edge_v3.0.0_L1.audit from CIS Microsoft Edge Benchmark v3.0.0	CIS Microsoft Edge v3.0.0 L1	Windows
CIS_Oracle_Linux_9_v2.0.0_L1_Workstation.audit from CIS Oracle Linux 9 Benchmark v2.0.0	CIS Oracle Linux 9 v2.0.0 L1 Workstation	Unix
CIS_Oracle_Server_12c_v3.0.0_L1_Windows.audit from CIS Oracle Database 12c Benchmark v3.0.0	CIS Oracle Server 12c Windows v3.0.0	Windows
CIS_Rocky_Linux_8_v2.0.0_L2_Server.audit from CIS Rocky Linux 8 Benchmark v2.0.0	CIS Rocky Linux 8 Server L2 v2.0.0	Unix
CIS_Ubuntu_20.04_LTS_v2.0.1_L1_Workstation.audit from CIS Ubuntu Linux 20.04 LTS Benchmark	CIS Ubuntu Linux 20.04 LTS Workstation L1 v2.0.1	Unix
CIS_VMware_ESXi_6.7_v1.3.0_L1_Bare_Metal.audit from CIS VMware ESXi 6.7 Benchmark v1.3.0	CIS VMware ESXi 6.7 v1.3.0 Level 1 Bare Metal	Unix
IIST-SI-000221 - Anonymous IIS 10.0 website access accounts must be restricted.	DISA IIS 10.0 Site v2r11	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SI-000259 - The application pools rapid fail protection settings for each IIS 10.0 website must be managed.	DISA IIS 10.0 Site v2r11	Windows	CONFIGURATION MANAGEMENT
IIST-SI-000263 - Backup interactive scripts on the IIS 10.0 server must be removed.	DISA IIS 10.0 Site v2r11	Windows	CONFIGURATION MANAGEMENT
IIST-SV-000130 - Java software installed on a production IIS 10.0 web server must be limited to .class files and the Java Virtual Machine.	DISA IIS 10.0 Server v3r3	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SV-000139 - The IIS 10.0 web server Indexing must only index web content.	DISA IIS 10.0 Server v2r10	Windows	SYSTEM AND INFORMATION INTEGRITY
IIST-SV-000147 - Access to web administration tools must be restricted to the web manager and the web managers designees.	DISA IIS 10.0 Server v2r10	Windows	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SV-000147 - Access to web administration tools must be restricted to the web manager and the web managers designees.	DISA IIS 10.0 Server v3r3	Windows	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SV-000148 - The IIS 10.0 web server must not be running on a system providing any other role.	DISA IIS 10.0 Server v2r10	Windows	CONFIGURATION MANAGEMENT
IIST-SV-000148 - The IIS 10.0 web server must not be running on a system providing any other role.	DISA IIS 10.0 Server v3r3	Windows	CONFIGURATION MANAGEMENT
IIST-SV-000151 - The IIS 10.0 web server must be tuned to handle the operational requirements of the hosted application.	DISA IIS 10.0 Server v3r3	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SV-000151 - The IIS 10.0 web server must be tuned to handle the operational requirements of the hosted application.	DISA IIS 10.0 Server v2r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SV-000154 - The IIS 10.0 web server must maintain the confidentiality of controlled information during transmission through the use of an approved Transport Layer Security (TLS) version.	DISA IIS 10.0 Server v2r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SV-000160 - An IIS Server configured to be a SMTP relay must require authentication.	DISA IIS 10.0 Server v3r3	Windows	CONFIGURATION MANAGEMENT
IIST-SV-000160 - An IIS Server configured to be a SMTP relay must require authentication.	DISA IIS 10.0 Server v2r10	Windows	CONFIGURATION MANAGEMENT
IISW-SI-000257 - The application pools pinging monitor for each IIS 8.5 website must be enabled.	DISA IIS 8.5 Site v2r9	Windows	CONFIGURATION MANAGEMENT
IISW-SI-000259 - The application pools rapid fail protection settings for each IIS 8.5 website must be managed.	DISA IIS 8.5 Site v2r9	Windows	CONFIGURATION MANAGEMENT
IISW-SI-009999 - The version of IIS running on the system must be a supported version.	DISA IIS 8.5 Site v2r9	Windows	SYSTEM AND INFORMATION INTEGRITY
IISW-SV-000123 - The IIS 8.5 web server must be reviewed on a regular basis to remove any Operating System features, utility programs, plug-ins, and modules not necessary for operation.	DISA IIS 8.5 Server v2r7	Windows	CONFIGURATION MANAGEMENT
IISW-SV-000130 - Java software installed on a production IIS 8.5 web server must be limited to .class files and the Java Virtual Machine.	DISA IIS 8.5 Server v2r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IISW-SV-000131 - IIS 8.5 Web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts.	DISA IIS 8.5 Server v2r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IISW-SV-000139 - The IIS 8.5 web server Indexing must only index web content.	DISA IIS 8.5 Server v2r7	Windows	SYSTEM AND INFORMATION INTEGRITY
IISW-SV-000144 - IIS 8.5 web server system files must conform to minimum file permission requirements.	DISA IIS 8.5 Server v2r7	Windows	ACCESS CONTROL
IISW-SV-000147 - Access to web administration tools must be restricted to the web manager and the web managers designees.	DISA IIS 8.5 Server v2r7	Windows	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
IISW-SV-000154 - A web server must maintain the confidentiality of controlled information during transmission through the use of an approved TLS version.	DISA IIS 8.5 Server v2r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search