Item Search

Name	Audit Name	Plugin	Category
2.1.1.2 Set version 2 for 'ip ssh version'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	CONFIGURATION MANAGEMENT
3.3.1.4 Ensure net.ipv4.conf.all.send_redirects is configured	CIS AlmaLinux OS 8 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.1.4 Ensure net.ipv4.conf.all.send_redirects is configured	CIS Oracle Linux 10 v1.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
3.3.1.4 Ensure net.ipv4.conf.all.send_redirects is configured	CIS Oracle Linux 8 v4.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
3.3.1.4 Ensure net.ipv4.conf.all.send_redirects is configured	CIS Red Hat Enterprise Linux 8 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.1.4 Ensure net.ipv4.conf.all.send_redirects is configured	CIS AlmaLinux OS 8 v4.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
3.3.1.4 Ensure net.ipv4.conf.all.send_redirects is configured	CIS Oracle Linux 10 v1.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS Red Hat Enterprise Linux 8 v4.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS Rocky Linux 10 v1.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS AlmaLinux OS 8 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS Oracle Linux 10 v1.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS AlmaLinux OS 10 v1.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS Oracle Linux 8 v4.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS Red Hat Enterprise Linux 10 v1.0.1 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS Red Hat Enterprise Linux 8 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS Rocky Linux 10 v1.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS Ubuntu Linux 22.04 LTS v3.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
3.3.1.5 Ensure net.ipv4.conf.default.send_redirects is configured	CIS AlmaLinux OS 10 v1.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
8.1.9.1 Ensure That Microsoft Defender for Resource Manager Is Set To 'On'	CIS Microsoft Azure Foundations v5.0.0 L2	microsoft_azure	ACCESS CONTROL, RISK ASSESSMENT
JUNI-ND-000100 - The Juniper router must be configured to automatically audit account modification.	DISA STIG Juniper Router NDM v3r2	Juniper	ACCESS CONTROL
JUNI-ND-000600 - The Juniper router must be configured to enforce password complexity by requiring that at least one special character be used.	DISA STIG Juniper Router NDM v3r2	Juniper	IDENTIFICATION AND AUTHENTICATION
JUNI-ND-001020 - The Juniper router must be configured to synchronize its clock with the primary and secondary time sources using redundant authoritative time sources.	DISA STIG Juniper Router NDM v3r2	Juniper	AUDIT AND ACCOUNTABILITY
JUNI-ND-001030 - The Juniper router must be configured to record time stamps for log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).	DISA STIG Juniper Router NDM v3r2	Juniper	AUDIT AND ACCOUNTABILITY
JUNI-ND-001140 - The Juniper router must be configured to authenticate NTP sources using authentication that is cryptographically based.	DISA STIG Juniper Router NDM v3r2	Juniper	IDENTIFICATION AND AUTHENTICATION
JUNI-ND-001190 - The Juniper router must be configured to use FIPS-validated Keyed-Hash Message Authentication Code (HMAC) to protect the integrity of remote maintenance sessions.	DISA STIG Juniper Router NDM v3r2	Juniper	MAINTENANCE
JUNI-ND-001200 - The Juniper router must be configured to implement cryptographic mechanisms to protect the confidentiality of remote maintenance sessions.	DISA STIG Juniper Router NDM v3r2	Juniper	MAINTENANCE
JUNI-ND-001340 - The Juniper router must be configured to generate log records for a locally developed list of auditable events.	DISA STIG Juniper Router NDM v3r2	Juniper	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
JUNI-RT-000010 - The Juniper router must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies.	DISA STIG Juniper Router RTR v3r2	Juniper	ACCESS CONTROL
JUNI-RT-000020 - The Juniper router must be configured to implement message authentication for all control plane protocols - LDP	DISA STIG Juniper Router RTR v3r2	Juniper	ACCESS CONTROL, CONFIGURATION MANAGEMENT
JUNI-RT-000020 - The Juniper router must be configured to implement message authentication for all control plane protocols - RIP key	DISA STIG Juniper Router RTR v3r2	Juniper	ACCESS CONTROL, CONFIGURATION MANAGEMENT
JUNI-RT-000050 - The Juniper router must be configured to authenticate all routing protocol messages using NIST-validated FIPS 140-2 message authentication code algorithm - OSPF	DISA STIG Juniper Router RTR v3r2	Juniper	IDENTIFICATION AND AUTHENTICATION
JUNI-RT-000140 - The Juniper router must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself.	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000170 - The Juniper router must be configured to have Internet Control Message Protocol (ICMP) unreachable messages disabled on all external interfaces.	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000180 - The Juniper router must be configured to have Internet Control Message Protocol (ICMP) mask reply messages disabled on all external interfaces.	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000190 - The Juniper router must be configured to have Internet Control Message Protocol (ICMP) redirect messages disabled on all external interfaces.	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000310 - The Juniper perimeter router must be configured to restrict it from accepting outbound IP packets that contain an illegitimate address in the source address field via egress filter or by enabling Unicast Reverse Path Forwarding (uRPF).	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000430 - The Juniper out-of-band management (OOBM) gateway router must be configured to block any traffic destined to itself that is not sourced from the OOBM network or the NOC.	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000490 - The Juniper BGP router must be configured to reject inbound route advertisements for any prefixes belonging to the local autonomous system (AS).	DISA STIG Juniper Router RTR v3r2	Juniper	ACCESS CONTROL
JUNI-RT-000500 - The Juniper BGP router must be configured to reject inbound route advertisements from a customer edge (CE) Juniper router for prefixes that are not allocated to that customer - CE Juniper router.	DISA STIG Juniper Router RTR v3r2	Juniper	ACCESS CONTROL
JUNI-RT-000520 - The Juniper BGP router must be configured to reject outbound route advertisements for any prefixes belonging to the IP core.	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000580 - The Juniper MPLS router must be configured to synchronize IGP and LDP to minimize packet loss when an IGP adjacency is established prior to LDP peers completing label exchange - IS-IS	DISA STIG Juniper Router RTR v3r2	Juniper	CONFIGURATION MANAGEMENT
JUNI-RT-000610 - The Juniper PE router must be configured to have each Virtual Routing and Forwarding (VRF) instance bound to the appropriate physical or logical interfaces to maintain traffic separation between all MPLS L3VPNs.	DISA STIG Juniper Router RTR v3r2	Juniper	CONTINGENCY PLANNING
JUNI-RT-000700 - The Juniper PE router must be configured to limit the number of MAC addresses it can learn for each Virtual Private LAN Services (VPLS) bridge domain.	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000720 - The Juniper PE router must be configured with Unicast Reverse Path Forwarding (uRPF) loose mode enabled on all CE-facing interfaces.	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000810 - The Juniper multicast Rendezvous Point (RP) router must be configured to limit the multicast forwarding cache so that its resources are not saturated by managing an overwhelming number of Protocol Independent Multicast (PIM) and Multicast Source Discovery Protocol (MSDP) source-active entries - reuse	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000810 - The Juniper multicast Rendezvous Point (RP) router must be configured to limit the multicast forwarding cache so that its resources are not saturated by managing an overwhelming number of Protocol Independent Multicast (PIM) and Multicast Source Discovery Protocol (MSDP) source-active entries - suppress	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000890 - The Juniper Multicast Source Discovery Protocol (MSDP) router must be configured to only accept MSDP packets from known MSDP peers - filters	DISA STIG Juniper Router RTR v3r2	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
JUNI-RT-000940 - The Juniper Multicast Source Discovery Protocol (MSDP) router must be configured to use its loopback address as the source address when originating MSDP traffic.	DISA STIG Juniper Router RTR v3r2	Juniper	CONTINGENCY PLANNING
Management Access Policy - HTTP - Admin State	Tenable Cisco ACI	Cisco_ACI	CONFIGURATION MANAGEMENT
VCENTER-000019 - Access to SSL certificates must be restricted.	DISA STIG VMWare ESXi vCenter 5 STIG v2r1	VMware	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search