Item Search

Name	Audit Name	Plugin	Category
2.2.26 Ensure 'Deny log on as a service' to include 'No one' (STIG DC only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	ACCESS CONTROL
2.2.29 Ensure 'Deny log on as a service' to include 'No one' (STIG DC only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
4.1.6 Ensure events that modify user/group information are collected - /etc/group	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify user/group information are collected - /etc/gshadow	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify user/group information are collected - /etc/passwd	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify user/group information are collected - /etc/security/opasswd	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify user/group information are collected - /etc/shadow	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify user/group information are collected - auditctl /etc/group	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify user/group information are collected - auditctl /etc/gshadow	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify user/group information are collected - auditctl /etc/passwd	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify user/group information are collected - auditctl /etc/security/opasswd	CIS Amazon Linux 2 STIG v1.0.0 L2	Unix	AUDIT AND ACCOUNTABILITY
5.4.7 Ensure minimum and maximum requirements are set for password changes - difok	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
5.4.7 Ensure minimum and maximum requirements are set for password changes - maxclassrepeat	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
5.4.7 Ensure minimum and maximum requirements are set for password changes - minclass	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
5.4.7 Ensure minimum and maximum requirements are set for password changes - minlen	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION
7.1 Ensure that the vSwitch Forged Transmits policy is set to reject	CIS VMware ESXi 5.5 v1.2.0 Level 1	VMware	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure the vSwitch Forged Transmits policy is set to reject	CIS VMware ESXi 6.5 v1.0.0 Level 1	VMware	SYSTEM AND COMMUNICATIONS PROTECTION
7.6 Ensure that port groups are not configured to VLAN 4095 except for Virtual Guest Tagging (VGT)	CIS VMware ESXi 5.5 v1.2.0 Level 1	VMware	CONFIGURATION MANAGEMENT
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLocker	Windows	ACCESS CONTROL
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	ACCESS CONTROL
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG	Windows	ACCESS CONTROL
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1	Windows	ACCESS CONTROL
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	ACCESS CONTROL
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1	Windows	ACCESS CONTROL
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2	Windows	ACCESS CONTROL
18.1.1.1 (L1) Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT
18.1.1.1 Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
ALMA-09-018830 - AlmaLinux OS 9 firewall must employ a deny-all, allow-by-exception policy for allowing connections to other systems.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	CONFIGURATION MANAGEMENT
ALMA-09-025650 - AlmaLinux OS 9 must disable virtual system calls.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	CONFIGURATION MANAGEMENT
Brocade - Forward all error logs to syslog daemon	Tenable Best Practices Brocade FabricOS	Brocade	AUDIT AND ACCOUNTABILITY
CISC-ND-000330 - The Cisco router must be configured to generate audit records containing the full-text recording of privileged commands.	DISA STIG Cisco IOS Router NDM v3r2	Cisco	AUDIT AND ACCOUNTABILITY
CISC-ND-000330 - The Cisco router must be configured to generate audit records containing the full-text recording of privileged commands.	DISA STIG Cisco IOS XE Router NDM v3r2	Cisco	AUDIT AND ACCOUNTABILITY
CISC-RT-000320 - The Cisco perimeter router must be configured to filter traffic destined to the enclave in accordance with the guidelines contained in DoD Instruction 8551.1.	DISA STIG Cisco IOS Router RTR v3r2	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
CISC-RT-000320 - The Cisco perimeter router must be configured to filter traffic destined to the enclave in accordance with the guidelines contained in DoD Instruction 8551.1.	DISA STIG Cisco IOS-XR Router RTR v3r2	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
DG0096-ORACLE11 - The DBMS IA policies and procedures should be reviewed annually or more frequently.	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
ESXI5-VMNET-000018 - The system must ensure the virtual switch Promiscuous Mode policy is set to reject.	DISA STIG VMWare ESXi Server 5 STIG v2r1	VMware	CONFIGURATION MANAGEMENT
HP ProCurve - 'Disable HTTP'	TNS HP ProCurve	HPProCurve	CONFIGURATION MANAGEMENT
Management Access Policy - HTTPS - SSL Protocols - TLSv1.1	Tenable Cisco ACI	Cisco_ACI	SYSTEM AND COMMUNICATIONS PROTECTION
Minimum password length	ArubaOS CX 10.x Hardening Guide v1.0.0	ArubaOS	IDENTIFICATION AND AUTHENTICATION
Password Change Interval (hours)	Tenable Cisco ACI	Cisco_ACI	IDENTIFICATION AND AUTHENTICATION
SNMP Destination - v3 Security level	Tenable Cisco ACI	Cisco_ACI	IDENTIFICATION AND AUTHENTICATION
SNMPv1 and v2c vs SNMPv3 - snmp community	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	IDENTIFICATION AND AUTHENTICATION
SNMPv1 and v2c vs SNMPv3 - snmpv3 only	ArubaOS Switch 16.x Hardening Guide v1.0.0	ArubaOS	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
WG400 A22 - All interactive programs (CGI) must be placed in a designated directory with appropriate permissions.	DISA STIG Apache Site 2.2 Unix v1r11	Unix	ACCESS CONTROL

Detections

Analytics

Item Search