Item Search

Name	Audit Name	Plugin	Category
1.1.2 Ensure /tmp is configured	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.4 Ensure nosuid option set on /tmp partition	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.8 Ensure nodev option set on /var/tmp partition	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.10 Ensure noexec option set on /var/tmp partition	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.2.1 Ensure package manager repositories are configured	CIS Aliyun Linux 2 L1 v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
1.2.2 Ensure GPG keys are configured	CIS Aliyun Linux 2 L1 v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
1.7.1.3 Ensure remote login warning banner is configured properly - msrv	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.1.2 Ensure ntp is configured - -u ntp:ntp	CIS Aliyun Linux 2 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
2.1.3 Ensure Avahi Server is not enabled	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.5 Ensure DHCP Server is not enabled	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.7 Ensure NFS and RPC are not enabled - nfs	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.12 Ensure Samba is not enabled	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.12 Ensure Samba is not enabled - status	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.13 Ensure HTTP Proxy Server is not enabled	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.15 Ensure mail transfer agent is configured for local-only mode - status	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.2.1 Ensure NIS Client is not installed	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.19 Ensure FIPS 140-2 OpenSSL Cryptography Is Used	CIS Oracle MySQL Enterprise Edition 8.0 v1.5.0 L1 MySQL RDBMS on Linux MySQLDB	MySQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.1.2 Ensure packet redirect sending is disabled - net.ipv4.conf.default.send_redirects	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure source routed packets are not accepted - sysctl net.ipv4.conf.all.accept_source_route	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure source routed packets are not accepted - sysctl net.ipv6.conf.default.accept_source_route	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.1 Ensure source routed packets are not accepted - sysctl.conf sysctl.d net.ipv6.conf.all.accept_source_route	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.2 Ensure ICMP redirects are not accepted - sysctl net.ipv6.conf.default.accept_redirects	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.2 Ensure ICMP redirects are not accepted - sysctl.conf sysctl.d net.ipv6.conf.default.accept_redirects	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.4 Ensure suspicious packets are logged - sysctl net.ipv4.conf.all.log_martians	CIS Aliyun Linux 2 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.2.4 Ensure suspicious packets are logged - sysctl net.ipv4.conf.default.log_martians	CIS Aliyun Linux 2 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
3.2.5 Ensure broadcast ICMP requests are ignored - sysctl net.ipv4.icmp_echo_ignore_broadcasts	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.7 Ensure Reverse Path Filtering is enabled - sysctl.conf sysctl.d net.ipv4.conf.all.rp_filter	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.8 Ensure TCP SYN Cookies is enabled - sysctl.conf sysctl.d net.ipv4.tcp_syncookies	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure /etc/hosts.allow is configured	CIS Aliyun Linux 2 L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.4.1 Ensure DCCP is disabled - grep modprobe.d	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used	CIS PostgreSQL 14 OS v 1.3.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.7.3 (L1) Ensure 'Configure RPC connection settings: Protocol to use for outgoing RPC connections' is set to 'Enabled: RPC over TCP'	CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.7.3 Ensure 'Configure RPC connection settings: Protocol to use for outgoing RPC connections' is set to 'Enabled: RPC over TCP'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1	Windows	CONFIGURATION MANAGEMENT
18.7.4 (L1) Ensure 'Configure RPC connection settings: Use authentication for outgoing RPC connections' is set to 'Enabled: Default'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.7.5 Ensure 'Configure RPC listener settings: Protocols to allow for incoming RPC connections' is set to 'Enabled: RPC over TCP'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
18.7.5 Ensure 'Configure RPC listener settings: Protocols to allow for incoming RPC connections' is set to 'Enabled: RPC over TCP'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1	Windows	CONFIGURATION MANAGEMENT
18.7.7 Ensure 'Configure RPC over TCP port' is set to 'Enabled: 0'	CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.7.7 Ensure 'Configure RPC over TCP port' is set to 'Enabled: 0'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	CONFIGURATION MANAGEMENT
18.10.18.1 (L2) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.18.2 Ensure 'Enable App Installer Experimental Features' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
VMCH-06-000010 - The unexposed feature keyword isolation.bios.bbs.disable must be set.	DISA VMware vSphere Virtual Machine Version 6 STIG v1r1	VMware	CONFIGURATION MANAGEMENT
VMCH-06-000019 - The unexposed feature keyword isolation.tools.unity.disable must be set.	DISA VMware vSphere Virtual Machine Version 6 STIG v1r1	VMware	CONFIGURATION MANAGEMENT
VMCH-06-000021 - The unexposed feature keyword isolation.tools.unity.push.update.disable must be set.	DISA VMware vSphere Virtual Machine Version 6 STIG v1r1	VMware	CONFIGURATION MANAGEMENT
VMCH-06-000026 - The unexposed feature keyword isolation.tools.guestDnDVersionSet.disable must be set.	DISA VMware vSphere Virtual Machine Version 6 STIG v1r1	VMware	CONFIGURATION MANAGEMENT
VMCH-65-000019 - The unexposed feature keyword isolation.tools.unity.disable must be set on the virtual machine.	DISA STIG VMware vSphere Virtual Machine 6.5 v2r2	VMware	CONFIGURATION MANAGEMENT
VMCH-65-000021 - The unexposed feature keyword isolation.tools.unity.push.update.disable must be set on the virtual machine.	DISA STIG VMware vSphere Virtual Machine 6.5 v2r2	VMware	CONFIGURATION MANAGEMENT
VMCH-65-000022 - The unexposed feature keyword isolation.tools.unity.taskbar.disable must be set on the virtual machine.	DISA STIG VMware vSphere Virtual Machine 6.5 v2r2	VMware	CONFIGURATION MANAGEMENT
VMCH-65-000023 - The unexposed feature keyword isolation.tools.unityActive.disable must be set on the virtual machine.	DISA STIG VMware vSphere Virtual Machine 6.5 v2r2	VMware	CONFIGURATION MANAGEMENT
VMCH-65-000025 - The unexposed feature keyword isolation.tools.vmxDnDVersionGet.disable must be set on the virtual machine.	DISA STIG VMware vSphere Virtual Machine 6.5 v2r2	VMware	CONFIGURATION MANAGEMENT
VMCH-65-000026 - The unexposed feature keyword isolation.tools.guestDnDVersionSet.disable must be set on the virtual machine.	DISA STIG VMware vSphere Virtual Machine 6.5 v2r2	VMware	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search