Item Search

Name	Audit Name	Plugin	Category
3 - Configure log file size limit - Settings	TNS Best Practice Jetty 9 Linux	Unix	AUDIT AND ACCOUNTABILITY
7 - SSL implementation - start.ini --module=http	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
7 - SSL implementation - start.ini --module=https	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
7 - SSL implementation - start.ini --module=ssl	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
7 - SSL implementation - start.jar --module=http	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
24 - Remove extraneous files and directories - $JETTY_BASE/webapps/servlet-example	TNS Best Practice Jetty 9 Linux	Unix	CONFIGURATION MANAGEMENT
25 - Disable Unused Connectors	TNS Best Practice Jetty 9 Linux	Unix
34 - Ensure Web content directory is on a separate partition from the system files	TNS Best Practice Jetty 9 Linux	Unix
35 - Do not allow custom header status messages	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND INFORMATION INTEGRITY
36 - Configure connectionTimeout	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
38 - Force SSL for all applications	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
39 - Increase the entropy in session identifiers	TNS Best Practice Jetty 9 Linux	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
Adtran : Disable FTP	TNS Adtran AOS Best Practice Audit	Adtran	CONFIGURATION MANAGEMENT
Adtran : Disable WEP security mode	TNS Adtran AOS Best Practice Audit	Adtran	ACCESS CONTROL
Adtran : Enable Firewall	TNS Adtran AOS Best Practice Audit	Adtran	SYSTEM AND COMMUNICATIONS PROTECTION
Adtran : Enable stateful inspection on firewall	TNS Adtran AOS Best Practice Audit	Adtran	SYSTEM AND COMMUNICATIONS PROTECTION
Adtran : Encrypt passwords	TNS Adtran AOS Best Practice Audit	Adtran	IDENTIFICATION AND AUTHENTICATION
F5BI-LT-000163 - To protect against data mining, the BIG-IP Core implementation providing content filtering must be configured to detect code injection attacks being launched against data storage objects.	DISA F5 BIG-IP Local Traffic Manager STIG v2r4	F5	ACCESS CONTROL
Huawei: Command Levels Not Changed	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT
Huawei: Configure appropriate NTP server	TNS Huawei VRP Best Practice Audit	Huawei	AUDIT AND ACCOUNTABILITY
Huawei: Disable Telnet on IPV4	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT
Huawei: Enable AAA authentication	TNS Huawei VRP Best Practice Audit	Huawei	IDENTIFICATION AND AUTHENTICATION
Huawei: Enable SNMP Traps	TNS Huawei VRP Best Practice Audit	Huawei	AUDIT AND ACCOUNTABILITY
Huawei: Insecure HTTP is not configured.	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT
Huawei: Require Group for SNMPv3 Access	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
Huawei: Require SSH version 2	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT
Huawei: Set super password	TNS Huawei VRP Best Practice Audit	Huawei	IDENTIFICATION AND AUTHENTICATION
Huawei: SNMP Community string != private	TNS Huawei VRP Best Practice Audit	Huawei	IDENTIFICATION AND AUTHENTICATION
JUSX-IP-000017 - The Juniper Networks SRX Series Gateway IDPS must protect against or limit the effects of known and unknown types of Denial of Service (DoS) attacks by employing rate-based attack prevention behavior analysis.	DISA Juniper SRX Services Gateway IDPS v2r1	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Email Services - 'AttachmentOption != 2 or 3'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Email Services - 'AuthenticationFailureAction != 2 or 3'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Email Services - 'IsTextAttachmentsAsBinary = False'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Email Services - 'OverLimitAction != 2'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Monitoring Login History - 'Users that have not logged in'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Network-Based Security - 'Login IP Addresses'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	AUDIT AND ACCOUNTABILITY
Salesforce.com : Object Permissions - 'DefaultAccountAccess should not be Public Read/Write or Public Read/Write/Transfer'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Securing Data Access - 'DashboardMobile iPad access'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Password Policies - 'minimum password length >= 8'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Setting Password Policies - 'Must mix numbers, uppercase and lowercase letters, and special characters'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Setting Session Security - 'Review Site.com Contributor User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review Site.com Publisher User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review Wireless User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
WatchGuard : Authentication Settings - 'Authentication User Session Timeout'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	ACCESS CONTROL
WatchGuard : Data Loss Prevention Signature Update - 'Enabled'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
WatchGuard : DoS Prevention - Block Port Space Probes	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	SYSTEM AND COMMUNICATIONS PROTECTION
WatchGuard : DoS Prevention - Drop SYN Flood Attack	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	SYSTEM AND COMMUNICATIONS PROTECTION
WatchGuard : IPS Threat Level Action Medium - DROP or BLOCK	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	SYSTEM AND INFORMATION INTEGRITY
WatchGuard : SNMP Configuration - community string - 'public'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	IDENTIFICATION AND AUTHENTICATION
WatchGuard : SNMP Configuration - v3 user has password - auth protocol	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	ACCESS CONTROL
WatchGuard : SNMP Configuration - Version = '3'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search