Item Search

NameAudit NamePluginCategory
2.2.29 (L2) Configure 'Log on as a service'CIS Microsoft Windows 8.1 v2.4.1 L2Windows

ACCESS CONTROL

3.2 Ensure SharePoint implements an information system isolation boundary that minimizes the number of non-security functions included within the boundary containing security functions.CIS Microsoft SharePoint 2019 OS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

5.2 Ensure External File System Access is disabled - enable file accessCIS Sybase 15.0 L1 DB v1.1.0SybaseDB
5.10 (L1) Ensure 'Microsoft FTP Service (FTPSVC)' is set to 'Disabled' or 'Not Installed'CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BLWindows

CONFIGURATION MANAGEMENT

CIS Control 13 (13.6) Encrypt Mobile Device DataCAS Implementation Group 1 Audit FileUnix

ACCESS CONTROL

CIS_AlmaLinux_OS_9_v2.0.0_L1_Workstation.audit from CIS AlmaLinux OS 9 Benchmark v2.0.0CIS AlmaLinux OS 9 v2.0.0 L1 WorkstationUnix
CIS_Apache_Tomcat_8_L1_v1.1.0.audit from CIS Apache Tomcat 8 BenchmarkCIS Apache Tomcat 8 L1 v1.1.0Unix
CIS_Apache_Tomcat_9_L2_v1.2.0.audit from CIS Apache Tomcat 9 BenchmarkCIS Apache Tomcat 9 L2 v1.2.0Unix
CIS_CentOS_Linux_7_v4.0.0_L1_Workstation.audit from CIS CentOS Linux 7 Benchmark v4.0.0CIS CentOS Linux 7 v4.0.0 L2 WorkstationUnix
CIS_CentOS_Linux_7_v4.0.0_L1_Workstation.audit from CIS CentOS Linux 7 Benchmark v4.0.0CIS CentOS Linux 7 v4.0.0 L1 WorkstationUnix
CIS_Cisco_IOS_15_v4.1.1_Level_1.audit from CIS Cisco IOS 15 BenchmarkCIS Cisco IOS 15 L1 v4.1.1Cisco
CIS_Debian_Linux_9_Workstation_v1.0.1_L1.audit from CIS Debian Linux 9 BenchmarkCIS Debian 9 Workstation L2 v1.0.1Unix
CIS_Debian_Linux_11_v2.0.0_L1_Server.audit from CIS Debian Linux 11 Benchmark v2.0.0CIS Debian Linux 11 v2.0.0 L1 ServerUnix
CIS_Debian_Linux_11_v2.0.0_L1_Workstation.audit from CIS Debian Linux 11 Benchmark v2.0.0CIS Debian Linux 11 v2.0.0 L1 WorkstationUnix
CIS_Debian_Linux_11_v2.0.0_L2_Server.audit from CIS Debian Linux 11 Benchmark v2.0.0CIS Debian Linux 11 v2.0.0 L2 ServerUnix
CIS_Debian_Linux_12_v1.1.0_L1_Server.audit from CIS Debian Linux 12 Benchmark v1.1.0CIS Debian Linux 12 v1.1.0 L1 ServerUnix
CIS_Debian_Linux_12_v1.1.0_L2_Server.audit from CIS Debian Linux 12 Benchmark v1.1.0CIS Debian Linux 12 v1.1.0 L2 ServerUnix
CIS_Google_Chrome_L1_v3.0.0.audit from CIS Google Chrome Benchmark v3.0.0CIS Google Chrome L1 v3.0.0Windows
CIS_Google_Chrome_L2_v3.0.0.audit from CIS Google Chrome Benchmark v3.0.0CIS Google Chrome L2 v3.0.0Windows
CIS_IBM_DB2_9_Benchmark_v3.0.1_Level_2_OS_Windows.audit from CIS IBM DB2 9 Benchmark v3.0.1CIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS WindowsWindows
CIS_Microsoft_Edge_v3.0.0_L2.audit from CIS Microsoft Edge Benchmark v3.0.0CIS Microsoft Edge v3.0.0 L2Windows
CIS_Oracle_Linux_7_v4.0.0_L2_Workstation.audit from CIS Oracle Linux 7 Benchmark v4.0.0CIS Oracle Linux 7 v4.0.0 L2 WorkstationUnix
CIS_Oracle_Linux_9_v2.0.0_L2_Server.audit from CIS Oracle Linux 9 Benchmark v2.0.0CIS Oracle Linux 9 v2.0.0 L2 ServerUnix
CIS_Oracle_Linux_9_v2.0.0_L2_Workstation.audit from CIS Oracle Linux 9 Benchmark v2.0.0CIS Oracle Linux 9 v2.0.0 L2 WorkstationUnix
CIS_Oracle_Server_12c_v3.0.0_L1_Linux.audit from CIS Oracle Database 12c Benchmark v3.0.0CIS Oracle Server 12c Linux v3.0.0Unix
CIS_Rocky_Linux_8_v2.0.0_L1_Workstation.audit from CIS Rocky Linux 8 Benchmark v2.0.0CIS Rocky Linux 8 Workstation L1 v2.0.0Unix
CIS_Rocky_Linux_8_v2.0.0_L2_Workstation.audit from CIS Rocky Linux 8 Benchmark v2.0.0CIS Rocky Linux 8 Workstation L2 v2.0.0Unix
CIS_Rocky_Linux_9_v2.0.0_L1_Server.audit from CIS Rocky Linux 9 Benchmark v2.0.0CIS Rocky Linux 9 v2.0.0 L1 ServerUnix
CIS_Rocky_Linux_9_v2.0.0_L1_Workstation.audit from CIS Rocky Linux 9 Benchmark v2.0.0CIS Rocky Linux 9 v2.0.0 L1 WorkstationUnix
CIS_Rocky_Linux_9_v2.0.0_L2_Server.audit from CIS Rocky Linux 9 Benchmark v2.0.0CIS Rocky Linux 9 v2.0.0 L2 ServerUnix
CIS_Ubuntu_20.04_LTS_v2.0.1_L2_Server.audit from CIS Ubuntu Linux 20.04 LTS BenchmarkCIS Ubuntu Linux 20.04 LTS Server L2 v2.0.1Unix
CIS_Ubuntu_20.04_LTS_v2.0.1_L2_Workstation.audit from CIS Ubuntu Linux 20.04 LTS BenchmarkCIS Ubuntu Linux 20.04 LTS Workstation L2 v2.0.1Unix
CIS_VMware_ESXi_6.7_v1.3.0_L2_Bare_Metal.audit from CIS VMware ESXi 6.7 Benchmark v1.3.0CIS VMware ESXi 6.7 v1.3.0 Level 2 Bare MetalUnix
CIS_VMware_ESXi_7.0_v1.4.0_L1_Bare_Metal.audit from CIS VMware ESXi 7.0 Benchmark v1.4.0CIS VMware ESXi 7.0 v1.4.0 L1 Bare MetalUnix
IIST-SI-000263 - Backup interactive scripts on the IIS 10.0 server must be removed.DISA IIS 10.0 Site v2r11Windows

CONFIGURATION MANAGEMENT

IIST-SV-000121 - The accounts created by uninstalled features (i.e., tools, utilities, specific, etc.) must be deleted from the IIS 10.0 server.DISA IIS 10.0 Server v3r3Windows

CONFIGURATION MANAGEMENT

IIST-SV-000139 - The IIS 10.0 web server Indexing must only index web content.DISA IIS 10.0 Server v2r10Windows

SYSTEM AND INFORMATION INTEGRITY

IIST-SV-000147 - Access to web administration tools must be restricted to the web manager and the web managers designees.DISA IIS 10.0 Server v3r3Windows

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

IIST-SV-000148 - The IIS 10.0 web server must not be running on a system providing any other role.DISA IIS 10.0 Server v3r3Windows

CONFIGURATION MANAGEMENT

IIST-SV-000151 - The IIS 10.0 web server must be tuned to handle the operational requirements of the hosted application.DISA IIS 10.0 Server v2r10Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IIST-SV-000154 - The IIS 10.0 web server must maintain the confidentiality of controlled information during transmission through the use of an approved Transport Layer Security (TLS) version.DISA IIS 10.0 Server v2r10Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IIST-SV-000160 - An IIS Server configured to be a SMTP relay must require authentication.DISA IIS 10.0 Server v3r3Windows

CONFIGURATION MANAGEMENT

IIST-SV-000160 - An IIS Server configured to be a SMTP relay must require authentication.DISA IIS 10.0 Server v2r10Windows

CONFIGURATION MANAGEMENT

IISW-SI-000221 - Anonymous IIS 8.5 website access accounts must be restricted.DISA IIS 8.5 Site v2r9Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IISW-SI-009999 - The version of IIS running on the system must be a supported version.DISA IIS 8.5 Site v2r9Windows

SYSTEM AND INFORMATION INTEGRITY

IISW-SV-000121 - The accounts created by uninstalled features (i.e., tools, utilities, specific, etc.) must be deleted from the IIS 8.5 server.DISA IIS 8.5 Server v2r7Windows

CONFIGURATION MANAGEMENT

IISW-SV-000130 - Java software installed on a production IIS 8.5 web server must be limited to .class files and the Java Virtual Machine.DISA IIS 8.5 Server v2r7Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IISW-SV-000131 - IIS 8.5 Web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts.DISA IIS 8.5 Server v2r7Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IISW-SV-000144 - IIS 8.5 web server system files must conform to minimum file permission requirements.DISA IIS 8.5 Server v2r7Windows

ACCESS CONTROL

IISW-SV-000147 - Access to web administration tools must be restricted to the web manager and the web managers designees.DISA IIS 8.5 Server v2r7Windows

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION