Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.1 (L1) Ensure 'Enforce password history' is set to '24 or more password(s)'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NGWindows

IDENTIFICATION AND AUTHENTICATION

1.1.2 (L1) Ensure 'Maximum password age' is set to '365 or fewer days, but not 0'CIS Windows Server 2012 MS L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

1.1.2 (L1) Ensure 'Maximum password age' is set to '365 or fewer days, but not 0'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NGWindows

IDENTIFICATION AND AUTHENTICATION

1.1.2 Ensure 'Maximum password age' is set to '365 or fewer days, but not 0'CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member ServerWindows

IDENTIFICATION AND AUTHENTICATION

1.1.3 (L1) Ensure 'Minimum password age' is set to '1 or more day(s)'CIS Microsoft Windows Server 2025 v1.0.0 L1 DCWindows

IDENTIFICATION AND AUTHENTICATION

1.1.4 Ensure 'Minimum password age' is set to '1 or more day(s)'CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MSWindows

IDENTIFICATION AND AUTHENTICATION

1.1.4 Ensure 'Minimum password age' is set to '1 or more day(s)'CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

1.1.5 (L1) Ensure 'Password must meet complexity requirements' is set to 'Enabled'CIS Windows Server 2012 R2 MS L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

1.1.5 (L1) Ensure 'Password must meet complexity requirements' is set to 'Enabled'CIS Microsoft Windows Server 2025 v1.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

1.1.5 Ensure 'Minimum password length' is set to '14 or more character(s)'CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member ServerWindows

IDENTIFICATION AND AUTHENTICATION

1.1.5 Ensure 'Minimum password length' is set to '14 or more character(s)'CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MSWindows

IDENTIFICATION AND AUTHENTICATION

1.4.3 Ensure authentication required for single user modeCIS Debian 10 Workstation L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.3.1.4 Ensure 'Accounts: Limit local account use of blank passwords to console logon only' is set to 'Enabled'CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain ControllerWindows

IDENTIFICATION AND AUTHENTICATION

3.5 Ensure 'PASSWORD_VERIFY_FUNCTION' Is Set For All ProfilesCIS Oracle Database 23ai v1.0.0 L1 RDBMSOracleDB

IDENTIFICATION AND AUTHENTICATION

4.2.10 Ensure sshd IgnoreRhosts is enabledCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

4.2.18 Ensure sshd PermitEmptyPasswords is disabledCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

4.2.18 Ensure sshd PermitEmptyPasswords is disabledCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

4.2.21 Ensure sshd UsePAM is enabledCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

4.4.3 Ensure password reuse is limitedCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

4.4.3 Ensure password reuse is limitedCIS Debian 10 Server L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

4.5.1.1 Ensure minimum days between password changes is configuredCIS Debian 10 Server L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

4.5.1.2 Ensure password expiration is 365 days or lessCIS Debian 10 Server L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

4.5.1.3 Ensure password expiration warning days is 7 or moreCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

4.5.1.4 Ensure inactive password lock is 30 days or lessCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

4.5.1.6 Ensure the number of changed characters in a new password is configuredCIS Debian 10 Server L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

4.5.1.7 Ensure password dictionary check is enabledCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

4.5.7 Ensure maximum number of same consecutive characters in a password is configuredCIS Debian 10 Workstation L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

4.6.1.4 Ensure inactive password lock is 30 days or lessCIS Amazon Linux 2023 Server L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

5.1.9 Ensure sshd GSSAPIAuthentication is disabledCIS Ubuntu Linux 20.04 LTS v3.0.0 L2 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.1.10 Ensure sshd HostbasedAuthentication is disabledCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.1.19 Ensure sshd PermitEmptyPasswords is disabledCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.2.1 Ensure histsize is configuredCIS IBM AIX 7 v1.1.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

5.3.2.3 Ensure pam_pwquality module is enabledCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.3.2.4 Ensure pam_pwhistory module is enabledCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

5.3.3.2.1 Ensure password number of changed characters is configuredCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.3.3.2.2 Ensure minimum password length is configuredCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

5.3.3.3.1 Ensure password history remember is configuredCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

5.4.1.2 Ensure minimum password days is configuredCIS Ubuntu Linux 20.04 LTS v3.0.0 L2 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.4.1.5 Ensure inactive password lock is configuredCIS Ubuntu Linux 20.04 LTS v3.0.0 L1 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

6.2.1 Ensure password fields are not emptyCIS Fedora 28 Family Linux Workstation L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

6.2.2 Ensure /etc/shadow password fields are not emptyCIS Amazon Linux 2023 Server L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

7.3 Ensure Passwords are Set for All MySQL AccountsCIS Oracle MySQL Community Server 8.4 v1.0.0 L1 DatabaseMySQLDB

IDENTIFICATION AND AUTHENTICATION

7.5 Ensure Password Complexity Policies are in PlaceCIS Oracle MySQL Enterprise Edition 8.0 v1.4.0 L1 DatabaseMySQLDB

IDENTIFICATION AND AUTHENTICATION

10.4 Ensure 'keysPassword' is set to a custom password for ltpa keysCIS IBM WebSphere Liberty v1.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

18.3.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters' (MS only)CIS Windows Server 2012 MS L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

18.3.6 (L1) Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer' (MS only)CIS Windows Server 2012 MS L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

18.9.25.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.25.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters'CIS Microsoft Windows Server 2022 v4.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

18.9.25.5 (L1) Ensure 'Password Settings: Password Length' is set to 'Enabled: 15 or more'CIS Microsoft Windows Server 2025 v1.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

18.9.25.7 Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 60 or fewer' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DCWindows

IDENTIFICATION AND AUTHENTICATION