Item Search

Name	Audit Name	Plugin	Category
1.1.3.14.2 Set 'System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.2.3 Set 'seconds' for 'ssh timeout' for 60 seconds or less	CIS Cisco IOS XR 7.x v1.0.1 L1	Cisco	IDENTIFICATION AND AUTHENTICATION
1.25.1 (L1) Ensure 'Configure Microsoft Defender SmartScreen' is set to 'Enabled'	CIS Microsoft Edge v3.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
1.85 (L1) Ensure 'Enable AutoFill for payment instructions' is set to 'Disabled'	CIS Microsoft Edge v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
1.86 (L1) Ensure 'Enable browser legacy extension point blocking' is set to 'Enabled'	CIS Microsoft Edge v3.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
1.88 (L1) Ensure 'Enable CryptoWallet feature' is set to 'Disabled'	CIS Microsoft Edge v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
1.105 (L1) Ensure 'Enable use of ephemeral profiles' is set to 'Disabled'	CIS Microsoft Edge v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
1.106 (L1) Ensure 'Enable warnings for insecure forms' is set to 'Enabled'	CIS Microsoft Edge v3.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
1.116 (L1) Ensure 'Manage exposure of local IP addresses by WebRTC' is set to 'Disabled'	CIS Microsoft Edge v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
2.1.3 (L1) Ensure notifications for internal users sending malware is Enabled	CIS Microsoft 365 Foundations v5.0.0 L1 E5	microsoft_azure	INCIDENT RESPONSE
2.1.8 (L1) Ensure that SPF records are published for all Exchange Domains	CIS Microsoft 365 Foundations v5.0.0 L1 E5	microsoft_azure	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.10 Ensure 'External send connector authentication: Domain security' is set to 'True'	CIS Microsoft Exchange Server 2019 L1 Mailbox v1.0.0	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.2.27 Ensure 'Deny log on as a batch job' to include 'Guests, Enterprise Admins Group, and Domain Admins Group' (STIG MS only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.1 - MobileIron - Enable Prevent Move for Sensitive Mail Accounts	MobileIron - CIS Apple iOS 8 v1.0.0 L2	MDM	ACCESS CONTROL
2.3.7.10 Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or 'Force Logoff' (STIG DC & MS only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
2.3.7.10 Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or 'Force Logoff' (STIG DC & MS only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC	Windows	ACCESS CONTROL
2.3.7.10 Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or 'Force Logoff' (STIG only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	ACCESS CONTROL
2.3.7.10 Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or 'Force Logoff' (STIG only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.5.14.5 (L1) Ensure 'Disable 'Remember password' for Internet e-mail accounts' is set to 'Enabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
3.1 Ensure a fully-synchronized High Availability peer is configured	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
3.1 Ensure a fully-synchronized High Availability peer is configured	CIS Palo Alto Firewall 11 v1.1.0 L1	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
3.1 Ensure a fully-synchronized High Availability peer is configured	CIS Palo Alto Firewall 9 v1.1.0 L1	Palo_Alto	ACCESS CONTROL, CONFIGURATION MANAGEMENT
4.3 Ensure Encryption of Data in Transit TLS or SSL (Transport Encryption)	CIS MongoDB 6 v1.2.0 L1 MongoDB	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
4.3 Ensure Encryption of Data in Transit TLS or SSL (Transport Encryption)	CIS MongoDB 6 v1.2.0 L1 MongoDB	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.3 Ensure Encryption of Data in Transit TLS or SSL (Transport Encryption)	CIS MongoDB 4 L1 OS Linux v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.6.3 Apply Security Context to Your Pods and Containers	CIS Kubernetes v1.11.1 L2 Master Node	Unix	CONFIGURATION MANAGEMENT
7.5 Ensure the `useSSL` attribute is set to `true` for TLS Transport	CIS IBM WebSphere Liberty v1.0.0 L1	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
Automatically open downloaded MHT or MHTML files from the web in Internet Explorer mode	MSCT Edge v124 v1.0.0	Windows
Automatically open downloaded MHT or MHTML files from the web in Internet Explorer mode	MSCT Edge v127 v1.0.0	Windows
Automatically open downloaded MHT or MHTML files from the web in Internet Explorer mode	MSCT Edge v134 v1.0.0	Windows
Automatically open downloaded MHT or MHTML files from the web in Internet Explorer mode	MSCT Edge v135 v1.0.0	Windows
DTOO238 - Outlook - Users customizing attachment security settings must be prevented.	DISA STIG Office 2010 Outlook v1r14	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO238 - Users customizing attachment security settings must be prevented.	DISA STIG Microsoft Outlook 2013 v1r14	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
EDGE-00-000022 - Importing of search engine settings must be disabled.	DISA STIG Edge v2r2	Windows	CONFIGURATION MANAGEMENT
EDGE-00-000047 - Site isolation for every site must be enabled.	DISA STIG Edge v2r2	Windows	CONFIGURATION MANAGEMENT
EDGE-00-000052 - The download location prompt must be configured.	DISA STIG Edge v2r2	Windows	CONFIGURATION MANAGEMENT
EX13-CA-000005 - Exchange must use Encryption for RPC client access.	DISA Microsoft Exchange 2013 Client Access Server STIG v2r2	Windows	ACCESS CONTROL
EX13-CA-000130 - Exchange services must be documented and unnecessary services must be removed or disabled.	DISA Microsoft Exchange 2013 Client Access Server STIG v2r2	Windows	CONFIGURATION MANAGEMENT
EX13-CA-000140 - Exchange software must be installed on a separate partition from the OS.	DISA Microsoft Exchange 2013 Client Access Server STIG v2r2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
EX13-MB-000145 - Exchange email forwarding must be restricted.	DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
EX13-MB-000265 - Exchange servers must have an approved DoD email-aware virus protection software installed.	DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3	Windows	SYSTEM AND INFORMATION INTEGRITY
EX13-MB-000300 - Exchange services must be documented and unnecessary services must be removed or disabled.	DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3	Windows	CONFIGURATION MANAGEMENT
HONW-09-009400 - Honeywell Mobility Edge Android Pie devices work profile must be configured to enforce the system application disable list.	AirWatch - DISA Honeywell Android 9.x COPE v1r2	MDM	CONFIGURATION MANAGEMENT
JUSX-VN-000007 - The Juniper SRX Services Gateway VPN must implement a FIPS-140-2 validated Diffie-Hellman (DH) group.	DISA Juniper SRX Services Gateway VPN v3r1	Juniper	ACCESS CONTROL
O112-C2-015300 - The DBMS, when utilizing PKI-based authentication, must validate certificates by constructing a certification path with status information to an accepted trust anchor.	DISA STIG Oracle 11.2g v2r5 Windows	Windows	IDENTIFICATION AND AUTHENTICATION
Prevent bypassing Windows Defender SmartScreen prompts for sites	MSCT Windows 10 1903 v1.19.9	Windows	SYSTEM AND INFORMATION INTEGRITY
Prevent bypassing Windows Defender SmartScreen prompts for sites	MSCT Windows 10 v21H1 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Prevent bypassing Windows Defender SmartScreen prompts for sites	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Prevent bypassing Windows Defender SmartScreen prompts for sites	MSCT Windows 10 v2004 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
VCLD-70-000024 - VAMI must implement Transport Layer Security (TLS) 1.2 exclusively.	DISA STIG VMware vSphere 7.0 VAMI v1r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search