Item Search

Name	Audit Name	Plugin	Category
1.4.5 Ensure version 7.2 or newer booted with a BIOS have a unique name for the grub superusers account	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
1.10 Ensure system-wide crypto policy is not legacy	CIS Fedora 28 Family Linux Workstation L1 v2.0.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.10 Ensure system-wide crypto policy is not legacy	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.2.1.8 Ensure 'Treat AirDrop as unmanaged destination' is set to 'Enabled'	MobileIron - CIS Apple iOS 13 and iPadOS 13 v1.0.0 End User Owned L1	MDM	ACCESS CONTROL
2.2.1.10 Ensure 'Treat AirDrop as unmanaged destination' is set to 'Enabled'	MobileIron - CIS Apple iOS 18 v1.0.0 L1 End User Owned	MDM	ACCESS CONTROL, MEDIA PROTECTION
2.2.1.10 Ensure 'Treat AirDrop as unmanaged destination' is set to 'Enabled'	MobileIron - CIS Apple iPadOS 17 v1.1.0 End User Owned L1	MDM	ACCESS CONTROL, MEDIA PROTECTION
2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.3.17.4 Ensure 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' is set to 'Prompt for consent on the secure desktop or Prompt for credentials on the secure desktop' (STIG only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
5.1.1.4 Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'Java' Packages	CIS Oracle Server 12c DB Traditional Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.1.1.4 Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'Java' Packages	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.1.1.4 Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'Java' Packages - Java Packages	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.1.1.4 Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'Java' Packages - Java Packages	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.1.1.4 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "Java" Packages	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.1.4 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "Java" Packages	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.4.2 Ensure system accounts are secured	CIS SUSE Linux Enterprise 12 v3.2.1 L1 Workstation	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.5.2 Ensure system accounts are secured	CIS Amazon Linux 2 STIG v2.0.0 L1 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.5.2 Ensure system accounts are secured - non-login shell	CIS CentOS 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - non-login shell	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
6.7.1 Ensure Custom Java Privileges Are Revoked from Unauthorized 'GRANTEE'	CIS Oracle Database 23ai v1.0.0 L1 RDBMS	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
18.9.11.2.7 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Omit recovery options from the BitLocker setup wizard' is set to 'Enabled: True'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
18.9.11.2.7 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Omit recovery options from the BitLocker setup wizard' is set to 'Enabled: True'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
18.9.11.2.8 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Save BitLocker recovery information to AD DS for operating system drives' is set to 'Enabled: True'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
18.9.11.2.8 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Save BitLocker recovery information to AD DS for operating system drives' is set to 'Enabled: True'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
GEN002860 - Audit logs must be rotated daily.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA STIG Solaris 10 X86 v2r4	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA STIG Solaris 10 SPARC v2r4	Unix	CONFIGURATION MANAGEMENT
Java permissions - Local Machine Zone	MSCT Windows 10 v20H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Local Machine Zone	MSCT Windows 10 v21H1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Local Machine Zone	MSCT Windows Server 1903 MS v1.19.9	Windows	CONFIGURATION MANAGEMENT
Java permissions - Local Machine Zone	MSCT Windows Server v1909 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Local Machine Zone	MSCT Windows Server v20H2 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Local Machine Zone	MSCT Windows Server 2025 MS v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Local Machine Zone	MSCT Windows 11 v23H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Restricted Sites Zone	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Restricted Sites Zone	MSCT Windows 10 v22H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Restricted Sites Zone	MSCT Windows 11 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Restricted Sites Zone	MSCT Windows Server 2016 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Restricted Sites Zone	MSCT Windows Server 2022 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Trusted Sites Zone	MSCT Windows 10 1803 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Trusted Sites Zone	MSCT Windows 10 v2004 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Trusted Sites Zone	MSCT Windows Server v2004 MS v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Trusted Sites Zone	MSCT Windows Server 2016 MS v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Trusted Sites Zone	MSCT Windows 11 v23H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
JBOS-AS-000030 - The Java Security Manager must be enabled for the JBoss application server.	DISA JBoss EAP 6.3 STIG v2r6	Unix	ACCESS CONTROL
KNOX-07-000100 - The Samsung Android 7 with Knox must be configured to enforce a minimum password length of six characters.	AirWatch - DISA Samsung Android 7 with Knox 2.x v1r1	MDM	IDENTIFICATION AND AUTHENTICATION
KNOX-07-003300 - The Samsung must be configured to disable authentication mechanisms providing user access to protected data - Trust Agents	MobileIron - DISA Samsung Android 7 with Knox 2.x v1r1	MDM	CONFIGURATION MANAGEMENT
WBLC-08-000224 - Oracle WebLogic must terminate user sessions upon user logout or any other organization- or policy-defined session termination events such as idle time limit exceeded.	Oracle WebLogic Server 12c Linux v2r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
WBLC-08-000224 - Oracle WebLogic must terminate user sessions upon user logout or any other organization- or policy-defined session termination events such as idle time limit exceeded.	Oracle WebLogic Server 12c Windows v2r2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search