Item Search

Name	Audit Name	Plugin	Category
1.1.2 Ensure /tmp is configured	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.2.3 Ensure gpgcheck is globally activated	CIS Aliyun Linux 2 L1 v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
1.3.1 Ensure AIDE is installed	CIS Aliyun Linux 2 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
1.3.2 Ensure 'Image Authenticity' is correct	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	SYSTEM AND INFORMATION INTEGRITY
1.4.2 Ensure authentication required for single user mode - emergency.service	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.2 Ensure address space layout randomization (ASLR) is enabled - sysctl	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.13.2.1.4 Ensure 'Promote Level 2 errors as errors, not warnings' is set to Disabled	CIS Microsoft Office Outlook 2013 v1.1.0 Level 1	Windows	SYSTEM AND INFORMATION INTEGRITY
1.27 Set 'Remove file extensions blocked as Level 2' to 'Disabled'	CIS MS Office Outlook 2010 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.1.1.2 Ensure ntp is configured - restrict -6	CIS Aliyun Linux 2 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
2.1.10 Ensure HTTP server is not enabled	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.12 Ensure Samba is not enabled - status	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.13 Ensure HTTP Proxy Server is not enabled - status	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.14 Ensure SNMP Server is not enabled - status	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.2.41 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.44 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.2.44 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.2.44 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.44 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.2.45 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.45 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.45 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.52 Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.56 Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.57 Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
3.4 Ensure SharePoint identifies data type, specification, and usage when transferring information between different security domains so policy restrictions may be applied.	CIS Microsoft SharePoint 2019 OS v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.4 Ensure SharePoint identifies data type, specification, and usage when transferring information between different security domains.	CIS Microsoft SharePoint 2016 OS v1.1.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.4.2.3.2 Ensure password history remember is configured	CIS Amazon Linux 2 v3.0.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
4.4.2.3.3 Ensure password history is enforced for the root user	CIS Amazon Linux 2 v3.0.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
4.4.2.4.2 Ensure pam_unix does not include remember	CIS Amazon Linux 2 v3.0.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
4.5.2.1 Ensure default group for the root account is GID 0	CIS Amazon Linux 2 v3.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.5.2.4 Ensure root password is set	CIS Amazon Linux 2 v3.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.1.1 Ensure rsyslog is installed	CIS Amazon Linux 2 v3.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
5.1.1.3 Ensure journald is configured to send logs to rsyslog	CIS Amazon Linux 2 v3.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
5.1.1.4 Ensure rsyslog default file permissions are configured	CIS Amazon Linux 2 v3.0.0 L1	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION
5.1.1.6 Ensure rsyslog is configured to send logs to a remote log host	CIS Amazon Linux 2 v3.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.1.3 Ensure systemd-journal-remote is enabled	CIS Amazon Linux 2 v3.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
5.1.2.4 Ensure journald is configured to write logfiles to persistent disk	CIS Amazon Linux 2 v3.0.0 L1	Unix	AUDIT AND ACCOUNTABILITY
5.3.16 Ensure only FIPS 140-2 ciphers are used for SSH	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.1.9 Ensure permissions on /etc/shells are configured	CIS Amazon Linux 2 v3.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.11 Ensure world writable files and directories are secured	CIS Amazon Linux 2 v3.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.12 Ensure no unowned or ungrouped files or directories exist	CIS Amazon Linux 2 v3.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.13 Ensure SUID and SGID files are reviewed	CIS Amazon Linux 2 v3.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.2.2 Ensure /etc/shadow password fields are not empty	CIS Amazon Linux 2 v3.0.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
6.2.4 Ensure no duplicate UIDs exist	CIS Amazon Linux 2 v3.0.0 L1	Unix	IDENTIFICATION AND AUTHENTICATION
6.2.9 Ensure root is the only UID 0 account	CIS Amazon Linux 2 v3.0.0 L1	Unix	ACCESS CONTROL
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used - openssl version	CIS PostgreSQL 9.5 OS v1.1.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
10.06 Oracle Installation - 'Separate user account for Management/Intelligent Agent'	CIS v1.1.0 Oracle 11g OS Windows Level 2	Windows
CIS VMware ESXi 6.5 v1.0.0 Level 2	CIS VMware ESXi 6.5 v1.0.0 Level 2	VMware
GEN000290-2 - The system must not have the unnecessary 'news' account.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	ACCESS CONTROL
WBLC-02-000074 - Oracle WebLogic must produce audit records containing sufficient information to establish what type of JVM-related events and severity levels occurred.	Oracle WebLogic Server 12c Linux v2r2 Middleware	Unix	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search