Item Search

Name	Audit Name	Plugin	Category
2.1.1 Disable Bluetooth, if no paired devices exist	CIS Apple OSX 10.9 L1 v1.3.0	Unix
2.1.1 Turn off Bluetooth, if no paired devices exist	CIS Apple OSX 10.9 L1 v1.3.0	Unix
2.2.26 Ensure ldap_tls_cacert is set for LDAP.	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
2.2.27 Ensure ldap_id_use_start_tls is set for LDAP.	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
2.2.28 Ensure ldap_tls_reqcert is set for LDAP - LDAP communications.	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
18.9.47.9.2 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.9.2 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.42.10.3 Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.42.10.3 Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v2.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.2 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.2 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.2 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.2 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.3 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.3 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.3 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.3 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.3 (L1) Ensure 'Turn off real-time protection' is set to 'Disabled'	CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
22.4 (L1) Ensure 'Allow Realtime Monitoring' is set to 'Allowed'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
AIOS-18-015600 - Apple iOS/iPadOS 18 must disable the ability to hide apps.	MobileIron - DISA Apple iOS/iPadOS 18 v2r2	MDM	CONFIGURATION MANAGEMENT
AIOS-18-015600 - Apple iOS/iPadOS 18 must disable the ability to hide apps.	AirWatch - DISA Apple iOS/iPadOS 18 v2r2	MDM	CONFIGURATION MANAGEMENT
CASA-ND-000930 - The Cisco ASA must be configured to generate an immediate real-time alert of all audit failure events requiring real-time alerts.	DISA STIG Cisco ASA NDM v2r4	Cisco	AUDIT AND ACCOUNTABILITY
CISC-ND-001000 - The Cisco router must be configured to generate an alert for all audit failure events.	DISA Cisco IOS Router NDM STIG v3r6	Cisco	AUDIT AND ACCOUNTABILITY
CISC-ND-001000 - The Cisco router must be configured to generate an alert for all audit failure events.	DISA Cisco IOS XR Router NDM STIG v3r5	Cisco	AUDIT AND ACCOUNTABILITY
CISC-ND-001000 - The Cisco switch must be configured to generate an alert for all audit failure events.	DISA Cisco NX OS Switch NDM STIG v3r6	Cisco	AUDIT AND ACCOUNTABILITY
CISC-ND-001000 - The Cisco switch must be configured to generate an alert for all audit failure events.	DISA Cisco IOS Switch NDM STIG v3r6	Cisco	AUDIT AND ACCOUNTABILITY
CISC-ND-001000 - The Cisco switch must be configured to generate an alert for all audit failure events.	DISA Cisco IOS XE Switch NDM STIG v3r5	Cisco	AUDIT AND ACCOUNTABILITY
JUEX-NM-000420 - The Juniper EX switch must be configured to generate an immediate real-time alert of all audit failure events requiring real-time alerts.	DISA Juniper EX Series Network Device Management v2r4	Juniper	AUDIT AND ACCOUNTABILITY
JUNI-ND-000990 - The Juniper router must be configured to generate an alert for all audit failure events.	DISA STIG Juniper Router NDM v3r2	Juniper	AUDIT AND ACCOUNTABILITY
OL07-00-020023 - The Oracle Linux operating system must elevate the SELinux context when an administrator calls the sudo command.	DISA Oracle Linux 7 STIG v3r5	Unix	ACCESS CONTROL
OL09-00-000303 - OL 9 must be configured so that the file integrity tool verifies Access Control Lists (ACLs).	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
OL09-00-000304 - OL 9 must be configured so that the file integrity tool verifies extended attributes.	DISA Oracle Linux 9 STIG v1r4	Unix	CONFIGURATION MANAGEMENT
PANW-AG-000063 - The Palo Alto Networks security platform must delete or quarantine malicious code in response to malicious code detection.	DISA Palo Alto Networks ALG STIG v3r4	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
PANW-AG-000111 - The Palo Alto Networks security platform must be configured to integrate with a system-wide intrusion detection system.	DISA Palo Alto Networks ALG STIG v3r4	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
PANW-IP-000029 - The Palo Alto Networks security platform must automatically install updates to signature definitions, detection heuristics, and vendor-provided rules.	DISA Palo Alto Networks IDPS STIG v3r2	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
PANW-NM-000097 - The Palo Alto Networks security platform must have alarms enabled.	DISA Palo Alto Networks NDM STIG v3r3	Palo_Alto	AUDIT AND ACCOUNTABILITY
RHEL-07-020021 - The Red Hat Enterprise Linux operating system must confine SELinux users to roles that conform to least privilege.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-07-020022 - The Red Hat Enterprise Linux operating system must not allow privileged accounts to utilize SSH.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-07-020023 - The Red Hat Enterprise Linux operating system must elevate the SELinux context when an administrator calls the sudo command.	DISA Red Hat Enterprise Linux 7 STIG v3r15	Unix	ACCESS CONTROL
RHEL-08-010455 - RHEL 8 must elevate the SELinux context when an administrator calls the sudo command.	DISA Red Hat Enterprise Linux 8 STIG v2r7	Unix	ACCESS CONTROL
RHEL-10-200635 - RHEL 10 must be configured so that the file integrity tool verifies extended attributes.	DISA Red Hat Enterprise Linux 10 STIG v1r1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
Turn off real-time protection	MSCT Windows 10 v20H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Turn off real-time protection	MSCT Windows Server v20H2 MS v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Turn off real-time protection	MSCT Windows 11 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Turn off real-time protection	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Turn off real-time protection	MSCT Windows Server 2022 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Turn off real-time protection	MSCT Windows 11 v22H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Turn off real-time protection	MSCT Windows 10 v22H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Turn off real-time protection	MSCT Windows 10 v21H1 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WNDF-AV-000021 - Microsoft Defender AV must be configured to always enable real-time protection.	DISA Microsoft Defender Antivirus STIG v2r8	Windows	SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search