Item Search

Name	Audit Name	Plugin	Category
7.2 Set Strong Password Creation Policies - DICTIONDBDIR = /var/passwd	CIS Solaris 11.2 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MAXREPEATS = 0	CIS Solaris 11.1 L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MAXREPEATS = 0	CIS Solaris 11 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MINDIFF = 3	CIS Solaris 11.1 L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MINDIFF = 3	CIS Solaris 11 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MINUPPER = 1	CIS Solaris 11 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - WHITESPACE = yes	CIS Solaris 11.1 L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - WHITESPACE = yes	CIS Solaris 11 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
18.9.25.5 (L1) Ensure 'Default Protections for Recommended Software' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.6.1 Ensure 'Turn off Inventory Collector' is set to 'Enabled' (STIG only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	CONFIGURATION MANAGEMENT
18.10.6.1 Ensure 'Turn off Inventory Collector' is set to 'Enabled' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	CONFIGURATION MANAGEMENT
20.1 Ensure 'Accounts require passwords' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	IDENTIFICATION AND AUTHENTICATION
20.13 (L1) Ensure 'Web browser is supported and secured'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
AIOS-13-013100 - Apple iOS/iPadOS must implement the management setting: disable paired Apple Watch.	AirWatch - DISA Apple iOS/iPadOS 13 v2r1	MDM	ACCESS CONTROL, CONFIGURATION MANAGEMENT
CASA-ND-001410 - The Cisco ASA must be configured to send log data to at least two central log servers for the purpose of forwarding alerts to organization-defined personnel and/or the firewall administrator.	DISA STIG Cisco ASA NDM v2r2	Cisco	AUDIT AND ACCOUNTABILITY
ESXI-70-000010 - The ESXi host Secure Shell (SSH) daemon must use FIPS 140-2 validated cryptographic modules to protect the confidentiality of remote access sessions.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	ACCESS CONTROL
ESXI-70-000013 - The ESXi host Secure Shell (SSH) daemon must not allow host-based authentication.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000015 - The ESXi host Secure Shell (SSH) daemon must not allow authentication using an empty password.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000016 - The ESXi host Secure Shell (SSH) daemon must not permit user environment settings.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000021 - The ESXi host Secure Shell (SSH) daemon must not allow compression or must only allow compression after successful authentication.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000023 - The ESXi host Secure Shell (SSH) daemon must be configured to not allow X11 forwarding.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000025 - The ESXi host Secure Shell (SSH) daemon must not permit tunnels.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000076 - The ESXi host must enable Secure Boot.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000083 - The ESXi host OpenSLP service must be disabled.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000085 - The ESXi host must enable strict x509 verification for SSL syslog endpoints.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000090 - The ESXi host rhttpproxy daemon must use FIPS 140-2 validated cryptographic modules to protect the confidentiality of remote access sessions.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	ACCESS CONTROL
ESXI-70-000093 - The ESXi host must not be configured to override virtual machine (VM) logger settings.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000094 - The ESXi host must require TPM-based configuration encryption.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000095 - The ESXi host must implement Secure Boot enforcement.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY
PHTN-30-000003 - The Photon operating system must display the Standard Mandatory DOD Notice and Consent Banner before granting Secure Shell (SSH) access.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	ACCESS CONTROL
PHTN-30-000006 - The Photon operating system must have the sshd SyslogFacility set to 'authpriv' - authpriv.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	ACCESS CONTROL
PHTN-30-000015 - The Photon operating system audit log must attempt to log audit failures to syslog.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	AUDIT AND ACCOUNTABILITY
PHTN-30-000017 - The Photon operating system audit log must be owned by root.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	AUDIT AND ACCOUNTABILITY
PHTN-30-000022 - The Photon operating system must enforce password complexity by requiring that at least one lowercase character be used.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	IDENTIFICATION AND AUTHENTICATION
PHTN-30-000026 - The Photon operating system must use an OpenSSH server version that does not support protocol 1.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	IDENTIFICATION AND AUTHENTICATION, MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION
PHTN-30-000027 - The Photon operating system must be configured so that passwords for new users are restricted to a 24-hour minimum lifetime.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	IDENTIFICATION AND AUTHENTICATION
PHTN-30-000062 - The Photon operating system must require users to reauthenticate for privilege escalation.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	IDENTIFICATION AND AUTHENTICATION
PHTN-30-000069 - The Photon operating system must audit the 'insmod' module - insmod module	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	AUDIT AND ACCOUNTABILITY
PHTN-30-000072 - The Photon operating system must set the 'FAIL_DELAY' parameter.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	CONFIGURATION MANAGEMENT
PHTN-30-000075 - The Photon operating system must create a home directory for all new local interactive user accounts.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	CONFIGURATION MANAGEMENT
TCAT-AS-000110 - The Java Security Manager must be enabled.	DISA STIG Apache Tomcat Application Server 9 v3r2 Middleware	Unix	ACCESS CONTROL
VCEM-67-000008 - ESX Agent Manager application files must be verified for their integrity.	DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4	Unix	AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT
VCEM-67-000009 - ESX Agent Manager must only run one webapp.	DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4	Unix	CONFIGURATION MANAGEMENT
VCEM-67-000018 - ESX Agent Manager must fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.	DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
VCEM-67-000020 - ESX Agent Manager must set 'URIEncoding' to UTF-8 - URIEncoding to UTF-8.	DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4	Unix	SYSTEM AND INFORMATION INTEGRITY
VCEM-67-000025 - ESX Agent Manager must not enable support for TRACE requests.	DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4	Unix	SYSTEM AND INFORMATION INTEGRITY
VCEM-67-000027 - Rsyslog must be configured to monitor and ship ESX Agent Manager log files - catalina	DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4	Unix	AUDIT AND ACCOUNTABILITY
VCEM-67-000030 - ESX Agent Manager must disable the shutdown port.	DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
VMCH-70-000019 - Access to virtual machines (VMs) through the 'dvfilter' network Application Programming Interface (API) must be controlled.	DISA STIG VMware vSphere 7.0 Virtual Machine v1r4	VMware	CONFIGURATION MANAGEMENT
VMCH-70-000023 - All 3D features on the virtual machine (VM) must be disabled when not required.	DISA STIG VMware vSphere 7.0 Virtual Machine v1r4	VMware	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search