Item Search

Name	Audit Name	Plugin	Category
1.7.10 Ensure XDMCP is not enabled	CIS Oracle Linux 7 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.7.10 Ensure XDMCP is not enabled	CIS Oracle Linux 7 v4.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
1.8.4 Ensure XDCMP is not enabled	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.4 Ensure XDCMP is not enabled	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.4 Ensure XDCMP is not enabled	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.4 Ensure XDCMP is not enabled	CIS CentOS 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.4 Ensure XDMCP is not enabled	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.4 Ensure XDMCP is not enabled	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.10 Ensure XDCMP is not enabled	CIS Debian 10 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.10 Ensure XDMCP is not enabled	CIS AlmaLinux OS 9 v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.8.10 Ensure XDMCP is not enabled	CIS Oracle Linux 9 v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.8.10 Ensure XDMCP is not enabled	CIS Oracle Linux 9 v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
1.8.10 Ensure XDMCP is not enabled	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
1.8.10 Ensure XDMCP is not enabled	CIS Rocky Linux 8 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.5.4 Ensure the NGINX reverse proxy does not enable information disclosure	CIS NGINX Benchmark v2.1.0 L1 Loadbalancer	Unix	SYSTEM AND SERVICES ACQUISITION
3.2 Configure Security Auditing Flags per local organizational requirements - 'audit successful/failed administrative events'	CIS Apple macOS 10.13 L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
3.2 Configure Security Auditing Flags per local organizational requirements - 'audit successful/failed file deletion events'	CIS Apple macOS 10.13 L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
3.2 Configure Security Auditing Flags per local organizational requirements - 'audit successful/failed login/logout events'	CIS Apple macOS 10.13 L2 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5.6 (L2) Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes (recommended)'	CIS Microsoft Intune for Windows 10 v4.0.0 L2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.5.6 (L2) Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes (recommended)'	CIS Microsoft Intune for Windows 11 v4.0.0 L2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
8.1.1 Set Warning Banner for Standard Login Services - /etc/issue perms	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
8.1.1 Set Warning Banner for Standard Login Services - /etc/issue.net perms	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
8.1.1 Set Warning Banner for Standard Login Services - /etc/motd	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
8.1.1 Set Warning Banner for Standard Login Services - /etc/motd perms	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
18.4.5 (L2) Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes (recommended)'	CIS Microsoft Windows Server 2008 Domain Controller Level 2 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.5.5 (L2) Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes'	CIS Microsoft Windows Server 2025 v1.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
18.5.6 (L2) Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.5.6 (L2) Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.5.6 (L2) Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.5.6 (L2) Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L2 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.5.6 (L2) Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.5.6 (L2) Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
CISC-RT-000260 - The Cisco perimeter switch must be configured to only allow incoming communications from authorized sources to be routed to authorized destinations.	DISA Cisco NX OS Switch RTR STIG v3r3	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
CISC-RT-000480 - The Cisco BGP switch must be configured to use a unique key for each autonomous system (AS) that it peers with.	DISA Cisco NX OS Switch RTR STIG v3r3	Cisco	ACCESS CONTROL, CONFIGURATION MANAGEMENT
CISC-RT-000500 - The Cisco BGP router must be configured to reject inbound route advertisements for any prefixes belonging to the local autonomous system (AS).	DISA Cisco IOS Router RTR STIG v3r3	Cisco	ACCESS CONTROL
DISA_MongoDB_Enterprise_Advanced_7.x_STIG_v1r1_Unix.audit from DISA MongoDB Enterprise Advanced 7.x STIG v1r1	DISA MongoDB Enterprise Advanced 7.x STIG v1r1	Unix
DISA_STIG_Apple_OS_X_10.14_v2r6.audit from DISA Apple OS X 10.14 (Mojave) v2r6 STIG	DISA STIG Apple Mac OSX 10.14 v2r6	Unix
DISA_STIG_Apple_OS_X_10.15_v1r10.audit from DISA Apple OS X 10.15 (Catalina) v1r10 STIG	DISA STIG Apple Mac OSX 10.15 v1r10	Unix
GEN000700 - User passwords must be changed at least every 60 days.	DISA STIG for Oracle Linux 5 v2r1	Unix	IDENTIFICATION AND AUTHENTICATION
GEN002320 - Audio devices must have mode 0660 or less permissive.	DISA STIG AIX 6.1 v1r14	Unix	ACCESS CONTROL
GEN002320 - Audio devices must have mode 0660 or less permissive.	DISA STIG AIX 5.3 v1r2	Unix	ACCESS CONTROL
GEN002340 - Audio devices must be owned by root - '/dev/audio*'	DISA STIG for Oracle Linux 5 v2r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
GEN002340 - Audio devices must be owned by root - /dev/audio*	DISA STIG Solaris 10 X86 v2r4	Unix	CONFIGURATION MANAGEMENT
GEN007960 - The 'ldd' command must be disabled unless it protects against the execution of untrusted files.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	CONFIGURATION MANAGEMENT
Lockout for failed password attempts - 'auth [default=die] pam_faillock.so authfail audit deny=5 unlock_time=900'	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix	ACCESS CONTROL
OL6-00-000274 - The system must prohibit the reuse of passwords within five iterations - system-auth	DISA STIG Oracle Linux 6 v2r7	Unix	IDENTIFICATION AND AUTHENTICATION
OL6-00-000536 - The Oracle Linux operating system must use the invoking user's password for privilege escalation when using 'sudo' - rootpw	DISA STIG Oracle Linux 6 v2r7	Unix	ACCESS CONTROL
OL07-00-010342 - The Oracle Linux operating system must use the invoking user's password for privilege escalation when using 'sudo' - sudo.	DISA Oracle Linux 7 STIG v3r3	Unix	ACCESS CONTROL
OL08-00-010383 - OL 8 must use the invoking user's password for privilege escalation when using "sudo".	DISA Oracle Linux 8 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
SLES-12-010112 - The SUSE operating system must use the invoking user's password for privilege escalation when using 'sudo' - sudo.	DISA SLES 12 STIG v3r3	Unix	ACCESS CONTROL

Detections

Analytics

Item Search