Item Search

Name	Audit Name	Plugin	Category
1.12 Ensure 'Smart Lock' is set to 'Disabled'	AirWatch - CIS Google Android v1.3.0 L2	MDM	CONFIGURATION MANAGEMENT
2.7 Ensure an IAM group for administration purposes is created	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws
3.1.15 Ensure the correct SQL statements generating errors are recorded	CIS PostgreSQL 14 DB v 1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.15 Ensure the correct SQL statements generating errors are recorded	CIS PostgreSQL 15 DB v1.1.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.15 Ensure the correct SQL statements generating errors are recorded	CIS PostgreSQL 16 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.15 Ensure the correct SQL statements generating errors are recorded	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
4.3.4 Ensure users must provide password for escalation	CIS Red Hat Enterprise Linux 7 v4.0.0 L2 Workstation	Unix	ACCESS CONTROL
4.3.4 Ensure users must provide password for escalation	CIS Oracle Linux 8 Workstation L2 v3.0.0	Unix	ACCESS CONTROL
6.10 Ensure NAT Gateways are created in at least 2 Availability Zones - Subnet1	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.18 Ensure that all zones have Zone Protection Profiles with all Reconnaissance Protection settings enabled, tuned, and set actions	CIS Palo Alto Firewall 6 Benchmark L1 v1.0.0	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
6.18 Ensure that all zones have Zone Protection Profiles with all Reconnaissance Protection settings enabled, tuned, and set actions	CIS Palo Alto Firewall 7 Benchmark L1 v1.0.0	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
7.3 Computer Name Considerations	CIS Apple OSX 10.9 L2 v1.3.0	Unix
EX13-MB-000165 - The Exchange Mail Store storage quota must issue a warning.	DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Consumer Key'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Error URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain Consumer Secret'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain Error URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain Execution User ID'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain is not configured'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Authorized Endpoint URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Default Scope'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect is not configured'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Salesforce Execution User ID'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Salesforce is not configured'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : CronTrigger - 'Cron Jobs with Status of ERROR'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Email Services - 'IsAuthenticationRequired = True'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Monitoring Login History - 'Inactive users'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Monitoring Login History - 'No users are frozen'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Network-Based Security - 'Trusted IP Range has been defined'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Network-Based Security - 'Trusted IP Ranges exist'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Object Permissions - 'DefaultCalendarAccess should not be Show Details or Show Details and Add Events'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Object Permissions - 'DefaultCaseAccess should not be Public Read/Write or Public Read/Write/Transfer'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Object Permissions - 'DefaultContactAccess should not be Public Read/Write or Public Read/Write/Transfer'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Password Policies - 'invalid login attempts <= 5'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Password Policies - 'password history >= 3'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Setting Session Security - 'Disable timeout warning = false'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Setting Session Security - 'Enable clickjack protection for setup pages = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Setting Session Security - 'Enable CSRF protection on GET requests on non-setup pages = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Setting Session Security - 'Force relogin after Login-As-User = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
SalesForce.com : Setting Session Security - 'Review Active Users'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
SalesForce.com : Setting Session Security - 'Review Inactive Users'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review Salesforce console User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review Salesforce CRM Content User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review user types'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review Users that have not changed their password recently'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Session Security - 'Review Work.com User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Session Timeout <= 2 hours'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Session Security - 'Use POST requests for cross-domain sessions = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : User Access - Users have only been modified by known administrators	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL

Detections

Analytics

Item Search