Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.1.7 Ensure udf kernel module is not availableCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT

1.1.1.8 Ensure usb-storage kernel module is not availableCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY

1.1.2.3.1 Ensure separate partition exists for /homeCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, CONFIGURATION MANAGEMENT, MEDIA PROTECTION

1.1.2.4.1 Ensure separate partition exists for /varCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, CONFIGURATION MANAGEMENT, MEDIA PROTECTION

1.1.2.5.1 Ensure separate partition exists for /var/tmpCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, CONFIGURATION MANAGEMENT, MEDIA PROTECTION

1.1.2.7.1 Ensure separate partition exists for /var/log/auditCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

1.3.1.4 Ensure all AppArmor Profiles are enforcingCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, MEDIA PROTECTION

1.7.6 Ensure GDM automatic mounting of removable media is disabledCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, MEDIA PROTECTION

1.7.7 Ensure GDM disabling automatic mounting of removable media is not overriddenCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

2.1.1 Ensure autofs services are not in useCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY

2.1.2 Ensure avahi daemon services are not in useCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

3.1.3 Ensure bluetooth services are not in useCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT

3.2.2 Ensure tipc kernel module is not availableCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

3.2.3 Ensure rds kernel module is not availableCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

3.2.4 Ensure sctp kernel module is not availableCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

5.3.3.1.3 Ensure password failed attempts lockout includes root accountCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL

5.4.1.2 Ensure minimum password age is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

IDENTIFICATION AND AUTHENTICATION

6.1.3 Ensure cryptographic mechanisms are used to protect the integrity of audit toolsCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

SYSTEM AND INFORMATION INTEGRITY

6.4.1.1 Ensure auditd packages are installedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

6.4.1.2 Ensure auditd service is enabled and activeCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

6.4.2.1 Ensure audit log storage size is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.4.2.2 Ensure audit logs are not automatically deletedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.4.2.3 Ensure system is disabled when audit logs are fullCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

6.4.3.1 Ensure changes to system administration scope (sudoers) is collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.4.3.3 Ensure events that modify the sudo log file are collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.4.3.4 Ensure events that modify date and time information are collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

6.4.3.5 Ensure events that modify the system's network environment are collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

6.4.3.6 Ensure use of privileged commands are collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.4.3.7 Ensure unsuccessful file access attempts are collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.4.3.8 Ensure events that modify user/group information are collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.4.3.9 Ensure discretionary access control permission modification events are collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

6.4.3.10 Ensure successful file system mounts are collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

6.4.3.11 Ensure session initiation information is collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.4.3.12 Ensure login and logout events are collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.4.3.14 Ensure events that modify the system's Mandatory Access Controls are collectedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

6.4.3.16 Ensure successful and unsuccessful attempts to use the setfacl command are recordedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

6.4.3.17 Ensure successful and unsuccessful attempts to use the chacl command are recordedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

6.4.3.18 Ensure successful and unsuccessful attempts to use the usermod command are recordedCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

6.4.3.20 Ensure the audit configuration is immutableCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

6.4.3.21 Ensure the running and on disk configuration is the sameCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

AUDIT AND ACCOUNTABILITY

6.4.4.1 Ensure audit log files mode is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

6.4.4.2 Ensure audit log files owner is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

6.4.4.3 Ensure audit log files group owner is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

6.4.4.4 Ensure the audit log file directory mode is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

6.4.4.5 Ensure audit configuration files mode is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

6.4.4.6 Ensure audit configuration files owner is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

6.4.4.7 Ensure audit configuration files group owner is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

6.4.4.8 Ensure audit tools mode is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

6.4.4.9 Ensure audit tools owner is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION

6.4.4.10 Ensure audit tools group owner is configuredCIS Debian Linux 11 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION