Item Search

Name	Audit Name	Plugin	Category
1.7 Ensure' WebDav' feature is disabled	CIS IIS 10 v1.2.1 Level 1	Windows	CONFIGURATION MANAGEMENT, PLANNING, SYSTEM AND SERVICES ACQUISITION
4.10.31.1 (L1) Ensure 'Enable RPC Endpoint Mapper Client Authentication' is set to 'Enabled'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
4.11 Ensure 'Dynamic IP Address Restrictions' is enabled - Deny By Conccurent Requests	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.11 Ensure 'Dynamic IP Address Restrictions' is enabled - Deny By Request Rate	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.11 Ensure 'Dynamic IP Address Restrictions' is enabled - Not Logging Only Mode	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
5.3 Ensure 'ETW Logging' is enabled	CIS IIS 10 v1.2.1 Level 1	Windows	AUDIT AND ACCOUNTABILITY
5.3 Ensure 'ETW Logging' is enabled - Sites logFormat W3C	CIS IIS 10 v1.2.1 Level 1	Windows	AUDIT AND ACCOUNTABILITY
5.3 Ensure 'ETW Logging' is enabled - Sites logFormat W3C with ETW target	CIS IIS 10 v1.2.1 Level 1	Windows	AUDIT AND ACCOUNTABILITY
5.5 Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	CONFIGURATION MANAGEMENT
5.5 Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	CONFIGURATION MANAGEMENT
5.6 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	CONFIGURATION MANAGEMENT
5.6 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.7 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.7 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
5.7 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	CONFIGURATION MANAGEMENT
5.7 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	CONFIGURATION MANAGEMENT
5.7 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
5.7 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
5.7 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
5.7 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.7 Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1	Windows	CONFIGURATION MANAGEMENT
5.7 Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	CONFIGURATION MANAGEMENT
5.7 Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.7 Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
81.7 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
81.7 (L1) Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
CIS Microsoft IIS 8 Benchmark v1.5.1 Level 1	CIS IIS 8.0 v1.5.1 Level 1	Windows
CIS Microsoft IIS 8 Benchmark v1.5.1 Level 2	CIS IIS 8.0 v1.5.1 Level 2	Windows
DISA_IIS_6.0_Web_Site_v6r16.audit from DISA Microsoft IIS 6.0 Site v6r16 STIG	DISA STIG IIS 6.0 Site Checklist v6r16	Windows
DISA_STIG_MSSQL_2012_Database_v1r20.audit from DISA Microsoft SQL Server Instance 2012 v1r20 STIG	DISA STIG SQL Server 2012 Database Audit v1r20	MS_SQLDB
EX16-ED-000570 - Exchange must render hyperlinks from email sources from non-.mil domains as unclickable.	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r6	Windows	SYSTEM AND INFORMATION INTEGRITY
EX19-ED-000122 - Active hyperlinks in messages from non .mil domains must be rendered unclickable.	DISA Microsoft Exchange 2019 Edge Server STIG v2r2	Windows	SYSTEM AND INFORMATION INTEGRITY
EX19-ED-000238 - Exchange must render hyperlinks from email sources from non-.mil domains as unclickable.	DISA Microsoft Exchange 2019 Edge Server STIG v2r2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
GEN000100 - The operating system must be a supported release.	DISA STIG Solaris 10 X86 v2r4	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA STIG for Oracle Linux 5 v2r1	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	CONFIGURATION MANAGEMENT
IISW-SI-000210 - The IIS 8.5 website must produce log records containing sufficient information to establish the identity of any user/subject or process associated with an event.	DISA IIS 8.5 Site v2r9	Windows	AUDIT AND ACCOUNTABILITY
IISW-SI-000215 - Mappings to unused and vulnerable scripts on the IIS 8.5 website must be removed.	DISA IIS 8.5 Site v2r9	Windows	CONFIGURATION MANAGEMENT
IISW-SI-000217 - The IIS 8.5 website must have Web Distributed Authoring and Versioning (WebDAV) disabled.	DISA IIS 8.5 Site v2r9	Windows	CONFIGURATION MANAGEMENT
IISW-SI-000220 - A private websites authentication mechanism must use client certificates to transmit session identifier to assure integrity.	DISA IIS 8.5 Site v2r9	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
IISW-SI-000231 - Directory Browsing on the IIS 8.5 website must be disabled.	DISA IIS 8.5 Site v2r9	Windows	SYSTEM AND INFORMATION INTEGRITY
IISW-SI-000246 - Cookies exchanged between the IIS 8.5 website and the client must use SSL/TLS, have cookie properties set to prohibit client-side scripts from reading the cookie data and must not be compressed.	DISA IIS 8.5 Site v2r9	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IISW-SV-000103 - Both the log file and Event Tracing for Windows (ETW) for the IIS 8.5 web server must be enabled.	DISA IIS 8.5 Server v2r7	Windows	AUDIT AND ACCOUNTABILITY
IISW-SV-000117 - The IIS 8.5 web server must not perform user management for hosted applications.	DISA IIS 8.5 Server v2r7	Windows	CONFIGURATION MANAGEMENT
IISW-SV-000118 - The IIS 8.5 web server must only contain functions necessary for operation.	DISA IIS 8.5 Server v2r7	Windows	CONFIGURATION MANAGEMENT
IISW-SV-000119 - The IIS 8.5 web server must not be both a website server and a proxy server.	DISA IIS 8.5 Server v2r7	Windows	CONFIGURATION MANAGEMENT
IISW-SV-000125 - The IIS 8.5 web server must have Web Distributed Authoring and Versioning (WebDAV) disabled.	DISA IIS 8.5 Server v2r7	Windows	CONFIGURATION MANAGEMENT
IISW-SV-000129 - The IIS 8.5 web server must perform RFC 5280-compliant certification path validation.	DISA IIS 8.5 Server v2r7	Windows	IDENTIFICATION AND AUTHENTICATION
IISW-SV-000138 - Directory Browsing on the IIS 8.5 web server must be disabled.	DISA IIS 8.5 Server v2r7	Windows	SYSTEM AND INFORMATION INTEGRITY
IISW-SV-000200 - The IIS 8.5 MaxConnections setting must be configured to limit the number of allowed simultaneous session requests.	DISA IIS 8.5 Server v2r7	Windows	ACCESS CONTROL

Detections

Analytics

Item Search