Item Search

Name	Audit Name	Plugin	Category
1.1.16 Ensure separate partition exists for /var/log/audit	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
1.4 SNMP Security - a) SNMP Community Security	Tenable ZTE ROSNG	ZTE_ROSNG	IDENTIFICATION AND AUTHENTICATION
1.4 SNMP Security - c) SNMP Security Protection Function	Tenable ZTE ROSNG	ZTE_ROSNG	SYSTEM AND COMMUNICATIONS PROTECTION
1.6.1.5 Ensure the SELinux mode is enforcing	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.1.4.5 NFS - no root access via NFS exports	CIS IBM AIX 7.1 L1 v2.1.0	Unix	CONFIGURATION MANAGEMENT
3.11 Verify that Docker server certificate file ownership is set to root:root	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
3.11 Verify that Docker server certificate file ownership is set to root:root	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
3.12 Verify that Docker server certificate file permissions are set to 444 or more restrictive	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
3.12 Verify that Docker server certificate file permissions are set to 444 or more restrictive	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
3.13 Verify that Docker server certificate key file ownership is set to root:root	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
3.13 Verify that Docker server certificate key file ownership is set to root:root	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
3.14 Verify that Docker server certificate key file permissions are set to 400	CIS Docker 1.11.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
3.14 Verify that Docker server certificate key file permissions are set to 400	CIS Docker 1.12.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
4.1.1.3 Ensure auditing for processes that start prior to auditd is enabled	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.1 Ensure audit log storage size is configured	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.2.7 Ensure audit_backlog_limit is sufficient	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.7 Ensure kernel module loading and unloading is collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.1.3.11 Ensure unsuccessful unauthorized file access attempts are collected	CIS Amazon Linux 2 STIG v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.4.1.6 Ensure root access is disabled or blocked.	CIS IBM AIX 7 v1.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.4 CIFS - 'cifs.restrict_anonymous = 2'	TNS NetApp Data ONTAP 7G	NetApp	ACCESS CONTROL
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2008 R2 DB Engine L1 v1.7.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS Microsoft SQL Server 2019 v1.5.0 L1 AWS RDS	MS_SQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS Microsoft SQL Server 2019 v1.5.0 L1 Database Engine	MS_SQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
8.4.18 (L2) Ensure Host Guest File System Server is disabled	CIS VMware ESXi 7.0 v1.4.0 L2	VMware	CONFIGURATION MANAGEMENT
18.8.52.1.2 (L2) Ensure 'Enable Windows NTP Server' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	CONFIGURATION MANAGEMENT
18.8.52.1.2 (L2) Ensure 'Enable Windows NTP Server' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L2	Windows	CONFIGURATION MANAGEMENT
26.3 (L1) Ensure 'Device Password Enabled: Min Device Password Complex Characters' is set to 'Digits and lowercase letters are required'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
26.3 (L1) Ensure 'Device Password Enabled: Min Device Password Complex Characters' is set to 'Digits and lowercase letters are required'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
ARST-L2-000020 - The Arista MLS layer 2 switch must uniquely identify all network-connected endpoint devices before establishing any connection.	DISA STIG Arista MLS EOS 4.2x L2S v2r1	Arista	IDENTIFICATION AND AUTHENTICATION
ARST-L2-000150 - The Arista MLS layer 2 switch must enable Unidirectional Link Detection (UDLD) to protect against one-way connections.	DISA STIG Arista MLS EOS 4.2x L2S v2r1	Arista	CONFIGURATION MANAGEMENT
ARST-L2-000170 - The Arista MLS layer 2 switch must have all disabled switch ports assigned to an unused VLAN.	DISA STIG Arista MLS EOS 4.2x L2S v2r1	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
ARST-L2-000180 - The Arista MLS layer 2 switch must not have the default VLAN assigned to any host-facing switch ports.	DISA STIG Arista MLS EOS 4.2x L2S v2r1	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
ARST-L2-000230 - The Arista MLS layer 2 switch must not have any switch ports assigned to the native VLAN.	DISA STIG Arista MLS EOS 4.2x L2S v2r1	Arista	SYSTEM AND COMMUNICATIONS PROTECTION
Excel 2 worksheets	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	MSCT M365 Apps for enterprise 2412 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	Microsoft 365 Apps for Enterprise 2306 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	MSCT Office 2016 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 2 worksheets	MSCT M365 Apps for enterprise 2312 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
PPS9-00-008700 - The EDB Postgres Advanced Server must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.	EDB PostgreSQL Advanced Server OS Linux Audit v2r3	Unix	CONFIGURATION MANAGEMENT
VCFL-67-000005 - vSphere Client must be configured with FIPS 140-2 compliant ciphers for HTTPS connections.	DISA STIG VMware vSphere 6.7 Virgo Client v1r2	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
VCLD-67-000002 - VAMI must be configured with FIPS 140-2 compliant ciphers for HTTPS connections.	DISA STIG VMware vSphere 6.7 VAMI-lighttpd v1r3	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
VCLD-70-000002 - VAMI must be configured with FIPS 140-2 compliant ciphers for HTTPS connections.	DISA STIG VMware vSphere 7.0 VAMI v1r2	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
WBSP-AS-000212 - The WebSphere Application Server Java 2 security must not be bypassed.	DISA IBM WebSphere Traditional 9 Windows STIG v1r1	Windows	ACCESS CONTROL
WBSP-AS-000212 - The WebSphere Application Server Java 2 security must not be bypassed.	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware	Unix	ACCESS CONTROL
WBSP-AS-000212 - The WebSphere Application Server Java 2 security must not be bypassed.	DISA IBM WebSphere Traditional 9 STIG v1r1	Unix	ACCESS CONTROL

Detections

Analytics

Item Search