Item Search

Name	Audit Name	Plugin	Category
1.2.1 (L1) Ensure 'Configure the list of domains on which Safe Browsing will not trigger warnings' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.2.2 (L1) Ensure 'Safe Browsing Protection Level' is set to 'Enabled: Safe Browsing is active in the standard mode.' or higher	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.3.2 (L1) Ensure 'Control use of insecure content exceptions' is set to 'Enabled: Do not allow any site to load mixed content'	CIS Microsoft Edge v3.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.27 (L1) Ensure 'Suppress lookalike domain warnings on domains' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.3.1 Authentication	CIS Cisco IOS XR 7.x v1.0.1 L2	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
2.4.1 Authentication	CIS Cisco IOS XR 7.x v1.0.1 L2	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
2.13 (L1) Ensure 'Disable proceeding from the Safe Browsing warning page' is set to 'Enabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.14.1 (L1) Ensure 'Configure the list of domains on which Safe Browsing will not trigger warnings' is set to 'Disabled'	CIS Google Chrome Group Policy v1.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.14.3 (L1) Ensure 'Disable proceeding from the Safe Browsing warning page' is set to 'Enabled'	CIS Google Chrome Group Policy v1.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.15 (L2) Ensure 'Force Google SafeSearch' is set to 'Enabled'	CIS Google Chrome L2 v3.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.51 (L1) Ensure 'List of names that will bypass the HSTS policy check' is set to 'Disabled'	CIS Google Chrome Group Policy v1.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.59 (L1) Ensure 'Suppress lookalike domain warnings on domains' is set to 'Disabled'	CIS Google Chrome Group Policy v1.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.71 (L2) Ensure 'Allow proceeding from the SSL warning page' is set to 'Disabled'	CIS Google Chrome Group Policy v1.0.0 L2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
4.3.2 Ensure that constrained delegation is configured for SPNEGO (Simple and Protected GSSAPI Negotiation Mechanism)	CIS IBM WebSphere Liberty v1.0.0 L2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4 (L1) Host must filter Bridge Protocol Data Unit (BPDU) packets	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	SYSTEM AND COMMUNICATIONS PROTECTION
5.12 Ensure an AWS Managed Config Rule for EIPs attached to EC2 instances within VPC	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.23 Ensure that 'Cloud Inline Categorization' on URL Filtering profiles are enabled if 'Advanced Threat Prevention' is available	CIS Palo Alto Firewall 11 v1.1.0 L1	Palo_Alto	SYSTEM AND COMMUNICATIONS PROTECTION
6.23 Ensure that 'Cloud Inline Categorization' on URL Filtering profiles are enabled if 'Advanced Threat Prevention' is available	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	SYSTEM AND COMMUNICATIONS PROTECTION
6.26 Ensure the App tier ELB is created as Internal	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.27 Ensure EC2 instances within Web Tier have no Elastic / Public IP addresses associated	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.30 Ensure RDS Database is not publically accessible	CIS Amazon Web Services Three-tier Web Architecture L2 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
9.1.1 (L1) Ensure 'Windows Firewall: Domain: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.1.1 (L1) Ensure 'Windows Firewall: Domain: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows Server 2019 v4.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.1.2 Ensure 'Windows Firewall: Domain: Inbound connections' is set to 'Block (default)'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.1.3 Ensure 'Windows Firewall: Domain: Outbound connections' is set to 'Allow (default)'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.1.3 Ensure 'Windows Firewall: Domain: Outbound connections' is set to 'Allow (default)'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.2.1 (L1) Ensure 'Windows Firewall: Private: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows Server 2022 v4.0.0 L1 DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.2.1 (L1) Ensure 'Windows Firewall: Private: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.2.1 (L1) Ensure 'Windows Firewall: Private: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.2.1 (L1) Ensure 'Windows Firewall: Private: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.2.1 (L1) Ensure 'Windows Firewall: Private: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.2.2 Ensure 'Windows Firewall: Private: Inbound connections' is set to 'Block (default)'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.2.2 Ensure 'Windows Firewall: Private: Inbound connections' is set to 'Block (default)'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.2.4 Ensure 'Windows Firewall: Private: Settings: Display a notification' is set to 'No'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.3.1 (L1) Ensure 'Windows Firewall: Public: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows Server 2022 v4.0.0 L1 DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.3.1 (L1) Ensure 'Windows Firewall: Public: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.3.1 (L1) Ensure 'Windows Firewall: Public: Firewall state' is set to 'On (recommended)'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.3.2 Ensure 'Windows Firewall: Public: Inbound connections' is set to 'Block (default)'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
9.3.3 Ensure 'Windows Firewall: Public: Outbound connections' is set to 'Allow (default)'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
38.1 (L1) Ensure 'Enable Domain Network Firewall' is set to 'True'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
38.8 (L1) Ensure 'Enable Private Network Firewall' is set to 'True'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
ICMP: Do not return Proxy ARP requests	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	SYSTEM AND COMMUNICATIONS PROTECTION
vNetwork : reject-mac-changes-dvportgroup	VMWare vSphere 6.5 Hardening Guide	VMware	SYSTEM AND COMMUNICATIONS PROTECTION
vNetwork : reject-mac-changes-dvportgroup	VMWare vSphere 6.0 Hardening Guide	VMware	SYSTEM AND COMMUNICATIONS PROTECTION
vNetwork : reject-promiscuous-mode-dvportgroup	VMWare vSphere 6.5 Hardening Guide	VMware	SYSTEM AND COMMUNICATIONS PROTECTION
WatchGuard : ICMP Error Handling - 'host-unreachable'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	SYSTEM AND COMMUNICATIONS PROTECTION
WatchGuard : ICMP Error Handling - 'pmtu-discovery'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	SYSTEM AND COMMUNICATIONS PROTECTION
WatchGuard : ICMP Error Handling - 'port-unreachable'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	SYSTEM AND COMMUNICATIONS PROTECTION
WatchGuard : ICMP Error Handling - 'protocol-unreachable'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	SYSTEM AND COMMUNICATIONS PROTECTION
WatchGuard : ICMP Error Handling - 'time-exceeded'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search