Item Search

Name	Audit Name	Plugin	Category
1.2.9 Ensure that the admission control plugin EventRateLimit is set	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master	Unix	SYSTEM AND SERVICES ACQUISITION
1.4.3 Ensure address space layout randomization (ASLR) is enabled	CIS Google Container-Optimized OS v1.2.0 L1 Server	Unix	SYSTEM AND INFORMATION INTEGRITY
1.5.1 Ensure address space layout randomization is enabled	CIS SUSE Linux Enterprise 15 v2.0.1 L1 Workstation	Unix	SYSTEM AND INFORMATION INTEGRITY
1.5.2 Ensure XD/NX support is enabled	CIS Debian 8 Workstation L1 v2.0.2	Unix	SYSTEM AND INFORMATION INTEGRITY
1.5.3 Ensure address space layout randomization (ASLR) is enabled	CIS CentOS Linux 8 Server L1 v2.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
1.6.3 Ensure address space layout randomization (ASLR) is enabled	CIS SUSE Linux Enterprise 12 v3.2.1 L1 Workstation	Unix	SYSTEM AND INFORMATION INTEGRITY
2.15 (L1) Ensure 'Ads setting for sites with intrusive ads' is set to 'Enabled: Do not allow ads on sites with intrusive ads'	CIS Google Chrome Group Policy v1.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
4.2.5 Ensure that the --streaming-connection-idle-timeout argument is not set to 0	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Worker	Unix	SYSTEM AND INFORMATION INTEGRITY
4.2.5 Ensure that the --streaming-connection-idle-timeout argument is not set to 0	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Worker	Unix	SYSTEM AND INFORMATION INTEGRITY
5.7 Services - crontab access is root only - adm exists in cron.allow	CIS IBM AIX 7.1 L2 v2.1.0	Unix	SYSTEM AND INFORMATION INTEGRITY
18.3.3 (L1) Ensure 'Enable Structured Exception Handling Overwrite Protection (SEHOP)' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.3.3 Ensure 'Enable Structured Exception Handling Overwrite Protection (SEHOP)' is set to 'Enabled' - Enabled	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.3.5 (L1) Ensure 'Enable Structured Exception Handling Overwrite Protection (SEHOP)' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.4.5 (L1) Ensure 'LSA Protection' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.5.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.2 (L1) Ensure 'Configure Redirection Guard' is set to 'Enabled: Redirection Guard Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.2 (L1) Ensure 'Configure Redirection Guard' is set to 'Enabled: Redirection Guard Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.2 (L1) Ensure 'Configure Redirection Guard' is set to 'Enabled: Redirection Guard Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.10 (L1) Ensure 'Manage processing of Queue-specific files' is set to 'Enabled: Limit Queue-specific files to Color profiles'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.10 (L1) Ensure 'Manage processing of Queue-specific files' is set to 'Enabled: Limit Queue-specific files to Color profiles'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.7.10 (L1) Ensure 'Manage processing of Queue-specific files' is set to 'Enabled: Limit Queue-specific files to Color profiles'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.8.5.3 Ensure 'Turn On Virtualization Based Security: Virtualization Based Protection of Code Integrity' is set to 'Enabled with UEFI lock'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 MS NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.8.5.7 (NG) Ensure 'Turn On Virtualization Based Security: Secure Launch Configuration' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 NG MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.8.14.1 (L1) Ensure 'Boot-Start Driver Initialization Policy' is set to 'Enabled: Good, unknown and bad but critical'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.1 Ensure 'Turn On Virtualization Based Security' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 NG MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.2 (NG) Ensure 'Turn On Virtualization Based Security: Select Platform Security Level' is set to 'Secure Boot' or higher	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.2 (NG) Ensure 'Turn On Virtualization Based Security: Select Platform Security Level' is set to 'Secure Boot' or higher	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 NG MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.2 Ensure 'Turn On Virtualization Based Security: Select Platform Security Level' is set to 'Secure Boot' or higher	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.3 (NG) Ensure 'Turn On Virtualization Based Security: Virtualization Based Protection of Code Integrity' is set to 'Enabled with UEFI lock'	CIS Microsoft Windows 10 Stand-alone v4.0.0 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.3 (NG) Ensure 'Turn On Virtualization Based Security: Virtualization Based Protection of Code Integrity' is set to 'Enabled with UEFI lock'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 NG MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.4 (NG) Ensure 'Turn On Virtualization Based Security: Require UEFI Memory Attributes Table' is set to 'True (checked)'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 NG MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.5 (NG) Ensure 'Turn On Virtualization Based Security: Credential Guard Configuration' is set to 'Enabled with UEFI lock'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.7 Ensure 'Turn On Virtualization Based Security: Secure Launch Configuration' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 NG DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.13.1 (L1) Ensure 'Boot-Start Driver Initialization Policy' is set to 'Enabled: Good, unknown and bad but critical'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.13.1 (L1) Ensure 'Boot-Start Driver Initialization Policy' is set to 'Enabled: Good, unknown and bad but critical'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.13.1 (L1) Ensure 'Boot-Start Driver Initialization Policy' is set to 'Enabled: Good, unknown and bad but critical'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.25.6 (L1) Ensure 'System ASLR' is set to 'Enabled: Application Opt-In'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.25.6 (L1) Ensure 'System ASLR' is set to 'Enabled: Application Opt-In'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.25.7 (L1) Ensure 'System DEP' is set to 'Enabled: Application Opt-Out'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.26.1 (L1) Ensure 'Allow Custom SSPs and APs to be loaded into LSASS' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.31.2 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - 75668c1f-73b5-4cf0-bb93-3ecf5cb7cc84	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - 26190899-1602-49e8-8b27-eb1d0a1ce869	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - d3e037e1-3eb8-44c8-a917-57927947596d	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.24.2 (L1) Ensure 'Default Action and Mitigation Settings' is set to 'Enabled' (plus subsettings)	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.28.2 Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.29.2 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.44.6 (NG) Ensure 'Turn on Microsoft Defender Application Guard in Managed Mode' is set to 'Enabled: 1'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.76.2.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.76.2.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search