Item Search

Name	Audit Name	Plugin	Category
1.1.2 Ensure /tmp is configured	CIS CentOS 6 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure /tmp is configured	CIS Red Hat 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure /tmp is configured	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure /tmp is configured	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure /tmp is configured	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure /tmp is configured	CIS CentOS 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.4 (L1) Ensure administrative accounts use licenses with a reduced application footprint	CIS Microsoft 365 Foundations v5.0.0 L1 E5	microsoft_azure	ACCESS CONTROL
1.1.4 (L1) Ensure administrative accounts use licenses with a reduced application footprint	CIS Microsoft 365 Foundations v5.0.0 L1 E3	microsoft_azure	ACCESS CONTROL
1.1.11 Ensure separate partition exists for /var/tmp	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.11 Ensure separate partition exists for /var/tmp	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.1.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled	CIS Apple macOS 13.0 Ventura v3.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.1.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled	CIS Apple macOS 15.0 Sequoia v1.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.4.11 Ensure AirDrop Is Disabled	CIS Apple macOS 10.14 v2.0.0 L1	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.1.1 Ensure Home Folders Are Secure	CIS Apple macOS 10.15 Catalina v3.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.1 Ensure Home Folders Are Secure	CIS Apple macOS 10.14 v2.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.1 Ensure Home Folders Are Secure	CIS Apple macOS 11.0 Big Sur v4.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.1 Secure Home Folders	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
5.1.1 Secure Home Folders	CIS Apple macOS 10.13 L1 v1.1.0	Unix	CONFIGURATION MANAGEMENT
5.4.1 Ensure the GKE Metadata Server is Enabled	CIS Google Kubernetes Engine (GKE) v1.7.0 L2	GCP	CONFIGURATION MANAGEMENT
5.5.2 Ensure Node Auto-Repair is enabled for GKE nodes	CIS Google Kubernetes Engine (GKE) v1.7.0 L2	GCP	RISK ASSESSMENT
5.5.4 When creating New Clusters - Automate GKE version management using Release Channels	CIS Google Kubernetes Engine (GKE) v1.7.0 L1	GCP	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
5.5.5 Ensure Shielded GKE Nodes are Enabled	CIS Google Kubernetes Engine (GKE) v1.7.0 L1	GCP	CONFIGURATION MANAGEMENT
5.5.6 Ensure Integrity Monitoring for Shielded GKE Nodes is Enabled	CIS Google Kubernetes Engine (GKE) v1.7.0 L1	GCP	RISK ASSESSMENT
5.5.7 Ensure Secure Boot for Shielded GKE Nodes is Enabled	CIS Google Kubernetes Engine (GKE) v1.7.0 L2	GCP	RISK ASSESSMENT
6.1 Ensure Root Domain Alias Record Points to ELB	CIS Amazon Web Services Three-tier Web Architecture L2 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.2.4 Ensure that a multifactor authentication policy exists for all users	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
6.4 Ensure DNS sinkholing is configured on all anti-spyware profiles in use	CIS Palo Alto Firewall 9 v1.1.0 L1	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
6.19 Create the Web tier Security Group and ensure it allows inbound connections from Web tier ELB Security Group for explicit ports	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.22 Create the App tier Security Group and ensure it allows inbound connections from App tier ELB Security Group for explicit ports	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.24 Create the Data tier Security Group and ensure it allows inbound connections from App tier Security Group for explicit ports	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
7.4 Software Inventory Considerations	CIS Apple OSX 10.9 L2 v1.3.0	Unix
7.4 Software Inventory Considerations	CIS Apple OSX 10.11 El Capitan L2 v1.1.0	Unix
8.2.2 (L1) Ensure communication with unmanaged Teams users is disabled	CIS Microsoft 365 Foundations v5.0.0 L1 E5	microsoft_azure	CONFIGURATION MANAGEMENT
8.2.2 (L1) Ensure communication with unmanaged Teams users is disabled	CIS Microsoft 365 Foundations v5.0.0 L1 E3	microsoft_azure	CONFIGURATION MANAGEMENT
9.1.12 Ensure That 'All users with the following roles' is set to 'Owner'	CIS Microsoft Azure Foundations v4.0.0 L1	microsoft_azure	INCIDENT RESPONSE
18.10.16.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.16.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.16.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.16.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.16.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.16.1 Ensure 'Download Mode' is set to 'Enabled' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.16.1 Ensure 'Download Mode' is set to 'Enabled' (STIG only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.16.1 Ensure 'Download Mode' is set to 'Enabled' (STIG only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.16.1 Ensure 'Download Mode' is set to 'Enabled' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.17.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.92.4.3 (L1) Ensure 'Select when Quality Updates are received' is set to 'Enabled: 0 days'	CIS Microsoft Windows Server 2019 v3.0.1 L1 DC	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.92.4.3 (L1) Ensure 'Select when Quality Updates are received' is set to 'Enabled: 0 days'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
23.1 (L1) Ensure 'DO Download Mode' is NOT set to 'HTTP blended with Internet Peering'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
23.1 (L1) Ensure 'DO Download Mode' is NOT set to 'HTTP blended with Internet Peering'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
WPAW-00-002200 - The Windows PAW must be configured so that all outbound connections to the Internet from a PAW are blocked.	DISA MS Windows Privileged Access Workstation v3r1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search