Item Search

Name	Audit Name	Plugin	Category
3.10 Ensure Windows local groups are not SQL Logins	CIS Microsoft SQL Server 2019 v1.5.0 L1 Database Engine	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.10 Ensure Windows local groups are not SQL Logins	CIS SQL Server 2017 Database L1 AWS RDS v1.3.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.10 Ensure Windows local groups are not SQL Logins	CIS SQL Server 2017 Database L1 DB v1.3.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
7.2 Set Strong Password Creation Policies - DICTIONDBDIR = /var/passwd	CIS Solaris 11.2 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - HISTORY = 10	CIS Solaris 11.2 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - DICTIONDBDIR = /var/passwd	CIS Solaris 11 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MAXREPEATS = 0	CIS Solaris 11.1 L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MAXREPEATS = 0	CIS Solaris 11 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MINDIFF = 3	CIS Solaris 11.1 L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MINDIFF = 3	CIS Solaris 11 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - MINUPPER = 1	CIS Solaris 11 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - PASSLENGTH = 8	CIS Solaris 11.1 L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - WHITESPACE = yes	CIS Solaris 11.1 L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - WHITESPACE = yes	CIS Solaris 11 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
7.2 Set Strong Password Creation Policies - WHITESPACE = yes	CIS Solaris 11.2 L1 v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
18.10.9.1.7 (BL) Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Save BitLocker recovery information to AD DS for fixed data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.1.7 (L1) Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Save BitLocker recovery information to AD DS for fixed data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.2.3 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.2.3 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BL NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.2.3 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.3.7 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Save BitLocker recovery information to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BL	Windows	MEDIA PROTECTION
18.10.9.3.7 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Save BitLocker recovery information to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	MEDIA PROTECTION
18.10.9.3.15 (BL) Ensure 'Deny write access to removable drives not protected by BitLocker: Do not allow write access to devices configured in another organization' is set to 'Enabled: False'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BL NG	Windows	MEDIA PROTECTION
18.10.9.3.15 (L1) Ensure 'Deny write access to removable drives not protected by BitLocker: Do not allow write access to devices configured in another organization' is set to 'Enabled: False'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	MEDIA PROTECTION
18.10.10.1.7 (BL) Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Save BitLocker recovery information to AD DS for fixed data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.1.7 (BL) Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Save BitLocker recovery information to AD DS for fixed data drives' is set to 'Enabled: False'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.2.3 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.2.3 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.2.3 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.3.4 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Password' is set to 'Enabled: Do not allow 48-digit recovery password'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.10.10.3.4 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Password' is set to 'Enabled: Do not allow 48-digit recovery password'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	MEDIA PROTECTION
18.10.10.3.4 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Password' is set to 'Enabled: Do not allow 48-digit recovery password'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.5 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.5 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	MEDIA PROTECTION
18.10.10.3.7 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Save BitLocker recovery information to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.10.10.3.7 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Save BitLocker recovery information to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 11 Enterprise v4.0.0 BitLocker	Windows	MEDIA PROTECTION
18.10.10.3.7 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Save BitLocker recovery information to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.12 (BL) Ensure 'Deny write access to removable drives not protected by BitLocker: Do not allow write access to devices configured in another organization' is set to 'Enabled: False'	CIS Microsoft Windows 11 Stand-alone v4.0.0 BL	Windows	MEDIA PROTECTION
18.10.10.3.15 (BL) Ensure 'Deny write access to removable drives not protected by BitLocker: Do not allow write access to devices configured in another organization' is set to 'Enabled: False'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.10.36.1 (L2) Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v3.0.1 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.36.1 (L2) Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.36.1 Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.36.1 Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.36.1 Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.37.1 (L2) Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v4.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.37.1 (L2) Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.37.2 (L2) Ensure 'Turn off location' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L2 v3.0.0	Windows	CONFIGURATION MANAGEMENT
20.1 Ensure 'Accounts require passwords' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	IDENTIFICATION AND AUTHENTICATION
JUSX-VN-000004 - The Juniper SRX Services Gateway VPN device also fulfills the role of IDPS in the architecture, the device must inspect the VPN traffic in compliance with DoD IDPS requirements.	DISA Juniper SRX Services Gateway VPN v3r1	Juniper	ACCESS CONTROL
SQL4-00-015200 - SQL Server must be monitored to discover unauthorized changes to stored procedures.	DISA STIG SQL Server 2014 Database Audit v1r7	MS_SQLDB	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search