Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.9 Disable AutomountingCIS Fedora 28 Family Linux Server L1 v2.0.0Unix

MEDIA PROTECTION

1.7.7 Ensure GDM disabling automatic mounting of removable media is not overriddenCIS Debian Linux 13 v1.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

1.7.7 Ensure GDM disabling automatic mounting of removable media is not overriddenCIS Debian Linux 13 v1.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

2.2.15 Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'CIS Microsoft Windows 11 Enterprise v5.0.1 L1Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL

2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NGWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.16 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests'CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NGWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.16 Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

ACCESS CONTROL

2.3.1 Ensure ftp client is not installedCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT

3.2.2 Ensure sctp kernel module is not availableCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT

3.3.1.17 Ensure net.ipv4.conf.default.log_martians is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT

3.3.2.1 Ensure net.ipv6.conf.all.forwarding is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT

3.3.2.5 Ensure net.ipv6.conf.all.accept_source_route is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT

4.7.1 (L1) Ensure 'Allow Print Spooler to accept client connections' is set to 'Disabled'CIS Microsoft Intune for Windows 10 v4.0.0 L1Windows

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

4.7.1 (L1) Ensure 'Allow Print Spooler to accept client connections' is set to 'Disabled'CIS Microsoft Intune for Windows 11 v4.0.0 L1Windows

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

5.1.1.2 Ensure access to /etc/crontab is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

ACCESS CONTROL, MEDIA PROTECTION

5.1.1.4 Ensure access to /etc/cron.daily is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

ACCESS CONTROL, MEDIA PROTECTION

5.1.1.5 Ensure access to /etc/cron.weekly is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

ACCESS CONTROL, MEDIA PROTECTION

5.1.1.8 Ensure access to crontab is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

ACCESS CONTROL

5.2.1 Ensure access to /etc/ssh/sshd_config is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

ACCESS CONTROL, MEDIA PROTECTION

5.2.7 Ensure sshd ClientAliveInterval and ClientAliveCountMax are configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

5.2.10 Ensure sshd HostbasedAuthentication is disabledCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

5.2.18 Ensure sshd MaxStartups is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

5.3.16 Ensure only FIPS 140-2 ciphers are used for SSHCIS Amazon Linux 2 STIG v2.0.0 STIGUnix

ACCESS CONTROL, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

5.4.1.2 Ensure libpwquality is installedCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.4.2.3.4 Ensure pam_pwhistory includes use_authtokCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

5.4.2.4.3 Ensure pam_unix includes a strong password hashing algorithmCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

5.5.1.2 Ensure minimum password days is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.5.1.4 Ensure strong password hashing algorithm is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

5.5.2.5 Ensure root path integrityCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

5.5.2.6 Ensure root user umask is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

ACCESS CONTROL, MEDIA PROTECTION

6.1.1.3 Ensure journald Compress is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT

6.1.2.2 Ensure rsyslog service is enabled and activeCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.3.2 Ensure filesystem integrity is regularly checkedCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used - openssl versionCIS PostgreSQL 9.5 OS v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

7.2.2 Ensure /etc/shadow password fields are not emptyCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT

7.2.3 Ensure all groups in /etc/passwd exist in /etc/groupCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

ACCESS CONTROL, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, MEDIA PROTECTION

7.2.6 Ensure no duplicate user names existCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

7.2.7 Ensure no duplicate group names existCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

7.2.9 Ensure local interactive user dot files access is configuredCIS Amazon Linux 2 v4.0.0 L1 ServerUnix

ACCESS CONTROL, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, MEDIA PROTECTION

18.6.8.2 Ensure 'Audit server does not support encryption' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BLWindows

AUDIT AND ACCOUNTABILITY

18.6.8.3 Ensure 'Audit server does not support signing' is set to 'Enabled'CIS Microsoft Windows Server 2025 v2.0.0 L1 MSWindows

AUDIT AND ACCOUNTABILITY

18.6.8.3 Ensure 'Audit server does not support signing' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v5.0.1 L1Windows

AUDIT AND ACCOUNTABILITY

89.13 (L1) Ensure 'Deny Access From Network' to include 'Guests, Local account'CIS Microsoft Intune for Windows 10 v4.0.0 L1Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

89.13 (L1) Ensure 'Deny Access From Network' to include 'Guests, Local account'CIS Microsoft Intune for Windows 11 v4.0.0 L1Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

CIS_MS_Windows_8.1_v2.4.1_Level_1.audit from CIS Microsoft Windows 8.1 Workstation Benchmark v2.4.1CIS Microsoft Windows 8.1 v2.4.1 L1Windows
DTOO114 - Open/Save actions for Excel 2 worksheets must be blocked.DISA STIG Microsoft Excel 2013 v1r8Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO114 - Open/Save actions for Excel 2 worksheets must be blocked.DISA STIG Microsoft Excel 2016 v2r2Windows

SYSTEM AND COMMUNICATIONS PROTECTION

GEN006460 - Any NIS+ server must be operating at security level 2.DISA STIG Solaris 10 SPARC v2r4Unix

CONFIGURATION MANAGEMENT

WPAW-00-001000 - The Windows PAW must be configured so that all non-administrative-related applications and functions are blocked or removed from the PAW platform, including but not limited to email, Internet browsing, and line-of-business applications.DISA Microsoft Windows PAW STIG v3r2Windows

CONFIGURATION MANAGEMENT