Item Search

Name	Audit Name	Plugin	Category
1.7.1.1 Ensure message of the day is configured properly	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.1.1 Ensure message of the day is configured properly - banner text	CIS Aliyun Linux 2 L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.8.1 Enable FIPS Mode	CIS Cisco NX-OS v1.2.0 L2	Cisco	IDENTIFICATION AND AUTHENTICATION
1.10 (L2) Host hardware must enable Intel SGX, if available	CIS VMware ESXi 8.0 v1.1.0 L2	VMware	CONFIGURATION MANAGEMENT, MAINTENANCE
2.4.5 Disable Remote Login	CIS Apple OSX 10.9 L1 v1.3.0	Unix	ACCESS CONTROL
3.1.3 Check Responses TTL Field - check-response-ttl=yes	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
3.2.5 Limit OS Privileges of Fenced Mode Process (DB2_LIMIT_FENCED_GROUP)	CIS IBM DB2 11 v1.1.0 Linux OS Level 1	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.5.2 Configure FCoE Zoning	CIS Cisco NX-OS v1.2.0 L2	Cisco	ACCESS CONTROL, CONFIGURATION MANAGEMENT, CONTINGENCY PLANNING, PLANNING, PROGRAM MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION
3.7 Remove LDAP	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
4.1 Ensure SharePoint displays an approved system use notification message or banner before granting access to the system.	CIS Microsoft SharePoint 2016 OS v1.1.0	Windows	ACCESS CONTROL
4.1 Ensure SharePoint displays an approved system use notification message or banner before granting access to the system.	CIS Microsoft SharePoint 2019 OS v1.0.0	Windows	ACCESS CONTROL
4.1.2.2 Ensure Home directories access is configured	CIS IBM AIX 7 v1.0.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.1.2.4 Ensure access on /audit and /etc/security/audit is configured	CIS IBM AIX 7 v1.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.5.3 Verify Permissions on /etc/hosts.allow	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.1 Ensure 'Maximum number of error log files' is set to greater than or equal to '12'	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.1 Ensure 'Maximum number of error log files' is set to greater than or equal to '12'	CIS SQL Server 2017 Database L1 AWS RDS v1.3.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.1 Ensure 'Maximum number of error log files' is set to greater than or equal to '12'	CIS SQL Server 2022 Database L1 AWS RDS v1.1.0	MS_SQLDB	AUDIT AND ACCOUNTABILITY
5.1 Ensure login via 'local' UNIX Domain Socket is configured correctly - local UNIX Domain Socket is configured correctly	CIS PostgreSQL 12 OS v1.1.0	Unix	IDENTIFICATION AND AUTHENTICATION
5.2 Ensure External File System Access is disabled - enable cis	CIS Sybase 15.0 L1 DB v1.1.0	SybaseDB
5.2.4 Ensure Complex Password Must Contain Numeric Character Is Configured	CIS Apple macOS 10.15 Catalina v3.0.0 L2	Unix	IDENTIFICATION AND AUTHENTICATION
5.2.4 Ensure Complex Password Must Contain Numeric Character Is Configured	CIS Apple macOS 11.0 Big Sur v4.0.0 L2	Unix	IDENTIFICATION AND AUTHENTICATION
5.2.5 Ensure Complex Password Must Contain Special Character Is Configured	CIS Apple macOS 11.0 Big Sur v4.0.0 L2	Unix	IDENTIFICATION AND AUTHENTICATION
6.2.11 Use Only Approved Ciphers in Counter Mode - Ciphers aes128-ctr,aes192-ctr,aes256-ctr	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
6.3.5 Limit Password Reuse - password sufficient pam_unix.o <existing options> remember=5	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	IDENTIFICATION AND AUTHENTICATION
7.1.1 Set Password Expiration Days - 1-90	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
7.1.2 Set Password Change Minimum Number of Days - 7+	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	IDENTIFICATION AND AUTHENTICATION
7.1.3 Set Password Expiring Warning Days - PASS_WARN_AGE >= 7	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	IDENTIFICATION AND AUTHENTICATION
8.2 Ensure 'ssl_type' is Set to 'ANY', 'X509', or 'SPECIFIED' for All Remote Users	CIS MySQL 5.7 Community Database L1 v2.0.0	MySQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
8.2 Ensure 'ssl_type' is Set to 'ANY', 'X509', or 'SPECIFIED' for All Remote Users	CIS MySQL 5.7 Enterprise Database L1 v2.0.0	MySQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
8.2 Ensure 'ssl_type' Is Set to 'ANY', 'X509', or 'SPECIFIED' for All Remote Users	CIS MySQL 5.6 Community Database L1 v2.0.0	MySQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.2 Ensure 'SOURCE_SSL_VERIFY_SERVER_CERT' is Set to 'YES' or '1'	CIS Oracle MySQL Enterprise Edition 8.0 v1.4.0 L1 Database	MySQLDB	CONFIGURATION MANAGEMENT
9.2 Ensure 'SOURCE_SSL_VERIFY_SERVER_CERT' is Set to 'YES' or '1'	CIS MySQL 8.0 Community Database L1 v1.1.0	MySQLDB	CONFIGURATION MANAGEMENT
9.2.11 Check Groups in /etc/passwd	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
9.2.13 Check User Home Directory Ownership	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
ALMA-09-008050 - AlmaLinux OS 9 must log username information when unsuccessful logon attempts occur.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
ALMA-09-037420 - AlmaLinux OS 9 must be configured so that the system's shadow file is configured to store only encrypted representations of passwords.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	IDENTIFICATION AND AUTHENTICATION
ALMA-09-046550 - AlmaLinux OS 9 must enable Linux audit logging for the USBGuard daemon.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	AUDIT AND ACCOUNTABILITY
ALMA-09-052710 - AlmaLinux OS 9 must encrypt the transfer of audit records offloaded onto a different system or media from the system being audited via rsyslog.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	AUDIT AND ACCOUNTABILITY
ALMA-09-056780 - AlmaLinux OS 9 audit system must protect logon UIDs from unauthorized change.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	AUDIT AND ACCOUNTABILITY
DG0029-ORACLE11 - Required auditing parameters for database auditing should be set - 'audit_trail != none'	DISA STIG Oracle 11 Instance v9r1 Database	OracleDB	AUDIT AND ACCOUNTABILITY
EX16-ED-000620 - Exchange software must be installed on a separate partition from the OS.	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r5	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
EX16-ED-000620 - Exchange software must be installed on a separate partition from the OS.	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r6	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
EX19-ED-000230 - Exchange software must be installed on a separate partition from the OS.	DISA Microsoft Exchange 2019 Edge Server STIG v2r2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
JBOS-AS-000505 - The JBoss server must be configured to utilize syslog logging.	DISA JBoss EAP 6.3 STIG v2r6	Unix	AUDIT AND ACCOUNTABILITY
Login: ssh - v1 is disabled	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	CONFIGURATION MANAGEMENT
Login: ssh - v2 and later is enabled	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	CONFIGURATION MANAGEMENT
O121-C2-009300 - The system must protect audit information from any type of unauthorized access.	DISA STIG Oracle 12c v3r2 Database	OracleDB	AUDIT AND ACCOUNTABILITY
OH12-1X-000214 - OHS tools must be restricted to the web manager and the web managers designees.	DISA STIG Oracle HTTP Server 12.1.3 v2r3	Unix	CONFIGURATION MANAGEMENT
WG205 W22 - The web document (home) directory must be in a separate partition from the web server's system files. - 'CustomLog'	DISA STIG Apache Site 2.2 Windows v1r13	Windows	AUDIT AND ACCOUNTABILITY
WG205 W22 - The web document (home) directory must be in a separate partition from the web server's system files. - 'DocumentRoot'	DISA STIG Apache Site 2.2 Windows v1r13	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search