Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 13 OS v1.2.0	Unix	CONFIGURATION MANAGEMENT, MAINTENANCE
1.3 Ensure systemd Service Files Are Enabled	CIS PostgreSQL 13 OS v1.2.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
1.5 Ensure the Latest Security Patches are Applied	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	SYSTEM AND SERVICES ACQUISITION
1.6 Verify That 'PGPASSWORD' is Not Set in Users' Profiles	CIS PostgreSQL 13 OS v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.7 Verify That the 'PGPASSWORD' Environment Variable is Not in Use	CIS PostgreSQL 13 OS v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.1.1.1.2 Set the 'ip domain-name'	CIS Cisco IOS XE 17.x v2.2.0 L1	Cisco	CONFIGURATION MANAGEMENT
2.2 Ensure extension directory has appropriate ownership and permissions	CIS PostgreSQL 13 OS v1.2.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.3 Disable PostgreSQL Command History	CIS PostgreSQL 13 OS v1.2.0	Unix	MEDIA PROTECTION
2.3.10.8 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.8 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2019 v3.0.1 L1 DC	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.9 (L1) Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.10.9 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.10.9 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.11 Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	ACCESS CONTROL
2.3.10.11 Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.11 Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.13.1 Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.4 Ensure Passwords are Not Stored in the service file	CIS PostgreSQL 13 OS v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.1.2 Ensure the log destinations are set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.5 Ensure the filename pattern for log files is set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.6 Ensure the log file permissions are set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.1.8 Ensure the maximum log file lifetime is set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.9 Ensure the maximum log file size is set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.11 Ensure syslog messages are not suppressed	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.12 Ensure syslog messages are not lost due to size	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.13 Ensure the program name for PostgreSQL syslog messages is correct	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.22 Ensure 'log_error_verbosity' is set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
4.1 Ensure Interactive Login is Disabled	CIS PostgreSQL 13 OS v1.2.0	Unix	ACCESS CONTROL
4.3 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.4 Lock Out Accounts if Not Currently in Use	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	ACCESS CONTROL
4.6 Ensure excessive DML privileges are revoked	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.9 Make use of predefined roles	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
5.1 Do Not Specify Passwords in the Command Line	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.3 Ensure login via 'local' UNIX Domain Socket is configured correctly	CIS PostgreSQL 13 OS v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
6.2 Ensure 'backend' runtime parameters are configured correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT
6.3 Ensure 'Postmaster' Runtime Parameters are Configured	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT
6.5 Ensure 'Superuser' Runtime Parameters are Configured	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT
6.10 Ensure Weak SSL/TLS Ciphers Are Disabled	CIS PostgreSQL 13 OS v1.2.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure a replication-only user is created and used for streaming replication	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	ACCESS CONTROL
7.2 Ensure logging of replication commands is configured	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	ACCESS CONTROL
7.4 Ensure WAL archiving is configured and functional	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
8.3 Ensure miscellaneous configuration settings are correct	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT
SPLK-CL-000280 - Splunk Enterprise must be configured with a report to notify the System Administrator (SA) and Information System Security Officer (ISSO), at a minimum, when an attack is detected on multiple devices and hosts within its scope of coverage.	DISA STIG Splunk Enterprise 8.x for Linux v2r2 STIG REST API	Splunk	CONFIGURATION MANAGEMENT
SPLK-CL-000320 - Splunk Enterprise must be configured to notify the System Administrator (SA) and Information System Security Officer (ISSO), at a minimum, when an attack is detected on multiple devices and hosts within its scope of coverage.	DISA STIG Splunk Enterprise 7.x for Windows v3r1 REST API	Splunk	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search