Item Search

Name	Audit Name	Plugin	Category
1.1.8 Ensure that the etcd pod specification file ownership is set to root:root	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL
1.4.1 Set 'password' for 'enable secret'	CIS Cisco IOS XE 16.x v2.1.0 L1	Cisco	ACCESS CONTROL
1.5 Ensure Interactive Login is Disabled	CIS MySQL 5.6 Community Linux OS L2 v2.0.0	Unix	ACCESS CONTROL
1.5 Ensure Interactive Login is Disabled	CIS MySQL 5.7 Community Windows OS L2 v2.0.0	Windows	ACCESS CONTROL
1.5 Ensure Interactive Login is Disabled	CIS MySQL 5.7 Community Linux OS L2 v2.0.0	Unix	ACCESS CONTROL
1.8 (L2) Host integrated hardware management controller must secure authentication	CIS VMware ESXi 8.0 v1.1.0 L2	VMware	ACCESS CONTROL
1.15 Ensure that Snowflake tasks do not run with the ACCOUNTADMIN or SECURITYADMIN role privileges	CIS Snowflake Foundations v1.0.0 L1	Snowflake	ACCESS CONTROL
2.2.1 Ensure that NGINX is run using a non-privileged, dedicated service account	CIS NGINX Benchmark v2.1.0 L1 Loadbalancer	Unix	ACCESS CONTROL
2.5 Ensure that the User-ID Agent has minimal permissions if User-ID is enabled	CIS Palo Alto Firewall 9 v1.1.0 L1	Palo_Alto	ACCESS CONTROL
3.1 Ensure least privilege for database accounts	CIS MongoDB 5 L1 DB v1.2.0	MongoDB	ACCESS CONTROL
3.3 Ensure that MongoDB is run using a Least Privileges, dedicated service account	CIS MongoDB 3.6 L1 Unix Audit v1.1.0	Unix	ACCESS CONTROL
3.5 Ensure the SQL Server's MSSQL Service Account is Not an Administrator	CIS SQL Server 2016 Database L1 AWS RDS v1.4.0	MS_SQLDB	ACCESS CONTROL
3.5 Ensure the SQL Server's MSSQL Service Account is Not an Administrator	CIS SQL Server 2016 Database L1 OS v1.4.0	Windows	ACCESS CONTROL
3.6 Ensure the SQL Server's SQLAgent Service Account is Not an Administrator	CIS SQL Server 2017 Database L1 OS v1.3.0	Windows	ACCESS CONTROL
3.6 Ensure the SQL Server's SQLAgent Service Account is Not an Administrator	CIS Microsoft SQL Server 2019 v1.4.0 L1 Database Engine	MS_SQLDB	ACCESS CONTROL
3.6 Ensure the SQL Server's SQLAgent Service Account is Not an Administrator	CIS SQL Server 2022 Database L1 OS v1.1.0	Windows	ACCESS CONTROL
3.6.3.3 FTPD: Disable root access to ftp	CIS IBM AIX 7.1 L1 v2.1.0	Unix	ACCESS CONTROL
3.7 Ensure the SQL Server's Full-Text Service Account is Not an Administrator	CIS SQL Server 2017 Database L1 AWS RDS v1.3.0	MS_SQLDB	ACCESS CONTROL
3.7 Ensure the SQL Server's Full-Text Service Account is Not an Administrator	CIS SQL Server 2022 Database L1 AWS RDS v1.1.0	MS_SQLDB	ACCESS CONTROL
3.7 Ensure the SQL Server's Full-Text Service Account is Not an Administrator	CIS SQL Server 2022 Database L1 OS v1.1.0	Windows	ACCESS CONTROL
3.13 Ensure membership in admin roles in MSDB database is limited	CIS Microsoft SQL Server 2019 v1.4.0 L1 Database Engine	MS_SQLDB	ACCESS CONTROL
3.13 Ensure membership in admin roles in MSDB database is limited	CIS SQL Server 2022 Database L1 DB v1.1.0	MS_SQLDB	ACCESS CONTROL
4.1 Ensure a non-root user account exists for local admin access	CIS VMware ESXi 6.7 v1.3.0 Level 1 Bare Metal	Unix	ACCESS CONTROL
4.1 Ensure sudo is configured correctly	CIS PostgreSQL 15 OS v1.1.0	Unix	ACCESS CONTROL
4.1.2 Ensure that the kubelet service file ownership is set to root:root	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Worker	Unix	ACCESS CONTROL
4.2.19 Ensure sshd PermitRootLogin is disabled	CIS Oracle Linux 8 Server L1 v3.0.0	Unix	ACCESS CONTROL
4.2.19 Ensure sshd PermitRootLogin is disabled	CIS Oracle Linux 8 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
4.3.2 Ensure sudo commands use pty	CIS Rocky Linux 8 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
4.3.2 Ensure sudo commands use pty	CIS Oracle Linux 8 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
4.3.5 Ensure re-authentication for privilege escalation is not disabled globally	CIS Rocky Linux 8 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
4.3.6 Ensure sudo authentication timeout is configured correctly	CIS Rocky Linux 8 Server L1 v2.0.0	Unix	ACCESS CONTROL
4.3.6 Ensure sudo authentication timeout is configured correctly	CIS Oracle Linux 8 Server L1 v3.0.0	Unix	ACCESS CONTROL
4.6 Ensure the set_user extension is installed	CIS PostgreSQL 12 DB v1.1.0	PostgreSQLDB	ACCESS CONTROL
5.1.7 Avoid use of system:masters group	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL
5.1.8 Limit use of the Bind, Impersonate and Escalate permissions in the Kubernetes cluster	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL
5.1.20 Ensure sshd PermitRootLogin is disabled	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Workstation	Unix	ACCESS CONTROL
5.1.20 Ensure sshd PermitRootLogin is disabled	CIS Oracle Linux 9 v2.0.0 L1 Workstation	Unix	ACCESS CONTROL
5.2 Ensure 'FILE' is Not Granted to Non-Administrative Users	CIS MySQL 5.7 Enterprise Database L1 v2.0.0	MySQLDB	ACCESS CONTROL
5.2.1 Ensure sudo is installed	CIS AlmaLinux OS 9 v2.0.0 L1 Workstation	Unix	ACCESS CONTROL
5.2.5 Ensure re-authentication for privilege escalation is not disabled globally	CIS Rocky Linux 9 v2.0.0 L1 Workstation	Unix	ACCESS CONTROL
5.2.5 Ensure re-authentication for privilege escalation is not disabled globally	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Server	Unix	ACCESS CONTROL
5.2.5 Ensure re-authentication for privilege escalation is not disabled globally	CIS AlmaLinux OS 9 v2.0.0 L1 Server	Unix	ACCESS CONTROL
5.2.6 Ensure sudo authentication timeout is configured correctly	CIS Rocky Linux 9 v2.0.0 L1 Workstation	Unix	ACCESS CONTROL
5.2.8 Ensure SSH root login is disabled	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1	Unix	ACCESS CONTROL
5.4 Ensure 'SUPER' is Not Granted to Non-Administrative Users	CIS MariaDB 10.6 Database L1 v1.1.0	MySQLDB	ACCESS CONTROL
5.4 Ensure 'SUPER' is Not Granted to Non-Administrative Users	CIS MySQL 5.6 Enterprise Database L1 v2.0.0	MySQLDB	ACCESS CONTROL
5.4 Ensure 'SUPER' is Not Granted to Non-Administrative Users	CIS MySQL 5.7 Enterprise Database L1 v2.0.0	MySQLDB	ACCESS CONTROL
5.6 Ensure 'CREATE USER' is Not Granted to Non-Administrative Users	CIS MySQL 5.7 Enterprise Database L1 v2.0.0	MySQLDB	ACCESS CONTROL
5.7 Ensure 'GRANT OPTION' is Not Granted to Non-Administrative Users	CIS MySQL 5.7 Community Database L1 v2.0.0	MySQLDB	ACCESS CONTROL
10.17 Setting Security Lifecycle Listener - check for config component	CIS Apache Tomcat 10 L1 v1.1.0 Middleware	Unix	ACCESS CONTROL

Detections

Analytics

Item Search