Detections
Analytics

Item Search

NameAudit NamePluginCategory
1. OpenStack Networking - Policy.json - 'get_loadbalancer-agent'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

2.2.35 Ensure 'Profile system performance' is set to 'Administrators, NT SERVICE\WdiServiceHost'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.40 Ensure 'Profile system performance' is set to 'Administrators, NT SERVICE\WdiServiceHost' - Administrators, NT SERVICE\WdiServiceHostCIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MSWindows

ACCESS CONTROL

2.3.17.4 Ensure 'User Account Control: Detect application installations and prompt for elevation' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

CONFIGURATION MANAGEMENT

3. OpenStack Networking - Policy.json - 'delete_l3-router'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

4. OpenStack Networking - Policy.json - 'update_policy_profiles'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

5. OpenStack Networking - Policy.json - 'get_port:binding:vif_details'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

12. OpenStack Networking - Policy.json - 'get_loadbalancer-hosting-agent'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

23. OpenStack Networking - Policy.json - 'create_port:port_security_enabled'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

35. OpenStack Networking - Policy.json - 'create_metering_label'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

47. OpenStack Networking - Policy.json - 'create_router:distributed'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

50. OpenStack Networking - Policy.json - 'update_network_profile'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

60. OpenStack Networking - Policy.json - 'update_firewall'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

62. OpenStack Networking - Policy.json - 'delete_agent'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

63. OpenStack Networking - Policy.json - 'delete_firewall'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

65. OpenStack Networking - Policy.json - 'update_network'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

72. OpenStack Networking - Policy.json - 'create_port:binding:profile'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

77. OpenStack Networking - Policy.json - 'get_metering_label_rule'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

81. OpenStack Networking - Policy.json - 'delete_firewall_rule'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

89. OpenStack Networking - Policy.json - 'delete_metering_label_rule'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

90. OpenStack Networking - Policy.json - 'create_floatingip'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

91. OpenStack Networking - Policy.json - 'get_port:binding:profile'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

96. OpenStack Identity - Policy.json - 'identity:list_protocols'TNS OpenStack Keystone/Identity Security GuideUnix

ACCESS CONTROL

98. OpenStack Identity - Policy.json - 'identity:get_policy_for_endpoint'TNS OpenStack Keystone/Identity Security GuideUnix

ACCESS CONTROL

98. OpenStack Networking - Policy.json - 'delete_subnet'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

110. OpenStack Networking - Policy.json - 'update_router:distributed'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

115. OpenStack Networking - Policy.json - 'get_network:queue_id'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

117. OpenStack Networking - Policy.json - 'context_is_advsvc'TNS OpenStack Neutron/Networking Security GuideUnix

ACCESS CONTROL

ACLs: Filter for RFC 3330 addresses (192.0.0.0/24)TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

SYSTEM AND COMMUNICATIONS PROTECTION

ACLs: Filter for RFC 3330 addresses (198.18.0.0/15)TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

SYSTEM AND COMMUNICATIONS PROTECTION

Authentication: use a remote authentication serverTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

ACCESS CONTROL

CPM Filtering: Filter for ICMP - dest-unreachableTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

SYSTEM AND COMMUNICATIONS PROTECTION

CPM Filtering: Filter for ICMP - echo requestTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

SYSTEM AND COMMUNICATIONS PROTECTION

CPM Filtering: Filter for IGPTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

SYSTEM AND COMMUNICATIONS PROTECTION

EX16-ED-002400 - The application must update malicious code protection mechanisms whenever new releases are available in accordance with organizational configuration management policy and procedures.DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r6Windows

SYSTEM AND INFORMATION INTEGRITY

Logging: Use an external syslog hostTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

AUDIT AND ACCOUNTABILITY

Login: ssh - limit consecutive logins to 16 or lessTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

ACCESS CONTROL

Login: ssh - v2 and later is enabledTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

CONFIGURATION MANAGEMENT

MYS8-00-001700 - The MySQL Database Server 8.0 must allow only the Information System Security Manager (ISSM) (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited.DISA Oracle MySQL 8.0 v2r2 DBMySQLDB

AUDIT AND ACCOUNTABILITY

PANW-IP-000033 - To protect against unauthorized data mining, the Palo Alto Networks security platform must detect and prevent code injection attacks launched against application objects including, at a minimum, application URLs and application code.DISA STIG Palo Alto IDPS v3r2Palo_Alto

ACCESS CONTROL

Password Complexity: Require at least one special characterTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

IDENTIFICATION AND AUTHENTICATION

Password Complexity: Require at least one uppercase and one lowercase letterTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

IDENTIFICATION AND AUTHENTICATION

Require Password EncryptionTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

IDENTIFICATION AND AUTHENTICATION

RHEL-08-010421 - RHEL 8 must clear the page allocator to prevent use-after-free attacks.DISA Red Hat Enterprise Linux 8 STIG v2r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SLES-12-010499 - The SUSE operating system must use a file integrity tool to verify correct operation of all security functions.DISA SLES 12 STIG v3r2Unix

SYSTEM AND INFORMATION INTEGRITY

SPLK-CL-000050 - Splunk Enterprise must use TLS 1.2 and SHA-2 or higher cryptographic algorithms.DISA STIG Splunk Enterprise 7.x for Windows v3r1 REST APISplunk

IDENTIFICATION AND AUTHENTICATION

Time: System has a secondary NTP server setTNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice AuditAlcatel

AUDIT AND ACCOUNTABILITY

TNS_OpenStack_Identity_Security_Guide.auditTNS OpenStack Keystone/Identity Security GuideUnix
TNS_OpenStack_Networking_Security_Guide.auditTNS OpenStack Neutron/Networking Security GuideUnix
WDNS-SI-000006 - The Windows 2012 DNS Server must perform verification of the correct operation of security functions: upon system start-up and/or restart; upon command by a user with privileged access; and/or every 30 days.DISA Microsoft Windows 2012 Server DNS STIG v2r7Windows

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY