Item Search

Name	Audit Name	Plugin	Category
1.1.2.2 vty line authentication	CIS Cisco IOS XR 7.x v1.0.1 L1	Cisco	ACCESS CONTROL
2.3.10.9 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	ACCESS CONTROL
2.3.10.10 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.10 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.10.10 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.12 Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
2.3.10.12 Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.12 Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
4.1.5 Ensure events that modify the system's network environment are collected - auditctl sethostname (64-bit)	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.201 - Network - Responder Driver - EnableRspndr	DISA Windows Vista STIG v6r41	Windows	CONFIGURATION MANAGEMENT
DG0005-ORACLE11 - Only necessary privileges to the host system should be granted to DBA OS accounts - 'ORA_{SID}_DBA Group has no unauthorized users'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	ACCESS CONTROL
DG0025-ORACLE11 - DBMS cryptography must be NIST FIPS 140-2 validated - 'Oracle Advanced Security is installed'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DG0052-ORACLE11 - All applications that access the database should be logged in the audit trail.	DISA STIG Oracle 11 Installation v9r1 Linux	Unix
DG0054-ORACLE11 - The audit logs should be periodically monitored to discover DBMS access using unauthorized applications.	DISA STIG Oracle 11 Installation v9r1 Linux	Unix
DG0083-ORACLE11 - Automated notification of suspicious activity detected in the audit trail should be implemented.	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DG0086-ORACLE11 - DBA roles should be periodically monitored to detect assignment of unauthorized or excess privileges.	DISA STIG Oracle 11 Installation v9r1 Linux	Unix
DG0092-ORACLE11 - Database data files containing sensitive information should be encrypted.	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DG0093-ORACLE11 - Remote adminstrative connections to the database should be encrypted - all protocols use TCPS'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	ACCESS CONTROL
DG0097-ORACLE11 - Plans and procedures for testing DBMS installations, upgrades and patches should be defined and followed prior to production implementation.	DISA STIG Oracle 11 Installation v9r1 Linux	Unix
DG0099-ORACLE11 - Access to external DBMS executables should be disabled or restricted - '%ORACLE_HOME%\bin\extproc.exe does not exist'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	CONFIGURATION MANAGEMENT
DG0099-ORACLE11 - Access to external DBMS executables should be disabled or restricted - '%ORACLE_HOME%\hs\admin\extproc.ora SET EXTPROC_DLLS = ONLY'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	CONFIGURATION MANAGEMENT
DG0099-ORACLE11 - Access to external DBMS executables should be disabled or restricted - '%ORACLE_HOME%\hs\admin\extproc.ora SET EXTPROC_DLLS contains only valid paths'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	CONFIGURATION MANAGEMENT
DG0099-ORACLE11 - Access to external DBMS executables should be disabled or restricted - '%ORACLE_HOME%\rdbms\admin\externaljob.ora run_user = nobody'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	CONFIGURATION MANAGEMENT
DG0099-ORACLE11 - Access to external DBMS executables should be disabled or restricted - '$ORACLE_HOME/rdbms/admin/externaljob.ora run_group = nobody'	DISA STIG Oracle 11 Installation v9r1 Linux	Unix	CONFIGURATION MANAGEMENT
DG0099-ORACLE11 - Access to external DBMS executables should be disabled or restricted - '$ORACLE_HOME/rdbms/admin/externaljob.ora SET EXTPROC_DLLS=ONLY'	DISA STIG Oracle 11 Installation v9r1 Linux	Unix	CONFIGURATION MANAGEMENT
DG0103-ORACLE11 - Network access to the DBMS must be restricted to authorized personnel - '%ORACLE_HOME%\NETWORK\ADMIN\SQLNET.ORA tcp.invited_nodes = valid IP Range'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DG0106-ORACLE11 - Database data encryption controls should be configured in accordance with application requirements.	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DG0108-ORACLE11 - The DBMS restoration priority should be assigned.	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DG0110-ORACLE11 - The DBMS should not share a host supporting an independent security service - 'DomainRole != 4 or 5'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	CONFIGURATION MANAGEMENT
DG0120-ORACLE11 - Unauthorized access to external database objects should be removed from application user roles.	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DG0167-ORACLE11 - Sensitive data served by the DBMS should be protected by encryption when transmitted across the network.	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DG0186-ORACLE11 - The database should not be directly accessible from public or unauthorized networks.	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DG0187-ORACLE11 - DBMS software libraries should be periodically backed up - '$ORACLE_BASE files are being backed up'	DISA STIG Oracle 11 Installation v9r1 Linux	Unix	CONTINGENCY PLANNING
DG0187-ORACLE11 - DBMS software libraries should be periodically backed up - '$ORACLE_HOME files are being backed up'	DISA STIG Oracle 11 Installation v9r1 Linux	Unix	CONTINGENCY PLANNING
DG0195-ORACLE11 - DBMS production application and data directories should be protected from developers on shared production/development DBMS host systems - 'root is not a mamber of the oracle group'	DISA STIG Oracle 11 Installation v9r1 Linux	Unix	ACCESS CONTROL
DG7001-ORACLE11 - The directory assigned to the AUDIT_FILE_DEST parameter must be protected from unauthorized access and must be stored in a dedicated directory or disk partition separate from software or other application files.	DISA STIG Oracle 11 Installation v9r1 Linux	Unix
DO0120-ORACLE11 - The Oracle software installation account should not be granted excessive host system privileges - 'Oracle services use appropriate service accounts'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	ACCESS CONTROL
DO0145-ORACLE11 - OS DBA group membership should be restricted to authorized accounts.	DISA STIG Oracle 11 Installation v9r1 Linux	Unix	ACCESS CONTROL
DO0286-ORACLE11 - The Oracle INBOUND_CONNECT_TIMEOUT and SQLNET.INBOUND_CONNECT_TIMEOUT parameters should be set to a value greater than 0 - '%ORACLE_HOME%\NETWORK\ADMIN\listener.ora INBOUND_CONNECT_TIMEOUT_listener > 0'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	ACCESS CONTROL
DO0360-ORACLE11 - Connections by mid-tier web and application systems to the Oracle DBMS should be protected, encrypted and authenticated according to database, web, application, enclave and network requirements.	DISA STIG Oracle 11 Installation v9r1 Linux	Unix
DO0360-ORACLE11 - Connections by mid-tier web and application systems to the Oracle DBMS should be protected, encrypted and authenticated according to database, web, application, enclave and network requirements.	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DO3630-ORACLE11 - The Oracle Listener should be configured to require administration authentication - 'LSNRCTL Security'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows
DO3630-ORACLE11 - The Oracle Listener should be configured to require administration authentication - 'No listeners are running'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	ACCESS CONTROL
DO5037-ORACLE11 - Oracle SQLNet and listener log files should not be accessible to unauthorized users - '%ORACLE_HOME%\NETWORK\ADMIN\SQLNET.ORA LOG_DIRECTORY_SERVER is configured'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	AUDIT AND ACCOUNTABILITY
DO5037-ORACLE11 - Oracle SQLNet and listener log files should not be accessible to unauthorized users - '%ORACLE_HOME%\NETWORK\ADMIN\SQLNET.ORA LOG_FILE_SERVER is configured'	DISA STIG Oracle 11 Installation v9r1 Windows	Windows	AUDIT AND ACCOUNTABILITY
DO5037-ORACLE11 - Oracle SQLNet and listener log files should not be accessible to unauthorized users - '$ORACLE_HOME/network/admin/listener.ora DIAG_ADR_ENABLED_{listener} = on'	DISA STIG Oracle 11 Installation v9r1 Linux	Unix	AUDIT AND ACCOUNTABILITY
DO5037-ORACLE11 - Oracle SQLNet and listener log files should not be accessible to unauthorized users - '$ORACLE_HOME/network/log/listener.log mode 640'	DISA STIG Oracle 11 Installation v9r1 Linux	Unix	AUDIT AND ACCOUNTABILITY
DO5037-ORACLE11 - Oracle SQLNet and listener log files should not be accessible to unauthorized users - 'LOG_DIRECTORY_{listener} is configured'	DISA STIG Oracle 11 Installation v9r1 Linux	Unix	AUDIT AND ACCOUNTABILITY
DO5037-ORACLE11 - Oracle SQLNet and listener log files should not be accessible to unauthorized users - 'LOG_DIRECTORY_SERVER = $ORACLE_BASElog'	DISA STIG Oracle 11 Installation v9r1 Linux	Unix	AUDIT AND ACCOUNTABILITY
IBM i : Display Sign-On Information (QDSPSGNINF) - '1'	IBM System i Security Reference for V7R3	AS/400	ACCESS CONTROL

Detections

Analytics

Item Search