Item Search

Name	Audit Name	Plugin	Category
1.1.10 Ensure that the admission control plugin AlwaysAdmit is not set	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	ACCESS CONTROL
1.1.12 Ensure that the admission control policy is set to SecurityContextDeny	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	ACCESS CONTROL
1.1.20 Ensure that the --authorization-mode argument is not set to AlwaysAllow	CIS Kubernetes 1.7.0 Benchmark v1.1.0 L1	Unix	ACCESS CONTROL
1.1.24 Ensure that the admission control plugin PodSecurityPolicy is set	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	ACCESS CONTROL
1.1.27 Ensure that the admission control plugin ServiceAccount is set	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	ACCESS CONTROL
1.2 Set permissions on local-settings.js	CIS Mozilla Firefox 38 ESR Windows L1 v1.0.0	Windows	ACCESS CONTROL
1.3 Ensure device is physically secured	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	ACCESS CONTROL
1.3.3 Ensure that the --use-service-account-credentials argument is set to true	CIS Kubernetes 1.8 Benchmark v1.2.0 L1	Unix	ACCESS CONTROL
1.6.2 Create administrative boundaries between resources using namespaces	CIS Kubernetes 1.11 Benchmark v1.3.0 L1	Unix	ACCESS CONTROL
1.6.2 Create administrative boundaries between resources using namespaces	CIS Kubernetes 1.13 Benchmark v1.4.1 L1	Unix	ACCESS CONTROL
2.2.4 Ensure 'Act as part of the operating system' is set to 'No One'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.7 Ensure 'Allow log on locally' is set to 'Administrators'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.10 (L1) Ensure 'Back up files and directories' is set to 'Administrators, Backup Operators'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.10 Ensure 'Back up files and directories' is set to 'Administrators, Backup Operators' - Administrators	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.13 (L1) Ensure 'Create a pagefile' is set to 'Administrators'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.13 Ensure 'Create a pagefile' is set to 'Administrators'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.16 Ensure 'Create permanent shared objects' is set to 'No One'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.17 (L1) Ensure 'Create symbolic links' is set to 'Administrators' (DC only)	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.18 Ensure 'Create symbolic links' is set to 'Administrators, NT VIRTUAL MACHINE\Virtual Machines' (MS only) - Administrators, NT VIRTUAL MACHINE\Virtual Machines	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.22 (L1) Ensure 'Deny log on as a service' to include 'Guests'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.22 Ensure 'Deny log on as a service' to include 'Guests' - Guests	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.23 (L1) Ensure 'Deny log on locally' to include 'Guests'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.24 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.24 Ensure 'Deny log on through Remote Desktop Services' to include 'Guests'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.33 Ensure 'Lock pages in memory' is set to 'No One' - No One	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.34 (L1) Ensure 'Manage auditing and security log' is set to 'Administrators' and (when Exchange is running in the environment) 'Exchange Servers' (DC only)	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.35 (L1) Ensure 'Manage auditing and security log' is set to 'Administrators' (MS only)	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.35 Ensure 'Manage auditing and security log' is set to 'Administrators' (MS only) - Administrators	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.37 (L1) Ensure 'Modify firmware environment values' is set to 'Administrators'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.38 (L1) Ensure 'Perform volume maintenance tasks' is set to 'Administrators'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.38 (L1) Ensure 'Perform volume maintenance tasks' is set to 'Administrators'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.40 Ensure 'Profile system performance' is set to 'Administrators, NT SERVICE\WdiServiceHost' - Administrators, NT SERVICE\WdiServiceHost	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.41 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.42 (L1) Ensure 'Restore files and directories' is set to 'Administrators, Backup Operators'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.42 (L1) Ensure 'Restore files and directories' is set to 'Administrators, Backup Operators'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.42 Ensure 'Restore files and directories' is set to 'Administrators, Backup Operators' - Administrators	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.43 (L1) Ensure 'Shut down the system' is set to 'Administrators, Backup Operators'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.44 (L1) Ensure 'Synchronize directory service data' is set to 'No One' (DC only)	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.10.7 (L1) Ensure 'Network access: Remotely accessible registry paths' is configured	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1	Windows	ACCESS CONTROL
2.3.10.8 (L1) Configure 'Network access: Remotely accessible registry paths' is configured	CIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server	Windows	ACCESS CONTROL
2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1	Windows	ACCESS CONTROL
2.3.10.11 Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
2.5 Set root Ownership of BIND Configuration Files	CIS BIND DNS v3.0.1 Authoritative Name Server	Unix	ACCESS CONTROL
2.6 Ensure the SharePoint farm service account (database access account) is configured with the minimum privileges on the SQL server - Owner	CIS Microsoft SharePoint 2016 DB v1.1.0	MS_SQLDB	ACCESS CONTROL
2.6 Set Group named or root for BIND Directories and Files	CIS BIND DNS v3.0.1 Authoritative Name Server	Unix	ACCESS CONTROL
2.7 Set Group and Other Permissions Read-Only for BIND Non-Runtime Directories - 'group' permissions	CIS BIND DNS v3.0.1 Caching Only Name Server	Unix	ACCESS CONTROL
2.8 Set Group and Other Permissions Read-Only for All BIND Files	CIS BIND DNS v3.0.1 Authoritative Name Server	Unix	ACCESS CONTROL
10.3 Restrict access to the DB2 Health Monitor utility	CIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS Windows	Windows	ACCESS CONTROL
10.4 Restrict access to the DB2 Activity Monitor utility	CIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS Linux	Unix	ACCESS CONTROL
10.4 Restrict access to the DB2 Activity Monitor utility	CIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS Windows	Windows	ACCESS CONTROL

Detections

Analytics

Item Search