Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Create a separate partition for containersCIS Docker 1.6 v1.0.0 L1 LinuxUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.1.1.3 Ensure mounting of jffs2 filesystems is disabled - modprobeCIS Debian Family Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.1.1.6 Ensure mounting of squashfs filesystems is disabled - modprobeCIS Debian Family Workstation L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.1.1.7 Ensure mounting of udf filesystems is disabled - modprobeCIS Debian Family Server L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.1.2 Ensure /tmp is configuredCIS CentOS 6 Workstation L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.1.4 Ensure nosuid option set on /tmp partitionCIS CentOS 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.1.8 Ensure nodev option set on /var/tmp partitionCIS CentOS 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.1.13 Ensure separate partition exists for /homeCIS CentOS 6 Workstation L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.4.1 Ensure permissions on bootloader config are configuredCIS CentOS 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.5.1 Ensure permissions on bootloader config are configuredCIS Debian Family Server L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1.1 Ensure message of the day is configured properlyCIS Debian 9 Server L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

1.7.1.2 Ensure local login warning banner is configured properlyCIS Debian 9 Server L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

1.7.1.3 Ensure remote login warning banner is configured properlyCIS Debian 9 Server L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

1.7.1.4 Ensure permissions on /etc/motd are configuredCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

1.7.4 Ensure permissions on /etc/motd are configuredCIS CentOS 6 Workstation L1 v3.0.0Unix

ACCESS CONTROL

1.8.1 Ensure message of the day is configured properlyCIS Debian Family Server L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.8.1 Ensure message of the day is configured properlyCIS Debian Family Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.8.2 Ensure permissions on /etc/issue.net are configuredCIS Debian Family Server L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.8.3 Ensure permissions on /etc/issue are configuredCIS Debian Family Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.8.6 Ensure local login warning banner is configured properlyCIS Debian Family Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.2.1.2 Ensure ntp is configured - restrict -4CIS Debian 9 Server L1 v1.0.1Unix

AUDIT AND ACCOUNTABILITY

2.2.1.2 Ensure ntp is configured - restrict -6CIS Debian 9 Server L1 v1.0.1Unix

AUDIT AND ACCOUNTABILITY

2.4 Set noexec option for /tmp PartitionCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.9 Create Separate Partition for /homeCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.10 Add nodev Option to /homeCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.12 Add noexec Option to Removable Media PartitionsCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.14 Add nodev Option to /run/shm PartitionCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

2.16 Add noexec Option to /run/shm PartitionCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

3.3.4 Ensure permissions on /etc/hosts.allow are configuredCIS Debian 9 Server L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

3.3.4 Ensure permissions on /etc/hosts.allow are configuredCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

4.2 Restrict access to $CATALINA_BASECIS Apache Tomcat 8 L1 v1.1.0 MiddlewareUnix

ACCESS CONTROL

4.3 Restrict access to Tomcat configuration directoryCIS Apache Tomcat 8 L1 v1.1.0Unix

ACCESS CONTROL

4.10 Restrict access to Tomcat context.xmlCIS Apache Tomcat 8 L1 v1.1.0Unix

ACCESS CONTROL

4.10 Restrict access to Tomcat context.xmlCIS Apache Tomcat 8 L1 v1.1.0 MiddlewareUnix

ACCESS CONTROL

5.1.1 Ensure cron daemon is enabledCIS CentOS 6 Workstation L1 v3.0.0Unix

AUDIT AND ACCOUNTABILITY

5.1.2 Ensure permissions on /etc/crontab are configuredCIS Debian Family Workstation L1 v1.0.0Unix

ACCESS CONTROL

5.1.6 Ensure permissions on /etc/cron.monthly are configuredCIS Debian Family Server L1 v1.0.0Unix

ACCESS CONTROL

5.1.7 Ensure permissions on /etc/cron.d are configuredCIS Debian Family Server L1 v1.0.0Unix

ACCESS CONTROL

5.1.8 Ensure at/cron is restricted to authorized users - cron.allowCIS Debian 9 Server L1 v1.0.1Unix

ACCESS CONTROL

5.1.8 Ensure cron is restricted to authorized users - cron.allowCIS Debian Family Workstation L1 v1.0.0Unix

ACCESS CONTROL

5.1.9 Ensure at is restricted to authorized users - at.allowCIS Debian Family Workstation L1 v1.0.0Unix

ACCESS CONTROL

5.2.5 Ensure SSH X11 forwarding is disabledCIS Debian Family Server L2 v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.2.6 Ensure SSH X11 forwarding is disabledCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

5.2.12 Ensure SSH PermitUserEnvironment is disabledCIS Debian 9 Workstation L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

5.3.13 Ensure SSH PermitUserEnvironment is disabledCIS CentOS 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

6.2.10 Ensure users' home directories permissions are 750 or more restrictiveCIS CentOS 6 Workstation L1 v3.0.0Unix

ACCESS CONTROL

7.1 Application specific loggingCIS Apache Tomcat 8 L2 v1.1.0Unix

AUDIT AND ACCOUNTABILITY

7.6 Ensure directory in logging.properties is a secure location - check application log directory is secureCIS Apache Tomcat 8 L1 v1.1.0 MiddlewareUnix

ACCESS CONTROL

9.1 Starting Tomcat with Security ManagerCIS Apache Tomcat 8 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

10.7 Turn off session facade recyclingCIS Apache Tomcat 8 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT