Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.8 Audit Docker files and directories - /var/lib/dockerCIS Docker 1.12.0 v1.0.0 L1 LinuxUnix

AUDIT AND ACCOUNTABILITY

1.10 Audit Docker files and directories - docker.serviceCIS Docker 1.12.0 v1.0.0 L1 LinuxUnix

AUDIT AND ACCOUNTABILITY

1.10 Audit Docker files and directories - docker.serviceCIS Docker 1.11.0 v1.0.0 L1 LinuxUnix

AUDIT AND ACCOUNTABILITY

1.13 Audit Docker files and directories - /var/run/docker.sockCIS Docker 1.6 v1.0.0 L1 LinuxUnix

AUDIT AND ACCOUNTABILITY

2.3.2 Ensure Screen Saver Corners Are Secure - bl-cornerCIS Apple macOS 10.15 Catalina v3.0.0 L2Unix

ACCESS CONTROL

2.3.2 Ensure Screen Saver Corners Are Secure - tl-cornerCIS Apple macOS 10.15 Catalina v3.0.0 L2Unix

ACCESS CONTROL

2.3.2 Ensure Screen Saver Corners Are Secure - tr-cornerCIS Apple macOS 10.15 Catalina v3.0.0 L2Unix

ACCESS CONTROL

5.140 - The HBSS McAfee Agent is not installed. - masvcDISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

AADC-CL-000290 - Adobe Acrobat Pro DC Classic must be configured to block Flash Content.DISA STIG Adobe Acrobat Pro DC Classic Track v2r1Windows

CONFIGURATION MANAGEMENT

AADC-CL-001010 - Adobe Acrobat Pro DC Classic Protected Mode must be enabled.DISA STIG Adobe Acrobat Pro DC Classic Track v2r1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

AADC-CL-001280 - Adobe Acrobat Pro DC Classic Default Handler changes must be disabled.DISA STIG Adobe Acrobat Pro DC Classic Track v2r1Windows

CONFIGURATION MANAGEMENT

AADC-CL-001290 - Adobe Acrobat Pro DC Classic Cloud Synchronization must be disabled.DISA STIG Adobe Acrobat Pro DC Classic Track v2r1Windows

CONFIGURATION MANAGEMENT

AADC-CL-001300 - Adobe Acrobat Pro DC Classic third-party web connectors must be disabled.DISA STIG Adobe Acrobat Pro DC Classic Track v2r1Windows

CONFIGURATION MANAGEMENT

AADC-CL-001305 - Adobe Acrobat Pro DC Classic Webmail must be disabled.DISA STIG Adobe Acrobat Pro DC Classic Track v2r1Windows

CONFIGURATION MANAGEMENT

AADC-CL-001325 - Adobe Acrobat Pro DC Classic privileged host locations must be disabled.DISA STIG Adobe Acrobat Pro DC Classic Track v2r1Windows

CONFIGURATION MANAGEMENT

AIOS-13-013100 - Apple iOS/iPadOS must implement the management setting: disable paired Apple Watch.MobileIron - DISA Apple iOS/iPadOS 13 v2r1MDM

ACCESS CONTROL, CONFIGURATION MANAGEMENT

DG0096-ORACLE11 - The DBMS IA policies and procedures should be reviewed annually or more frequently.DISA STIG Oracle 11 Installation v9r1 WindowsWindows
F5BI-AP-300042 - The F5 BIG-IP appliance that intermediary services for FTP must inspect inbound and outbound FTP communications traffic for protocol compliance and protocol anomalies.DISA F5 BIG-IP TMOS ALG STIG v1r2F5

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

F5BI-AP-300068 - The F5 BIG-IP appliance providing content filtering must detect use of network services that have not been authorized or approved by the information system security manager (ISSM) and information system security officer (ISSO), at a minimum.DISA F5 BIG-IP TMOS ALG STIG v1r2F5

SYSTEM AND INFORMATION INTEGRITY

F5BI-DM-300040 - The F5 BIG-IP appliance must be configured to use at least two authentication servers to authenticate administrative users.DISA F5 BIG-IP TMOS NDM STIG v1r2F5

CONFIGURATION MANAGEMENT

F5BI-VN-300024 - The IPsec BIG-IP appliance must use IKEv2 for IPsec VPN security associations.DISA F5 BIG-IP TMOS VPN STIG v1r1F5

CONFIGURATION MANAGEMENT

GOOG-14-006000 - Google Android 14 must be configured to enforce a minimum password length of six characters.MobileIron - DISA Google Android 14 COBO STIG v2r3MDM

IDENTIFICATION AND AUTHENTICATION

GOOG-15-006000 - Google Android 15 must be configured to enforce a minimum password length of six characters.MobileIron - DISA Google Android 15 COBO STIG v1r3MDM

IDENTIFICATION AND AUTHENTICATION

GOOG-16-006000 - Google Android 16 must be configured to enforce a minimum password length of six characters.AirWatch - DISA Google Android 16 COPE STIG v1r1MDM

IDENTIFICATION AND AUTHENTICATION

HONW-13-006000 - Honeywell Android 13 must be configured to enforce a minimum password length of six characters.AirWatch - DISA Honeywell Android 13 COPE STIG v1r1MDM

IDENTIFICATION AND AUTHENTICATION

HONW-13-006000 - Honeywell Android 13 must be configured to enforce a minimum password length of six characters.MobileIron - DISA Honeywell Android 13 COPE STIG v1r1MDM

IDENTIFICATION AND AUTHENTICATION

JUSX-VN-000004 - The Juniper SRX Services Gateway VPN device also fulfills the role of IDPS in the architecture, the device must inspect the VPN traffic in compliance with DoD IDPS requirements.DISA Juniper SRX Services Gateway VPN v3r2Juniper

ACCESS CONTROL

OL09-00-002543 - OL 9 /etc/gshadow- file must have mode 0000 or less permissive to prevent unauthorized access.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-002545 - OL 9 /etc/passwd- file must be group-owned by root.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-002547 - OL 9 /etc/passwd- file must be owned by root.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-002550 - OL 9 /etc/shadow file must be group-owned by root.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-002552 - OL 9 /etc/shadow file must be owned by root.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-002554 - OL 9 /etc/shadow- file must have mode 0000 or less permissive to prevent unauthorized access.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-002555 - OL 9 /etc/shadow file must have mode 0000 to prevent unauthorized access.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-002571 - OL 9 audit tools must be owned by root.DISA Oracle Linux 9 STIG v1r4Unix

AUDIT AND ACCOUNTABILITY

OL09-00-002572 - OL 9 audit tools must have a mode of 0755 or less permissive.DISA Oracle Linux 9 STIG v1r4Unix

AUDIT AND ACCOUNTABILITY

OL09-00-002582 - OL 9 cron configuration files directory must be owned by root.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-002583 - OL 9 /etc/crontab file must have mode 0600.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-003012 - OL 9 must configure the use of the pam_faillock.so module in the /etc/pam.d/password-auth file.DISA Oracle Linux 9 STIG v1r4Unix

ACCESS CONTROL

OL09-00-003051 - OL 9 system accounts must not have an interactive login shell.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-005015 - OL 9 must authenticate the remote logging server for offloading audit logs via rsyslog.DISA Oracle Linux 9 STIG v1r4Unix

AUDIT AND ACCOUNTABILITY

OL09-00-006000 - OL 9 must protect against or limit the effects of denial-of-service (DoS) attacks by ensuring rate-limiting measures on impacted network interfaces are implemented.DISA Oracle Linux 9 STIG v1r4Unix

SYSTEM AND COMMUNICATIONS PROTECTION

OL09-00-006004 - OL 9 network interfaces must not be in promiscuous mode.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-006021 - OL 9 must not forward Internet Protocol version 4 (IPv4) source-routed packets.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-006022 - OL 9 must log IPv4 packets with impossible addresses.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-006028 - OL 9 must not enable IPv4 packet forwarding unless the system is a router.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-006030 - OL 9 must not respond to Internet Control Message Protocol (ICMP) echoes sent to a broadcast address.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

OL09-00-006031 - OL 9 must limit the number of bogus Internet Control Message Protocol (ICMP) response errors logs.DISA Oracle Linux 9 STIG v1r4Unix

CONFIGURATION MANAGEMENT

TCAT-AS-000470 - Stack tracing must be disabled.DISA STIG Apache Tomcat Application Server 9 v3r3 MiddlewareUnix

CONFIGURATION MANAGEMENT

WN12-00-000180 - The Server Message Block (SMB) v1 protocol must be disabled on the SMB client - mrxsmb10DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

CONFIGURATION MANAGEMENT