Item Search

Name	Audit Name	Plugin	Category
1.1.2 Ensure /tmp is configured	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.2 Ensure /tmp is configured	CIS Red Hat 6 Server L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.4 (L1) Ensure administrative accounts use licenses with a reduced application footprint	CIS Microsoft 365 Foundations v6.0.1 L1 E5	microsoft_azure	ACCESS CONTROL
1.1.11 Ensure separate partition exists for /var/tmp	CIS Fedora 19 Family Linux Workstation L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.11 Ensure separate partition exists for /var/tmp	CIS Fedora 19 Family Linux Server L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.1.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled	CIS Apple macOS 26 Tahoe v1.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.1.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled	CIS Apple macOS 15.0 Sequoia v2.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.1.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled	CIS Apple macOS 13.0 Ventura v4.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.3.1.1 Ensure net.ipv4.ip_forward is configured	CIS Amazon Linux 2 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.1.2 Ensure net.ipv4.conf.all.forwarding is configured	CIS Amazon Linux 2 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.1.3 Ensure net.ipv4.conf.default.forwarding is configured	CIS Amazon Linux 2 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.2.1 Ensure net.ipv6.conf.all.forwarding is configured	CIS Amazon Linux 2 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
3.3.2.2 Ensure net.ipv6.conf.default.forwarding is configured	CIS Amazon Linux 2 v4.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
5.1.1 Ensure Home Folders Are Secure	CIS Apple macOS 10.15 Catalina v3.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.1 Ensure Home Folders Are Secure	CIS Apple macOS 11.0 Big Sur v4.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.1 Ensure Home Folders Are Secure	CIS Apple macOS 10.14 v2.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.1.1 Secure Home Folders	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
5.1.1 Secure Home Folders	CIS Apple macOS 10.13 L1 v1.1.0	Unix	CONFIGURATION MANAGEMENT
5.1.4.5 (L1) Ensure Local Administrator Password Solution is enabled	CIS Microsoft 365 Foundations v6.0.1 L1 E3	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.1.4.5 (L1) Ensure Local Administrator Password Solution is enabled	CIS Microsoft 365 Foundations v6.0.1 L1 E5	microsoft_azure	IDENTIFICATION AND AUTHENTICATION
5.4.1 Ensure the GKE Metadata Server is Enabled	CIS Google Kubernetes Engine GKE v1.9.0 L2 GCP	GCP	CONFIGURATION MANAGEMENT
5.5.2 Ensure Node Auto-Repair is Enabled for GKE Nodes	CIS Google Kubernetes Engine GKE v1.9.0 L2 GCP	GCP	RISK ASSESSMENT
5.5.4 When creating New Clusters - Automate GKE version management using Release Channels	CIS Google Kubernetes Engine GKE v1.9.0 L1 GCP	GCP	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
5.5.5 Ensure Shielded GKE Nodes are Enabled	CIS Google Kubernetes Engine GKE v1.9.0 L1 GCP	GCP	CONFIGURATION MANAGEMENT
5.5.6 Ensure Integrity Monitoring for Shielded GKE Nodes is Enabled	CIS Google Kubernetes Engine GKE v1.9.0 L1 GCP	GCP	RISK ASSESSMENT
5.5.7 Ensure Secure Boot for Shielded GKE Nodes is Enabled	CIS Google Kubernetes Engine GKE v1.9.0 L2 GCP	GCP	RISK ASSESSMENT
5.6.2 Ensure use of VPC-native clusters	CIS Google Kubernetes Engine GKE v1.9.0 L1 GCP	GCP	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.3 Use CloudFront Content Distribution Network	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	CONFIGURATION MANAGEMENT
6.4 Ensure DNS sinkholing is configured on all anti-spyware profiles in use	CIS Palo Alto Firewall 9 v1.1.0 L1	Palo_Alto	SYSTEM AND INFORMATION INTEGRITY
6.19 Create the Web tier Security Group and ensure it allows inbound connections from Web tier ELB Security Group for explicit ports	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.22 Create the App tier Security Group and ensure it allows inbound connections from App tier ELB Security Group for explicit ports	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.24 Create the Data tier Security Group and ensure it allows inbound connections from App tier Security Group for explicit ports	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
7.4 Software Inventory Considerations	CIS Apple OSX 10.11 El Capitan L2 v1.1.0	Unix
7.4 Software Inventory Considerations	CIS Apple OSX 10.9 L2 v1.3.0	Unix
8.1.12 Ensure That 'All users with the following roles' is set to 'Owner'	CIS Microsoft Azure Foundations v5.0.0 L1	microsoft_azure	INCIDENT RESPONSE
18.10.17.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.17.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.17.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.17.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.17.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.17.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.17.1 (L1) Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.17.1 Ensure 'Download Mode' is NOT set to 'Enabled: Internet'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.93.4.3 (L1) Ensure 'Select when Quality Updates are received' is set to 'Enabled: 0 days'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.93.4.3 (L1) Ensure 'Select when Quality Updates are received' is set to 'Enabled: 0 days'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.93.4.3 (L1) Ensure 'Select when Quality Updates are received' is set to 'Enabled: 0 days'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.94.4.2 Ensure 'Select when Quality Updates are received' is set to 'Enabled: 0 days'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.94.4.2 Ensure 'Select when Quality Updates are received' is set to 'Enabled: 0 days'	CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MS	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
Ensure that the 'local-infile' database flag for a Cloud Databases Mysql instance is set to '0'	Tenable Best Practices RackSpace v2.0.0	Rackspace	SYSTEM AND COMMUNICATIONS PROTECTION
WPAW-00-002200 - The Windows PAW must be configured so that all outbound connections to the Internet from a PAW are blocked.	DISA Microsoft Windows PAW STIG v3r2	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search