Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2.1 Set the 'hostname'CIS Cisco IOS XR 7.x v1.0.1 L1Cisco

IDENTIFICATION AND AUTHENTICATION

2.1 Set 'Mailbox quotas: Issue warning at' to '1991680'CIS Microsoft Exchange Server 2013 Mailbox v1.1.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

2.1 Set 'Mailbox quotas: Issue warning at' to '1991680'CIS Microsoft Exchange Server 2016 Mailbox v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

2.5.14.2.2 (L1) Ensure 'Do not display 'Publish to GAL' button' is set to 'Enabled'CIS Microsoft Intune for Office v1.1.0 L1Windows

CONFIGURATION MANAGEMENT

2.13 Set 'Allow access to voicemail without requiring a PIN' to 'False'CIS Microsoft Exchange Server 2013 UM v1.1.0Windows

IDENTIFICATION AND AUTHENTICATION

3.1.4 Ensure RDS is disabledCIS Amazon Linux 2023 Server L2 v1.0.0Unix

CONFIGURATION MANAGEMENT

3.1.6 Ensure RDS is disabledCIS Ubuntu Linux 20.04 LTS Workstation L2 v2.0.1Unix

CONFIGURATION MANAGEMENT

3.2.3 Ensure rds kernel module is not availableCIS CentOS Linux 7 v4.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT

3.2.3 Ensure rds kernel module is not availableCIS Rocky Linux 9 v2.0.0 L2 ServerUnix

CONFIGURATION MANAGEMENT

3.2.3 Ensure rds kernel module is not availableCIS Red Hat Enterprise Linux 7 v4.0.0 L2 WorkstationUnix

CONFIGURATION MANAGEMENT

3.2.3 Ensure rds kernel module is not availableCIS Red Hat Enterprise Linux 9 v2.0.0 L2 ServerUnix

CONFIGURATION MANAGEMENT

3.2.3 Ensure rds kernel module is not availableCIS AlmaLinux OS 9 v2.0.0 L2 ServerUnix

CONFIGURATION MANAGEMENT

3.2.3 Ensure rds kernel module is not availableCIS SUSE Linux Enterprise 15 v2.0.1 L2 WorkstationUnix

CONFIGURATION MANAGEMENT

3.2.3 Ensure rds kernel module is not availableCIS AlmaLinux OS 8 Workstation L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

3.2.3 Ensure rds kernel module is not availableCIS Red Hat EL8 Server L2 v3.0.0Unix

CONFIGURATION MANAGEMENT

3.3 Set 'Turn on script execution' to 'RemoteSigned'CIS Microsoft Exchange Server 2013 Hub v1.1.0Windows

CONFIGURATION MANAGEMENT

3.4.3 Ensure RDS is disabled - grep modprobe.dCIS Aliyun Linux 2 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

3.4.3 Ensure RDS is disabled - lsmodCIS Debian 8 Server L1 v2.0.2Unix

SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION

3.4.3 Ensure RDS is disabled - modprobeCIS Debian 9 Server L1 v1.0.1Unix

CONFIGURATION MANAGEMENT

3.4.3 Ensure RDS is disabled - modprobeCIS Distribution Independent Linux Workstation L2 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.4.3 Ensure RDS is disabled - modprobeCIS Ubuntu Linux 16.04 LTS Workstation L2 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.5.3 Ensure RDS is disabledCIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1Unix

CONFIGURATION MANAGEMENT

3.5.3 Ensure RDS is disabledCIS Oracle Linux 6 Server L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

3.5.3 Ensure RDS is disabled - lsmodCIS Debian Family Server L2 v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.9 Set 'Enable automatic forwards to remote domains' to 'False'CIS Microsoft Exchange Server 2013 Hub v1.1.0Windows

CONFIGURATION MANAGEMENT

5.2.5 Ensure Complex Password Must Contain Special Character Is ConfiguredCIS Apple macOS 11.0 Big Sur v4.0.0 L2Unix

IDENTIFICATION AND AUTHENTICATION

7.5.3 Disable RDSCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

18.10.34.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1Windows

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Android Work Profile Device Configuration - Work Profile Required password typeTenable Best Practices for Microsoft Intune Android v1.0microsoft_azure

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

APPL-12-000056 - The macOS system must implement approved Key Exchange Algorithms within the SSH server configuration.DISA STIG Apple macOS 12 v1r9Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

APPL-13-000059 - The macOS system must implement approved Key Exchange Algorithms within the SSH client configuration.DISA STIG Apple macOS 13 v1r5Unix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

CIS_Docker_v1.7.0_L1_Docker_Swarm.audit from CIS Docker Benchmark v1.7.0CIS Docker v1.7.0 L1 Docker SwarmUnix
CIS_IBM_DB2_9_v3.0.1_Level_2_OS_Linux.audit from CIS DB2 9 LinuxCIS IBM DB2 9 Benchmark v3.0.1 Level 2 OS LinuxUnix
CIS_Kubernetes_v1.11.1_L1_Worker_Node.audit from CIS Kubernetes Benchmark v1.11.1CIS Kubernetes v1.11.1 L1 Worker NodeUnix
CIS_MariaDB_10.6_Benchmark_v1.1.0_L1_Database.audit from CIS MariaDB 10.6 BenchmarkCIS MariaDB 10.6 Database L1 v1.1.0MySQLDB
CIS_MariaDB_10.6_Benchmark_v1.1.0_L2_Linux_OS.audit from CIS MariaDB 10.6 BenchmarkCIS MariaDB 10.6 on Linux L2 v1.1.0Unix
CIS_NGINX_v2.1.0_Level_2_Loadbalancer.audit from CIS NGINX Benchmark v2.1.0CIS NGINX Benchmark v2.1.0 L2 LoadbalancerUnix
CIS_NGINX_v2.1.0_Level_2_Webserver.audit from CIS NGINX Benchmark v2.1.0CIS NGINX Benchmark v2.1.0 L2 WebserverUnix
EX13-CA-000030 - Exchange Servers must use approved DoD certificates.DISA Microsoft Exchange 2013 Client Access Server STIG v2r2Windows

ACCESS CONTROL

EX13-CA-000065 - Exchange must have Audit data protected against unauthorized read access.DISA Microsoft Exchange 2013 Client Access Server STIG v2r2Windows

AUDIT AND ACCOUNTABILITY

EX13-MB-000010 - Exchange Servers must use approved DoD certificates.DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3Windows

ACCESS CONTROL

EX13-MB-000335 - Exchange must provide Mailbox databases in a highly available and redundant configuration.DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3Windows

SYSTEM AND COMMUNICATIONS PROTECTION

EX16-MB-000650 - The Exchange SMTP automated banner response must not reveal server details.DISA Microsoft Exchange 2016 Mailbox Server STIG v2r6Windows

SYSTEM AND COMMUNICATIONS PROTECTION

EX19-MB-000234 - Exchange must provide mailbox databases in a highly available and redundant configuration.DISA Microsoft Exchange 2019 Mailbox Server STIG v2r2Windows

SYSTEM AND COMMUNICATIONS PROTECTION

GEN007080 - The Datagram Congestion Control Protocol (DCCP) must be disabled unless required - 'install dccp_ipv4 /bin/true'DISA STIG for Oracle Linux 5 v2r1Unix

CONFIGURATION MANAGEMENT

GEN007080 - The Datagram Congestion Control Protocol (DCCP) must be disabled unless required - 'install dccp_ipv4 /bin/true'DISA STIG for Red Hat Enterprise Linux 5 v1r18 AuditUnix

CONFIGURATION MANAGEMENT

GEN007080 - The Datagram Congestion Control Protocol (DCCP) must be disabled unless required - 'install dccp_ipv6 /bin/true'DISA STIG for Red Hat Enterprise Linux 5 v1r18 AuditUnix

CONFIGURATION MANAGEMENT

WDNS-CM-000004 - Forwarders on an authoritative Windows 2012 DNS Server, if enabled for external resolution, must only forward to either an internal, non-AD-integrated DNS server or to the DoD Enterprise Recursive Services (ERS).DISA Microsoft Windows 2012 Server DNS STIG v2r7Windows

CONFIGURATION MANAGEMENT

WN10-PK-000010 - The External Root CA certificates must be installed in the Trusted Root Store on unclassified systems.DISA Microsoft Windows 10 STIG v3r4Windows

IDENTIFICATION AND AUTHENTICATION

WN22-DC-000110 - Windows Server 2022 organization created Active Directory Organizational Unit (OU) objects must have proper access control permissions.DISA Microsoft Windows Server 2022 STIG v2r4Windows

ACCESS CONTROL