Item Search

Name	Audit Name	Plugin	Category
1.6.4 Create network segmentation using Network Policies	CIS Kubernetes 1.7.0 Benchmark v1.1.0 L2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
2.1.8 Ensure that the --make-iptables-util-chains argument is set to true	CIS Kubernetes 1.7.0 Benchmark v1.1.0 L1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.1 Ignore Erroneous or Unwanted Queries - Link local addresses	CIS BIND DNS v3.0.1 Authoritative Name Server	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.1.1 Ensure Caller ID is set	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
3.3.2 Ensure /etc/hosts.allow is configured	CIS Aliyun Linux 2 L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.3.3 Ensure /etc/hosts.deny is configured	CIS Aliyun Linux 2 L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.1 Ensure default deny firewall policy - Chain OUTPUT	CIS Aliyun Linux 2 L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.5.1.2 Ensure loopback traffic is configured - input	CIS Aliyun Linux 2 L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.1.4 Ensure loopback traffic is configured - deny in from ::1	CIS Debian Family Server L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.2.1 Ensure IPv4 default deny firewall policy - FORWARD	CIS CentOS 6 Server L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.2.1 Ensure IPv4 default deny firewall policy - INPUT	CIS CentOS 6 Server L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.2.1 Ensure IPv4 default deny firewall policy - OUTPUT	CIS CentOS 6 Server L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.2.3 Ensure iptables are flushed - v4	CIS Debian Family Server L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.2.5 Ensure base chains exist - input	CIS Debian Family Server L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.2.8 Ensure default deny firewall policy - output	CIS Debian Family Server L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.3.1 Ensure IPv6 default deny firewall policy - FORWARD	CIS CentOS 6 Workstation L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.3.1 Ensure IPv6 default deny firewall policy - OUTPUT	CIS CentOS 6 Workstation L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.3.1.2 Ensure nftables is not installed	CIS Debian Family Server L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.3.2.2 Ensure loopback traffic is configured - OUTPUT	CIS Debian Family Server L1 v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.3.3 Ensure IPv6 outbound and established connections are configured	CIS CentOS 6 Server L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.3.4 Ensure IPv6 firewall rules exist for all open ports - iptables	CIS CentOS 6 Server L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.6.3.4 Ensure IPv6 firewall rules exist for all open ports - ss	CIS CentOS 6 Workstation L1 v3.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.1 Ensure Common SNMP Community Strings are NOT used	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
5.1.6 Ensure that Service Account Tokens are only mounted where necessary - pods	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.1.6 Ensure that Service Account Tokens are only mounted where necessary - serviceaccounts	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.4.1 Prefer using secrets as files over secrets as environment variables	CIS Kubernetes v1.24 Benchmark v1.0.0 L2 Master	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
10.6 Enable strict servlet Compliance	CIS Apache Tomcat 10 L2 v1.1.0 Middleware	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
18.9.47.5.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.3.1 Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.42.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.42.6.3.1 Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.42.6.3.1 Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows Server 2019 v4.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.6.3.1 (L1) Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
22.26 (L1) Ensure 'Enable Network Protection' is set to 'Enabled (block mode)'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
22.26 (L1) Ensure 'Enable Network Protection' is set to 'Enabled (block mode)'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search