Item Search

Name	Audit Name	Plugin	Category
1.1.1.3 Ensure mounting of jffs2 filesystems is disabled - lsmod	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.3 Ensure mounting of jffs2 filesystems is disabled - modprobe	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.4 Ensure nosuid option set on /tmp partition	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.6 Ensure separate partition exists for /var	CIS Oracle Linux 6 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.7 Ensure separate partition exists for /var/tmp	CIS Oracle Linux 6 Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.10 Ensure separate partition exists for /var	CIS Ubuntu Linux 16.04 LTS Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.21 Disable Mounting of hfs Filesystems - install hfs /bin/true'	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	CONFIGURATION MANAGEMENT
1.4.2 Ensure bootloader password is set	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.5.1 Ensure core dumps are restricted - limits.conf, limits.d/*	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.7.2 Ensure local login warning banner is configured properly - banner text	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.3 Set nosuid option for /tmp Partition	CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - net.ipv4.conf.default.accept_redirects (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - net.ipv6.conf.default.accept_redirects (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - sysctl net.ipv6.conf.all.accept_redirects	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.6 Ensure bogus ICMP responses are ignored - (sysctl exec)	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.7 Ensure Reverse Path Filtering is enabled - 'net.ipv4.conf.default.rp_filter' (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.8 Ensure TCP SYN Cookies is enabled - sysctl exec	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.9 Ensure IPv6 router advertisements are not accepted - 'net.ipv6.conf.all.accept_ra' (sysctl.conf/sysctl.d)	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.4.5 Ensure permissions on /etc/hosts.deny are configured	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - /etc/localtime	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - auditctl /etc/localtime	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - auditctl clock_settime (32-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - auditctl clock_settime (64-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.3 Ensure events that modify date and time information are collected - clock_settime (32-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - /etc/hosts	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl issue	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - auditctl sethostname (32-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - issue	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify the system's network environment are collected - issue.net	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's Mandatory Access Controls are collected - /etc/apparmor.d/	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl chown/fchown/fchownat/lchown (64-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl xattr (64-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - auditctl xattr (64-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - chmod/fchmod/fchmodat	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - chown/fchown/fchownat/lchown	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure discretionary access control permission modification events are collected - xattr (64-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl init_module/delete_module (32-bit)	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - auditctl rmmod	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.16 Ensure kernel module loading and unloading is collected - rmmod	CIS Ubuntu Linux 18.04 LXD Host L2 Server v1.0.0	Unix	CONFIGURATION MANAGEMENT
5.3.13 Ensure SSH PermitUserEnvironment is disabled	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
5.6 Ensure access to the su command is restricted	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
5.6 Ensure root login is restricted to system console	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
6.1.13 Audit SUID executables	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
6.1.14 Audit SGID executables	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
6.2.8 Ensure all users' home directories exist	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
9.2 Ensure 'MASTER_SSL_VERIFY_SERVER_CERT' Is Set to 'YES' or '1'	CIS MySQL 5.7 Community Database L1 v2.0.0	MySQLDB	CONFIGURATION MANAGEMENT
9.2.12 Check That Users Are Assigned Valid Home Directories	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
18.6.4.1 Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT
18.9.28.7 Ensure 'Turn on convenience PIN sign-in' is set to 'Disabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT
18.10.58.4 Ensure 'Allow search highlights' is set to 'Disabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search