Item Search

Name	Audit Name	Plugin	Category
2.1.3 Ensure discard services are not enabled - discard-dgram	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.5 Ensure time services are not enabled - time-stream	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.8 Ensure tftp server is not enabled	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.1.9 Ensure rsync service is not enabled	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
2.2.2 (L1) Ensure 'Access this computer from the network' is set to 'Administrators, Remote Desktop Users'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	CONFIGURATION MANAGEMENT
2.2.18 Ensure mail transfer agent is configured for local-only mode	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.2 Ensure packet redirect sending is disabled - 'net.ipv4.conf.all.send_redirects = 0 /etc/sysctl.conf /etc/sysctl.d/*'	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.2 Ensure packet redirect sending is disabled - 'net.ipv4.conf.all.send_redirects = 0 /etc/sysctl.conf /etc/sysctl.d/*'	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.2 Ensure packet redirect sending is disabled - 'net.ipv4.conf.all.send_redirects = 0 /sbin/sysctl'	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.1 Ensure source routed packets are not accepted - 'net.ipv4.conf.all.accept_source_route = 0 /sbin/sysctl'	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.1 Ensure source routed packets are not accepted - 'net.ipv4.conf.all.accept_source_route = 0 /sbin/sysctl'	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.1 Ensure source routed packets are not accepted - 'net.ipv4.conf.default.accept_source_route = 0 /etc/sysctl.conf /etc/sysctl.d/*'	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.2 Ensure ICMP redirects are not accepted - 'net.ipv4.conf.default.accept_redirects = 0 /sbin/sysctl'	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.3 Ensure secure ICMP redirects are not accepted - 'net.ipv4.conf.all.secure_redirects = 0 /sbin/sysctl'	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.3 Ensure secure ICMP redirects are not accepted - 'net.ipv4.conf.default.secure_redirects = 0 /etc/sysctl.conf /etc/sysctl.d/*'	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.3 Ensure secure ICMP redirects are not accepted - 'net.ipv4.conf.default.secure_redirects = 0 /sbin/sysctl'	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.6 Ensure bogus ICMP responses are ignored - config	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.7 Ensure Reverse Path Filtering is enabled - 'net.ipv4.conf.default.rp_filter = 1 /etc/sysctl.conf /etc/sysctl.d/*'	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.7 Ensure Reverse Path Filtering is enabled - 'net.ipv4.conf.default.rp_filter = 1 /sbin/sysctl'	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.8 Ensure TCP SYN Cookies is enabled - config	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.3.9 Ensure IPv6 router advertisements are not accepted - 'net.ipv6.conf.default.accept_ra = 0 /etc/sysctl.conf /etc/sysctl.d/*'	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
3.5.2 Ensure SCTP is disabled	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.5.3 Ensure RDS is disabled	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.5.4 Ensure TIPC is disabled	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.2.1.6 Ensure remote rsyslog messages are only accepted on designated log hosts - $ModLoad imtcp	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
4.6.1 Disable DCCP	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
5.3 (L1) Ensure 'Computer Browser (Browser)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	CONFIGURATION MANAGEMENT
5.26 (L1) Ensure 'SSDP Discovery (SSDPSRV)' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	CONFIGURATION MANAGEMENT
6.2.15 Enable SSH UsePrivilegeSeparation - UsePrivilegeSeparation yes	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	CONFIGURATION MANAGEMENT
6.3 Ensure that server-side scripting is disabled if not needed	CIS MongoDB 6 v1.2.0 L2 MongoDB	Windows	CONFIGURATION MANAGEMENT
18.5.9.1 Ensure 'Turn on Mapper I/O (LLTDIO) driver' is set to 'Disabled' - EnableLLTDIO	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.5.9.1 Ensure 'Turn on Mapper I/O (LLTDIO) driver' is set to 'Disabled' - ProhibitLLTDIOOnPrivateNet	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.5.9.1 Ensure 'Turn on Mapper I/O (LLTDIO) driver' is set to 'Disabled' - ProhibitLLTDIOOnPrivateNet	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.5.9.2 Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled' - AllowRspndrOndomain	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.5.20.1 Ensure 'Configuration of wireless settings using Windows Connect Now' is set to 'Disabled' - DisableFlashConfigRegistrar	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	CONFIGURATION MANAGEMENT
Android Compliance Policy - Block USB debugging on device	Tenable Best Practices for Microsoft Intune Android v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Android Device Configuration - Browser Pop-ups	Tenable Best Practices for Microsoft Intune Android v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Android Device Configuration - NFC	Tenable Best Practices for Microsoft Intune Android v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Android Device Configuration - Removable storage	Tenable Best Practices for Microsoft Intune Android v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Android Device Configuration - Wi-Fi tethering	Tenable Best Practices for Microsoft Intune Android v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Android Work Profile Device Configuration - Copy and paste between work and personal profiles	Tenable Best Practices for Microsoft Intune Android v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Android Work Profile Device Configuration - Prevent app installations from unknown sources in the personal profile	Tenable Best Practices for Microsoft Intune Android v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
iOS Compliance Policy - Block Simple Passwords	Tenable Best Practices for Microsoft Intune iOS v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
iOS Device Management - Explicit iTunes music, podcast, or news content	Tenable Best Practices for Microsoft Intune iOS v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
iOS Device Management - Personal Hotspot	Tenable Best Practices for Microsoft Intune iOS v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
iOS Device Management - Safari Pop-ups	Tenable Best Practices for Microsoft Intune iOS v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
macOS Device Management - Block simple passwords	Tenable Best Practices for Microsoft Intune macOS v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Windows Device Configuration - Browser Autofill	Tenable Best Practices for Microsoft Intune Windows v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Windows Device Configuration - Device name modification	Tenable Best Practices for Microsoft Intune Windows v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Windows Device Configuration - System	Tenable Best Practices for Microsoft Intune Windows v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search