Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.1.2 Verify Backups are GoodCIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

CONTINGENCY PLANNING

2.6 Ensure Password Complexity is Configured - validate_password_dictionary_fileCIS MySQL 5.6 Community Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

2.6 Ensure Password Complexity is Configured - validate_password_dictionary_fileCIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

2.6 Ensure Password Complexity is Configured - validate_password_lengthCIS MySQL 5.6 Community Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

2.6 Ensure Password Complexity is Configured - validate_password_mixed_case_countCIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

2.7 Ensure 'password_lifetime' is Less Than or Equal to '365'CIS MySQL 8.4 Enterprise v1.0.0 L1 DatabaseMySQLDB

IDENTIFICATION AND AUTHENTICATION

2.7 Ensure Password Complexity is Configured - validate_password_dictionary_fileCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

2.7 Ensure Password Complexity is Configured - validate_password_mixed_case_countCIS MySQL 5.7 Community Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

2.7 Ensure Password Complexity is Configured - validate_password_policyCIS MySQL 5.7 Community Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

2.7 Ensure Password Complexity is Configured - validate_password_policyCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

2.7 Ensure Password Complexity is Configured - validate_password_special_char_countCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

3.1.20 Secure permissions for the log mirror location - MIRROLOGPATH OS PermissionCIS IBM DB2 v10 v1.1.0 Linux OS Level 1Unix
3.1.20 Secure permissions for the log mirror location - MIRRORLOGPATH OS PermissionsCIS IBM DB2 v10 v1.1.0 Windows OS Level 1Windows

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

4.1 Ensure a SNS topic is created for sending out notifications from Cloudtwatch Alarms and Auto-Scaling Groups - List SNS SubscriptionsCIS Amazon Web Services Three-tier Web Architecture L1 1.0.0amazon_aws

ACCESS CONTROL

5.6 Ensure 'CREATE USER' is Not Granted to Non-Administrative UsersCIS MySQL 5.7 Community Database L1 v2.0.0MySQLDB

ACCESS CONTROL

5.6 Ensure 'CREATE USER' is Not Granted to Non-Administrative UsersCIS MySQL 8.4 Enterprise v1.0.0 L1 DatabaseMySQLDB

ACCESS CONTROL

5.9 Ensure DML/DDL Grants are Limited to Specific Databases and UsersCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

ACCESS CONTROL, MEDIA PROTECTION

5.10 Securely Define Stored Procedures and Functions DEFINER and INVOKERCIS MySQL 5.6 Community Database L1 v2.0.0MySQLDB

PLANNING, SYSTEM AND SERVICES ACQUISITION

6.5 Ensure Audit Filters Capture Connection AttemptsCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

AUDIT AND ACCOUNTABILITY

6.5 Ensure Audit Filters Capture Connection AttemptsCIS MySQL 8.4 Enterprise v1.0.0 L1 DatabaseMySQLDB

AUDIT AND ACCOUNTABILITY

6.5 Ensure Audit Filters Capture Connection Attempts - audit_log_filterCIS MySQL 5.7 Enterprise Database L1 v2.0.0MySQLDB

AUDIT AND ACCOUNTABILITY

7.5 Ensure Password Complexity Policies are in PlaceCIS MySQL 8.0 Community Database L1 v1.1.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

7.6 Ensure Password Complexity Policies are in Place - 'validate_password_length'CIS MySQL 5.6 Community Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

7.6 Ensure Password Complexity Policies are in Place - 'validate_password_mixed_case_count'CIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

7.6 Ensure Password Complexity Policies are in Place - 'validate_password_number_count'CIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

7.6 Ensure Password Complexity Policies are in Place - validate_password_policyCIS MySQL 5.7 Community Database L1 v2.0.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

9.1.11 Find Un-owned Files and DirectoriesCIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

ACCESS CONTROL

9.2 Ensure 'MASTER_SSL_VERIFY_SERVER_CERT' Is Set to 'YES' or '1' - 1CIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

CONFIGURATION MANAGEMENT

ALMA-09-004320 - AlmaLinux OS 9 must use the TuxCare FIPS packages and not the default encryption packages.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

ACCESS CONTROL, MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION

ALMA-09-012560 - All AlmaLinux OS 9 local files and directories must have a valid owner.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

ALMA-09-030160 - AlmaLinux OS 9 must disable mounting of squashfs.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

ALMA-09-030380 - AlmaLinux OS 9 must disable mounting of udf.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

ALMA-09-041050 - AlmaLinux OS 9 must restrict access to the kernel message buffer.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

ALMA-09-045670 - AlmaLinux OS 9 audit system must audit local events.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY

ALMA-09-055350 - AlmaLinux OS 9 must securely compare internal information system clocks at least every 24 hours.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY

AOSX-13-000230 - The macOS system must initiate session audits at system startup, using internal clocks with time stamps for audit records that meet a minimum granularity of one second and can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT).DISA STIG Apple Mac OSX 10.13 v2r5Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

APPL-14-001020 The macOS system must be configured to audit all deletions of object attributes.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, MAINTENANCE

APPL-14-001130 The macOS system must configure audit_control to mode 440 or less permissive.DISA Apple macOS 14 (Sonoma) STIG v2r3Unix

AUDIT AND ACCOUNTABILITY

APPL-15-001020 - The macOS system must be configured to audit all deletions of object attributes.DISA Apple macOS 15 (Sequoia) STIG v1r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

APPL-15-001044 - The macOS system must be configured to audit all authorization and authentication events.DISA Apple macOS 15 (Sequoia) STIG v1r3Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

CIS Microsoft IIS 8 Benchmark v1.5.1 Level 2CIS IIS 8.0 v1.5.1 Level 2Windows
CIS_Amazon_Linux_2023_v1.0.0_L2_Server.audit from CIS Amazon Linux 2023 Benchmark v1.0.0CIS Amazon Linux 2023 Server L2 v1.0.0Unix
CIS_Debian_Linux_11_v2.0.0_L1_Workstation.audit from CIS Debian Linux 11 Benchmark v2.0.0CIS Debian Linux 11 v2.0.0 L1 WorkstationUnix
CIS_Debian_Linux_12_v1.1.0_L1_Server.audit from CIS Debian Linux 12 Benchmark v1.1.0CIS Debian Linux 12 v1.1.0 L1 ServerUnix
CIS_Debian_Linux_12_v1.1.0_L2_Server.audit from CIS Debian Linux 12 Benchmark v1.1.0CIS Debian Linux 12 v1.1.0 L2 ServerUnix
CIS_Oracle_Linux_7_v4.0.0_L2_Workstation.audit from CIS Oracle Linux 7 Benchmark v4.0.0CIS Oracle Linux 7 v4.0.0 L2 WorkstationUnix
CIS_Oracle_Linux_9_v2.0.0_L2_Workstation.audit from CIS Oracle Linux 9 Benchmark v2.0.0CIS Oracle Linux 9 v2.0.0 L2 WorkstationUnix
CIS_Rocky_Linux_9_v2.0.0_L1_Server.audit from CIS Rocky Linux 9 Benchmark v2.0.0CIS Rocky Linux 9 v2.0.0 L1 ServerUnix
CIS_Rocky_Linux_9_v2.0.0_L1_Workstation.audit from CIS Rocky Linux 9 Benchmark v2.0.0CIS Rocky Linux 9 v2.0.0 L1 WorkstationUnix
RHEL-09-654255 - RHEL 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /var/log/lastlog.DISA Red Hat Enterprise Linux 9 STIG v2r4Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE