Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.2.7 (L1) Ensure 'Allow log on locally' is set to 'Administrators'CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1Windows

ACCESS CONTROL

2.2.7 (L1) Ensure 'Allow log on locally' is set to 'Administrators'CIS Windows Server 2012 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.7 (L1) Ensure 'Allow log on locally' is set to 'Administrators'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.3.8.1 (L1) Ensure 'Microsoft network client: Digitally sign communications (always)' is set to 'Enabled'CIS Microsoft Windows Server 2025 v1.0.0 L1 DCWindows

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

2.3.8.1 (L1) Ensure 'Microsoft network client: Digitally sign communications (always)' is set to 'Enabled'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

2.3.8.1 Ensure 'Microsoft network client: Digitally sign communications (always)' is set to 'Enabled'CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain ControllerWindows

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

2.3.8.1 Ensure 'Microsoft network client: Digitally sign communications (always)' is set to 'Enabled'CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DCWindows

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

2.5 Ensure that the User-ID Agent has minimal permissions if User-ID is enabledCIS Palo Alto Firewall 9 v1.1.0 L1Palo_Alto

ACCESS CONTROL

4.2.3 Ensure that the --client-ca-file argument is set as appropriateCIS Kubernetes v1.23 Benchmark v1.0.1 L1 WorkerUnix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.2.3 Ensure that the --client-ca-file argument is set as appropriateCIS Kubernetes v1.24 Benchmark v1.0.0 L1 WorkerUnix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.010 - User rights assignments must meet minimum requirements. - Allow log on through Terminal ServicesDISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

4.010 - User rights assignments must meet minimum requirements. - Create permanent shared objectsDISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

4.010 - User rights assignments must meet minimum requirements. - Force shutdown from a remote systemDISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

4.010 - User rights assignments must meet minimum requirements. - Impersonate a client after authenticationDISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

4.010 - User rights assignments must meet minimum requirements. - Load and unload device driversDISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

4.010 - User rights assignments must meet minimum requirements. - Log on as a batch jobDISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

4.010 - User rights assignments must meet minimum requirements. - Replace a process level tokenDISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

4.010 - User rights assignments must meet minimum requirements. - Restore files and directoriesDISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

18.8.22.1.11 (L2) Ensure 'Turn off the Windows Messenger Customer Experience Improvement Program' is set to 'Enabled'CIS Microsoft Windows Server 2008 Member Server Level 2 v3.3.1Windows

CONFIGURATION MANAGEMENT

18.9.20.1.11 (L2) Ensure 'Turn off the Windows Messenger Customer Experience Improvement Program' is set to 'Enabled'CIS Windows Server 2012 DC L2 v3.0.0Windows

CONFIGURATION MANAGEMENT

18.9.20.1.11 (L2) Ensure 'Turn off the Windows Messenger Customer Experience Improvement Program' is set to 'Enabled'CIS Microsoft Windows Server 2022 v4.0.0 L2 DCWindows

CONFIGURATION MANAGEMENT

18.9.20.1.11 (L2) Ensure 'Turn off the Windows Messenger Customer Experience Improvement Program' is set to 'Enabled'CIS Microsoft Windows Server 2022 v4.0.0 L2 MSWindows

CONFIGURATION MANAGEMENT

18.9.20.1.11 (L2) Ensure 'Turn off the Windows Messenger Customer Experience Improvement Program' is set to 'Enabled'CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 L2 MSWindows

CONFIGURATION MANAGEMENT

18.9.20.1.11 Ensure 'Turn off the Windows Messenger Customer Experience Improvement Program' is set to 'Enabled'CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Member ServerWindows

CONFIGURATION MANAGEMENT

18.10.57.3.3.8 (L2) Ensure 'Restrict clipboard transfer from server to client' is set to 'Enabled: Disable clipboard transfers from server to client'CIS Microsoft Windows 11 Enterprise v4.0.0 L2Windows

CONFIGURATION MANAGEMENT

18.10.57.3.3.8 (L2) Ensure 'Restrict clipboard transfer from server to client' is set to 'Enabled: Disable clipboard transfers from server to client'CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLockerWindows

CONFIGURATION MANAGEMENT

18.10.57.3.3.8 (L2) Ensure 'Restrict clipboard transfer from server to client' is set to 'Enabled: Disable clipboard transfers from server to client'CIS Microsoft Windows 11 Stand-alone v4.0.0 L2Windows

CONFIGURATION MANAGEMENT

Account Management - Review disabled user accountsTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

ACCESS CONTROL

Citrix ADC - System Parameters - CLI Log LevelTenable Best Practice Citrix ADC v1.0.0Citrix_Application_Delivery

AUDIT AND ACCOUNTABILITY

Citrix ADM - SSL - Settings - TLSv1.2Tenable Best Practice Citrix ADM v1.0.0Citrix_Application_Delivery

SYSTEM AND COMMUNICATIONS PROTECTION

Citrix ADM - System Settings - Enable Session TimeoutTenable Best Practice Citrix ADM v1.0.0Citrix_Application_Delivery

ACCESS CONTROL

Citrix ADM - User Administration - Password Policy - Password ComplexityTenable Best Practice Citrix ADM v1.0.0Citrix_Application_Delivery

IDENTIFICATION AND AUTHENTICATION

Citrix ADM - User Administration - Password Policy - User Lockout Interval (Seconds)Tenable Best Practice Citrix ADM v1.0.0Citrix_Application_Delivery

ACCESS CONTROL

Content of Audit Records - Configure disk logging - priority levelTenable Cisco Viptela SD-WAN - vManageCisco_Viptela

AUDIT AND ACCOUNTABILITY

Content of Audit Records - Configure disk logging - priority levelTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

AUDIT AND ACCOUNTABILITY

Disable the Office client from polling the SharePoint Server for published linksMSCT M365 Apps for enterprise 2412 v1.0.0Windows

CONFIGURATION MANAGEMENT

Disable the Office client from polling the SharePoint Server for published linksMSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0Windows

CONFIGURATION MANAGEMENT

Disable the Office client from polling the SharePoint Server for published linksMSCT M365 Apps for enterprise 2312 v1.0.0Windows

CONFIGURATION MANAGEMENT

Identification and Authentication - Use out of band authentication - AAA - netconf loggingTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - Admin Authentication OrderTenable Cisco Viptela SD-WAN - vManageCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - Authentication OrderTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - Server IPTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Secure Name/address Resolution Service - Configure DNS servers - PrimaryTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

SYSTEM AND COMMUNICATIONS PROTECTION

Secure Name/address Resolution Service - Configure DNS servers - SecondaryTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

SYSTEM AND COMMUNICATIONS PROTECTION

System Backup - Enable Backups - pathTenable Cisco Viptela SD-WAN - vManageCisco_Viptela

CONTINGENCY PLANNING

System Backup - Enable Backups - pathTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

CONTINGENCY PLANNING

System Use Notification - Banner LoginTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

ACCESS CONTROL

System Use Notification - Banner motdTenable Cisco Viptela SD-WAN - vManageCisco_Viptela

ACCESS CONTROL

Time Stamps - Enable NTP - remote serverTenable Cisco Viptela SD-WAN - vManageCisco_Viptela

AUDIT AND ACCOUNTABILITY

WN11-AU-000510 - The System event log size must be configured to 32768 KB or greater.DISA Microsoft Windows 11 STIG v2r3Windows

AUDIT AND ACCOUNTABILITY