Item Search

Name	Audit Name	Plugin	Category
1.5 Ensure 'unique application pools' is set for sites	CIS IIS 8.0 v1.5.1 Level 1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.1 Ensure that NGINX is run using a non-privileged, dedicated service account	CIS NGINX Benchmark v2.1.0 L1 Webserver	Unix	ACCESS CONTROL
2.3 (L1) Ensure Managed Object Browser (MOB) is disabled	CIS VMware ESXi 7.0 v1.5.0 L1	VMware	ACCESS CONTROL, MEDIA PROTECTION
4.4.21 Ensure 'default-error-page' is set for web applications	CIS IBM WebSphere Liberty v1.0.0 L1	Unix	MEDIA PROTECTION
6.10.2.6 Ensure Web-Management Interface Restriction is Set	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	SYSTEM AND COMMUNICATIONS PROTECTION
AS24-U1-000720 - The Apache web server must not impede the ability to write specified log record content to an audit log server.	DISA STIG Apache Server 2.4 Unix Server v3r2	Unix	AUDIT AND ACCOUNTABILITY
DISA_STIG_Oracle_Database_11.2g_v2r5_Database.audit from DISA Oracle Database 11.2g v2r5 STIG	DISA STIG Oracle 11.2g v2r5 Database	OracleDB
DISA_STIG_Oracle_Database_12c_v3r2_OS_Linux.audit from DISA Oracle Database 12c v3r2 STIG	DISA STIG Oracle 12c v3r2 Linux	Unix
DISA_STIG_Oracle_Database_12c_v3r2_OS_Windows.audit from DISA Oracle Database 12c v3r2 STIG	DISA STIG Oracle 12c v3r2 Windows	Windows
DISA_STIG_Oracle_MySQL_8.0_v2r2_OS_Linux.audit from DISA Oracle MySQL 8.0 v2r2 STIG	DISA Oracle MySQL 8.0 v2r2 OS Linux	Unix
DTOO140 - Excel - Automatic republish to web pages must be disallowed.	DISA STIG Office 2010 Excel v1r11	Windows	CONFIGURATION MANAGEMENT
ESXI-70-000025 - The ESXi host Secure Shell (SSH) daemon must not permit tunnels.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000076 - The ESXi host must enable Secure Boot.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000083 - The ESXi host OpenSLP service must be disabled.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000085 - The ESXi host must enable strict x509 verification for SSL syslog endpoints.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
ESXI-70-000093 - The ESXi host must not be configured to override virtual machine (VM) logger settings.	DISA STIG VMware vSphere 7.0 ESXi OS v1r4	Unix	CONFIGURATION MANAGEMENT
PHTN-30-000001 - The Photon operating system must audit all account creations.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	ACCESS CONTROL
PHTN-30-000009 - The Photon operating system must configure sshd to use approved encryption algorithms.	DISA STIG VMware vSphere 7.0 Photon OS v1r4	Unix	ACCESS CONTROL, MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION
VCEM-70-000004 - ESX Agent Manager must protect cookies from cross-site scripting (XSS).	DISA STIG VMware vSphere 7.0 EAM Tomcat v1r2	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
VCEM-70-000012 - ESX Agent Manager must have Multipurpose Internet Mail Extensions (MIMEs) that invoke operating system shell programs disabled.	DISA STIG VMware vSphere 7.0 EAM Tomcat v1r2	Unix	CONFIGURATION MANAGEMENT
VCEM-70-000021 - ESX Agent Manager must use the 'setCharacterEncodingFilter' filter - filter-mapping	DISA STIG VMware vSphere 7.0 EAM Tomcat v1r2	Unix	SYSTEM AND INFORMATION INTEGRITY
VCEM-70-000027 - ESX Agent Manager must not enable support for TRACE requests.	DISA STIG VMware vSphere 7.0 EAM Tomcat v1r2	Unix	SYSTEM AND INFORMATION INTEGRITY
VCEM-70-000031 - ESX Agent Manager must be configured with the appropriate ports.	DISA STIG VMware vSphere 7.0 EAM Tomcat v1r2	Unix	CONFIGURATION MANAGEMENT
VCLU-70-000009 - Lookup Service must only run one webapp.	DISA STIG VMware vSphere 7.0 Lookup Service v1r2	Unix	CONFIGURATION MANAGEMENT
VCLU-70-000011 - Lookup Service must be configured to limit access to internal packages.	DISA STIG VMware vSphere 7.0 Lookup Service v1r2	Unix	CONFIGURATION MANAGEMENT
VCLU-70-000012 - Lookup Service must have Multipurpose Internet Mail Extensions (MIMEs) that invoke operating system shell programs disabled - MIMEs that invoke operating system shell programs disabled.	DISA STIG VMware vSphere 7.0 Lookup Service v1r2	Unix	CONFIGURATION MANAGEMENT
VCLU-70-000027 - Lookup Service must use a logging mechanism that is configured to allocate log record storage capacity large enough to accommodate the logging requirements of the web server.	DISA STIG VMware vSphere 7.0 Lookup Service v1r2	Unix	AUDIT AND ACCOUNTABILITY
VCLU-70-000031 - Lookup Service must set the secure flag for cookies.	DISA STIG VMware vSphere 7.0 Lookup Service v1r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
VCPF-70-000003 - Performance Charts must limit the maximum size of a POST request.	DISA STIG VMware vSphere 7.0 Perfcharts Tomcat v1r1	Unix	ACCESS CONTROL
VCPF-70-000004 - Performance Charts must protect cookies from cross-site scripting (XSS).	DISA STIG VMware vSphere 7.0 Perfcharts Tomcat v1r1	Unix	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
VCPF-70-000009 - Performance Charts must only run one webapp.	DISA STIG VMware vSphere 7.0 Perfcharts Tomcat v1r1	Unix	CONFIGURATION MANAGEMENT
VCPF-70-000020 - Performance Charts must set 'URIEncoding' to UTF-8	DISA STIG VMware vSphere 7.0 Perfcharts Tomcat v1r1	Unix	SYSTEM AND INFORMATION INTEGRITY
VCPF-70-000033 - Performance Charts must set the secure flag for cookies.	DISA STIG VMware vSphere 7.0 Perfcharts Tomcat v1r1	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
VCST-70-000006 - The Security Token Service must generate log records during Java startup and shutdown. - bufferSize	DISA STIG VMware vSphere 7.0 STS Tomcat v1r2	Unix	AUDIT AND ACCOUNTABILITY
VCST-70-000010 - The Security Token Service must not be configured with unused realms.	DISA STIG VMware vSphere 7.0 STS Tomcat v1r2	Unix	CONFIGURATION MANAGEMENT
VCST-70-000011 - The Security Token Service must be configured to limit access to internal packages.	DISA STIG VMware vSphere 7.0 STS Tomcat v1r2	Unix	CONFIGURATION MANAGEMENT
VCST-70-000030 - The Security Token Service must set the secure flag for cookies.	DISA STIG VMware vSphere 7.0 STS Tomcat v1r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
VCUI-70-000002 - vSphere UI must limit the number of concurrent connections permitted.	DISA STIG VMware vSphere 7.0 vCA UI v1r2	Unix	ACCESS CONTROL
VCUI-70-000003 - vSphere UI must limit the maximum size of a POST request.	DISA STIG VMware vSphere 7.0 vCA UI v1r2	Unix	ACCESS CONTROL
VCUI-70-000006 - vSphere UI must generate log records for system startup and shutdown.	DISA STIG VMware vSphere 7.0 vCA UI v1r2	Unix	AUDIT AND ACCOUNTABILITY
VCUI-70-000018 - vSphere UI must restrict its cookie path.	DISA STIG VMware vSphere 7.0 vCA UI v1r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
VCUI-70-000026 - vSphere UI must not enable support for TRACE requests.	DISA STIG VMware vSphere 7.0 vCA UI v1r2	Unix	SYSTEM AND INFORMATION INTEGRITY
VCUI-70-000028 - vSphere UI must use a logging mechanism that is configured to allocate log record storage capacity large enough to accommodate the logging requirements of the web server.	DISA STIG VMware vSphere 7.0 vCA UI v1r2	Unix	AUDIT AND ACCOUNTABILITY
VCUI-70-000029 - vSphere UI log files must be moved to a permanent repository in accordance with site policy.	DISA STIG VMware vSphere 7.0 vCA UI v1r2	Unix	AUDIT AND ACCOUNTABILITY
VCWN-65-000049 - The vCenter Server for Windows must alert administrators on permission deletion operations.	DISA STIG VMware vSphere vCenter 6.5 v2r3	VMware	SYSTEM AND INFORMATION INTEGRITY
VCWN-65-000050 - The vCenter Server for Windows must alert administrators on permission update operations.	DISA STIG VMware vSphere vCenter 6.5 v2r3	VMware	SYSTEM AND INFORMATION INTEGRITY
WBLC-01-000013 - Oracle WebLogic must ensure remote sessions for accessing security functions and security-relevant information are audited.	Oracle WebLogic Server 12c Windows v2r2	Windows	ACCESS CONTROL
WBLC-01-000013 - Oracle WebLogic must ensure remote sessions for accessing security functions and security-relevant information are audited.	Oracle WebLogic Server 12c Linux v2r2 Middleware	Unix	ACCESS CONTROL
WBSP-AS-001410 - The WebSphere Application Server DoD root CAs must be in the trust store.	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
Web Token Timeout (s)	Tenable Cisco ACI	Cisco_ACI	ACCESS CONTROL

Detections

Analytics

Item Search