Item Search

Name	Audit Name	Plugin	Category
1.1.7 Ensure separate partition exists for /var/tmp	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.6.1.5 Ensure the MCS Translation Service (mcstrans) is not installed	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
3.2 Ensure 'debug' is turned off	CIS IIS 8.0 v1.5.1 Level 2	Windows	SYSTEM AND INFORMATION INTEGRITY
3.6 Ensure 'httpcookie' mode is configured for session state - Default	CIS IIS 10 v1.2.1 Level 2	Windows	SYSTEM AND SERVICES ACQUISITION
3.8 Ensure 'MachineKey validation method - .Net 3.5' is configured	CIS IIS 8.0 v1.5.1 Level 2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.8 Ensure 'MachineKey validation method - .Net 3.5' is configured - Applications	CIS IIS 10 v1.2.1 Level 2	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.11 Ensure X-Powered-By Header is removed - Applications	CIS IIS 10 v1.2.1 Level 2	Windows	CONFIGURATION MANAGEMENT
3.11 Ensure X-Powered-By Header is removed - Default	CIS IIS 10 v1.2.1 Level 2	Windows	CONFIGURATION MANAGEMENT
4.1.4 Ensure events that modify date and time information are collected - auditctl adjtimex	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.5 Ensure events that modify user/group information are collected - /etc/gshadow	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.5 Ensure events that modify user/group information are collected - /etc/passwd	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.5 Ensure events that modify user/group information are collected - auditctl /etc/gshadow	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.5 Ensure events that modify user/group information are collected - auditctl /etc/passwd	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.6 Ensure events that modify the system's network environment are collected - auditctl /etc/issue	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.6 Ensure events that modify the system's network environment are collected - auditctl /etc/sysconfig/network-scripts	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.9 Ensure session initiation information is collected - /var/log/btmp	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
4.1.10 Ensure discretionary access control permission modification events are collected - auditctl chown/fchown/fchownat (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - auditctl chown/fchown/fchownat (64-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.10 Ensure discretionary access control permission modification events are collected - chown/fchown/fchownat (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	CONFIGURATION MANAGEMENT
4.1.11 Ensure unsuccessful unauthorized file access attempts are collected - auditctl EPERM (64-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.13 Ensure successful file system mounts are collected - auditctl (32-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.14 Ensure file deletion events by users are collected - auditctl (64-bit)	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.16 Ensure system administrator actions (sudolog) are collected	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.16 Ensure system administrator actions (sudolog) are collected - auditctl	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.1.17 Ensure kernel module loading and unloading is collected - rmmod	CIS Aliyun Linux 2 L2 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Ensure 'maxURL request filter' is configured	CIS IIS 8.0 v1.5.1 Level 2	Windows	SYSTEM AND INFORMATION INTEGRITY
4.4 Ensure non-ASCII characters in URLs are not allowed - Applications	CIS IIS 10 v1.2.1 Level 2	Windows	SYSTEM AND SERVICES ACQUISITION
4.4.1.6 Ensure access by root over nfs is disabled or blocked	CIS IBM AIX 7 v1.1.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
5.4.5 Ensure default user shell timeout is 900 seconds or less - /etc/profile	CIS Aliyun Linux 2 L2 v1.0.0	Unix	ACCESS CONTROL
6.6 Ensure subnets for the Web tier are created	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.7 Ensure subnets for the App tier are created	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
6.8 Ensure subnets for the Data tier are created	CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0	amazon_aws	SYSTEM AND COMMUNICATIONS PROTECTION
8.4.7 (L2) Ensure Unity Window Contents is disabled	CIS VMware ESXi 7.0 v1.5.0 L2	VMware	CONFIGURATION MANAGEMENT
8.4.8 (L2) Ensure Unity Push Update is disabled	CIS VMware ESXi 7.0 v1.5.0 L2	VMware	CONFIGURATION MANAGEMENT
8.4.14 (L2) Ensure Guest Host Interaction Tray Icon is disabled	CIS VMware ESXi 7.0 v1.5.0 L2	VMware	CONFIGURATION MANAGEMENT
18.2.1 (L1) Ensure LAPS AdmPwd GPO Extension / CSE is installed (MS only)	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
18.2.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION
18.2.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters' (MS only)	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	IDENTIFICATION AND AUTHENTICATION
18.2.4 Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
18.2.4 Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
18.2.5 (L1) Ensure 'Password Settings: Password Length' is set to 'Enabled: 15 or more' (MS only)	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	IDENTIFICATION AND AUTHENTICATION
18.2.6 Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
18.3.1 (L1) Ensure LAPS AdmPwd GPO Extension / CSE is installed (MS only)	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
18.3.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters' (MS only)	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.35.1 Ensure 'Prevent the computer from joining a homegroup' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.9.35.1 Ensure 'Prevent the computer from joining a homegroup' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	CONFIGURATION MANAGEMENT
GEN005512 - The SSH client must be configured to only use Message Authentication Codes (MACs) employing FIPS 140-2 approved cryptographic hash algorithms.	DISA STIG Solaris 10 SPARC v2r4	Unix	ACCESS CONTROL
GEN005512 - The SSH client must be configured to only use Message Authentication Codes (MACs) employing FIPS 140-2 approved cryptographic hash algorithms.	DISA STIG Solaris 10 X86 v2r4	Unix	ACCESS CONTROL
WBLC-05-000177 - Oracle WebLogic must utilize FIPS 140-2 approved encryption modules when authenticating users and processes - JAVA_OPTIONS	Oracle WebLogic Server 12c Linux v2r2	Unix	IDENTIFICATION AND AUTHENTICATION
WBLC-05-000177 - Oracle WebLogic must utilize FIPS 140-2 approved encryption modules when authenticating users and processes - JAVA_OPTIONS	Oracle WebLogic Server 12c Linux v2r2 Middleware	Unix	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search