Item Search

Name	Audit Name	Plugin	Category
2.1.3 Show Bluetooth status in menu bar	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2019 v4.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.10.7 Configure 'Network access: Remotely accessible registry paths' is configured - Network access: Remotely accessible registry paths is configured	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.10.7 Configure 'Network access: Remotely accessible registry paths' is configured - Network access: Remotely accessible registry paths is configured	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.7 Ensure 'Network access: Remotely accessible registry paths'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.4.1 Disable Remote Apple Events	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.4.4 Disable Printer Sharing	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.4.5 Disable Remote Login	CIS Apple macOS 10.12 L1 v1.2.0	Unix	ACCESS CONTROL
2.4.8 Disable File Sharing - SMB	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
2.9 Pair the remote control infrared receiver if enabled	CIS Apple macOS 10.12 L1 v1.2.0	Unix	ACCESS CONTROL
3.6 Ensure Firewall is configured to log	CIS Apple macOS 10.12 L1 v1.2.0	Unix	AUDIT AND ACCOUNTABILITY
3.7 (L1) Host must automatically terminate idle DCUI sessions	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	ACCESS CONTROL
3.8 (L1) Host must automatically terminate idle shells	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	ACCESS CONTROL
4.2 Enable 'Show Wi-Fi status in menu bar' - Show Wi-Fi status in menu bar	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
4.5 Ensure FTP server is not running	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
4.6 (L1) Host must enable audit record logging	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	AUDIT AND ACCOUNTABILITY
4.8 (L1) Host must store one week of audit records	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	AUDIT AND ACCOUNTABILITY
5.1 (L1) Host firewall must only allow traffic from authorized networks	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.1.3 Check System folder for world writable files	CIS Apple macOS 10.12 L1 v1.2.0	Unix	ACCESS CONTROL
5.5 (L2) Host should deactivate virtual hardware management network interfaces	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT
5.6 (L1) Host should reject forged transmits on standard virtual switches and port groups	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.12 Require an administrator password to access system-wide preferences	CIS Apple macOS 10.12 L1 v1.2.0	Unix	CONFIGURATION MANAGEMENT
5.16 Do not enter a password-related hint	CIS Apple macOS 10.12 L1 v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION
6.1.1 (L1) Host CIM services, if enabled, must limit access	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	CONFIGURATION MANAGEMENT
6.2.2 (L1) Host must ensure all datastores have unique names	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	SYSTEM AND COMMUNICATIONS PROTECTION
7.3 (L1) Virtual machines must require encryption for Fault Tolerance	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.10 (L1) Virtual machines must remove unnecessary audio devices	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	CONFIGURATION MANAGEMENT
7.14 (L1) Virtual machines must remove unnecessary parallel port devices	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	CONFIGURATION MANAGEMENT
7.26 (L1) Virtual machines must limit the number of retained diagnostic logs	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	AUDIT AND ACCOUNTABILITY
7.27 (L1) Virtual machines must limit the size of diagnostic logs	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	AUDIT AND ACCOUNTABILITY
7.29 (L2) Virtual machines should have virtual machine hardware version 19 or newer	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	SYSTEM AND SERVICES ACQUISITION
8.14 (L1) VMware Tools must send VMware Tools logs to the system log service	CIS VMware ESXi 8.0 v1.2.0 L1	VMware	AUDIT AND ACCOUNTABILITY
8.15 (L2) VMware Tools must deactivate Guest Operations unless required	CIS VMware ESXi 8.0 v1.2.0 L2	VMware	CONFIGURATION MANAGEMENT
10.03 Enterprise Manager Framework Security - 'Where possible, utilize Enterprise Manager Framework Security Functionality'	CIS v1.1.0 Oracle 11g OS Windows Level 1	Windows
18.8.7.1.2 (BL) Ensure 'Prevent installation of devices that match any of these device IDs: Prevent installation of devices that match any of these device IDs' is set to 'PCI\CC_0C0A'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.7.1.2 (BL) Ensure 'Prevent installation of devices that match any of these device IDs: Prevent installation of devices that match any of these device IDs' is set to 'PCI\CC_0C0A'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.9.19.1 (L1) Ensure 'Turn off desktop gadgets' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.9.19.1 (L1) Ensure 'Turn off desktop gadgets' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.9.46.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Windows Server 2012 DC L2 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.9.47.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.9.47.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.9.47.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.9.47.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v4.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.9.47.11.1 Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
WDNS-AU-000006 - The Windows 2012 DNS Server logging must be enabled to record events from all DNS server functions.	DISA Microsoft Windows 2012 Server DNS STIG v2r7	Windows	AUDIT AND ACCOUNTABILITY
WN16-MS-000370 - The 'Deny access to this computer from the network' user right on member servers must be configured to prevent access from highly privileged domain accounts and local accounts on domain systems and from unauthenticated access on all systems.	DISA Microsoft Windows Server 2016 STIG v2r10	Windows	ACCESS CONTROL
WN22-MS-000080 - Windows Server 2022 Deny access to this computer from the network user right on domain-joined member servers must be configured to prevent access from highly privileged domain accounts and local accounts and from unauthenticated access on all systems.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL
WNDF-AV-000005 - Microsoft Defender AV must be configured to not exclude files for scanning.	DISA STIG Microsoft Defender Antivirus v2r4	Windows	SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search