Item Search

Name	Audit Name	Plugin	Category
1.3.1 Set the 'banner-text' for 'banner exec'	CIS Cisco IOS 15 L1 v4.1.1	Cisco	ACCESS CONTROL
2.2.5 (L1) Ensure 'Allow log on locally' is set to 'Administrators, Users'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL
2.2.12 Ensure 'SSL_CERT_REVOCATION' Is Set To 'REQUIRED'	CIS Oracle Database 23ai v1.0.0 L1 RDBMS On Windows Server Host OS	Windows	ACCESS CONTROL
2.3.8 Ensure 'SEC_MAX_FAILED_LOGIN_ATTEMPTS' Is Set To '3' Or Less	CIS Oracle Database 23ai v1.0.0 L1 RDBMS	OracleDB	ACCESS CONTROL
3.1 Ensure 'FAILED_LOGIN_ATTEMPTS' Is Less Than Or Equal To '5'	CIS Oracle Database 23ai v1.0.0 L1 RDBMS	OracleDB	ACCESS CONTROL
3.1.3 Bootstrap token authentication should not be used for users	CIS Kubernetes v1.11.1 L1 Master Node	Unix	ACCESS CONTROL
4.3 (L1) Ensure the maximum failed login attempts is set to 5	CIS VMware ESXi 7.0 v1.5.0 L1	VMware	ACCESS CONTROL
4.4.2.1.2 Ensure password failed attempts lockout is configured	CIS Amazon Linux 2 v3.0.0 L1	Unix	ACCESS CONTROL
4.4.2.1.3 Ensure password unlock time is configured	CIS CentOS Linux 7 v4.0.0 L1 Workstation	Unix	ACCESS CONTROL
4.4.2.1.3 Ensure password unlock time is configured	CIS Oracle Linux 7 v4.0.0 L1 Server	Unix	ACCESS CONTROL
4.4.2.1.3 Ensure password unlock time is configured	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	ACCESS CONTROL
4.4.2.1.4 Ensure password failed attempts lockout includes root account	CIS Red Hat Enterprise Linux 7 v4.0.0 L2 Server	Unix	ACCESS CONTROL
4.4.2.1.4 Ensure password failed attempts lockout includes root account	CIS CentOS Linux 7 v4.0.0 L2 Server	Unix	ACCESS CONTROL
4.4.3.1.1 Ensure password failed attempts lockout is configured	CIS Rocky Linux 8 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
4.4.3.1.2 Ensure password unlock time is configured	CIS Red Hat EL8 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
4.4.3.1.2 Ensure password unlock time is configured	CIS Oracle Linux 8 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
4.4.3.1.2 Ensure password unlock time is configured	CIS AlmaLinux OS 8 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
4.4.3.1.3 Ensure password failed attempts lockout includes root account	CIS Red Hat EL8 Server L2 v3.0.0	Unix	ACCESS CONTROL
4.4.3.1.3 Ensure password failed attempts lockout includes root account	CIS Oracle Linux 8 Server L2 v3.0.0	Unix	ACCESS CONTROL
4.4.3.1.3 Ensure password failed attempts lockout includes root account	CIS AlmaLinux OS 8 Server L2 v3.0.0	Unix	ACCESS CONTROL
5.2.1 Ensure Password Account Lockout Threshold Is Configured	CIS Apple macOS 13.0 Ventura v3.1.0 L1	Unix	ACCESS CONTROL
5.2.2 Ensure sudo commands use pty	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
5.3.2 Ensure lockout for failed password attempts is configured - pam_deny.so	CIS Debian Family Server L1 v1.0.0	Unix	ACCESS CONTROL
5.3.2.1.2 Ensure password unlock time is configured	CIS SUSE Linux Enterprise 15 v2.0.1 L1 Server	Unix	ACCESS CONTROL
5.3.2.2 Ensure pam_faillock module is enabled	CIS Debian Linux 12 v1.1.0 L1 Workstation	Unix	ACCESS CONTROL
5.3.3 Ensure password reuse is limited	CIS Debian Family Workstation L1 v1.0.0	Unix	ACCESS CONTROL
5.3.3 Ensure password reuse is limited	CIS Debian 9 Server L1 v1.0.1	Unix	ACCESS CONTROL
5.3.3.1.1 Ensure password failed attempts lockout is configured	CIS Ubuntu Linux 22.04 LTS v2.0.0 L1 Server	Unix	ACCESS CONTROL
5.3.3.1.1 Ensure password failed attempts lockout is configured	CIS Debian Linux 12 v1.1.0 L1 Workstation	Unix	ACCESS CONTROL
5.3.3.1.1 Ensure password failed attempts lockout is configured	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Server	Unix	ACCESS CONTROL
5.3.3.1.2 Ensure password unlock time is configured	CIS Rocky Linux 9 v2.0.0 L1 Server	Unix	ACCESS CONTROL
5.3.3.1.2 Ensure password unlock time is configured	CIS Ubuntu Linux 22.04 LTS v2.0.0 L1 Workstation	Unix	ACCESS CONTROL
5.3.3.1.2 Ensure password unlock time is configured	CIS Debian Linux 12 v1.1.0 L1 Server	Unix	ACCESS CONTROL
5.3.3.1.2 Ensure password unlock time is configured	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Server	Unix	ACCESS CONTROL
5.3.3.1.3 Ensure password failed attempts lockout includes root account	CIS Ubuntu Linux 22.04 LTS v2.0.0 L2 Server	Unix	ACCESS CONTROL
5.3.3.1.3 Ensure password failed attempts lockout includes root account	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	ACCESS CONTROL
5.3.3.1.3 Ensure password failed attempts lockout includes root account	CIS Ubuntu Linux 24.04 LTS v1.0.0 L2 Workstation	Unix	ACCESS CONTROL
5.3.3.1.3 Ensure password failed attempts lockout includes root account	CIS Debian Linux 12 v1.1.0 L2 Server	Unix	ACCESS CONTROL
5.4.2 Ensure lockout for failed password attempts is configured - password-auth	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
5.4.2 Ensure lockout for failed password attempts is configured - system-auth	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
5.4.2 Ensure system accounts are non-login	CIS Debian 9 Workstation L1 v1.0.1	Unix	ACCESS CONTROL
5.4.13 Ensure lockout for unsuccessful root logon attempts	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
6.2.14 Ensure no duplicate GIDs exist	CIS Debian Family Workstation L1 v1.0.0	Unix	ACCESS CONTROL
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group	CIS Debian 9 Server L1 v1.0.1	Unix	ACCESS CONTROL
6.2.15 Ensure no duplicate user names exist	CIS Debian Family Workstation L1 v1.0.0	Unix	ACCESS CONTROL
6.2.16 Ensure no duplicate group names exist	CIS Debian Family Workstation L1 v1.0.0	Unix	ACCESS CONTROL
6.6.1.3 Ensure Minimum Backoff Factor of 5	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	ACCESS CONTROL
6.6.1.4 Ensure Minimum Session Time of at least 20 seconds	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	ACCESS CONTROL
6.6.8 Ensure login message is set	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	ACCESS CONTROL
9.3.9 Ensure automatic key rotation is enabled within Azure Key Vault	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	ACCESS CONTROL

Detections

Analytics

Item Search