Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.2.2 (L2) Ensure 'Control use of the Web Bluetooth API' is set to 'Enabled: Do not allow any site to request access to Bluetooth devices via the Web Bluetooth API'CIS Google Chrome L2 v3.0.0Windows

CONFIGURATION MANAGEMENT

2.2.4.6.2 Ensure 'Disable AutoRepublish' is set to 'Enabled'CIS Microsoft Office Enterprise v1.2.0 L1Windows

ACCESS CONTROL

2.2.28 (L2) Ensure 'Log on as a batch job' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L2Windows

ACCESS CONTROL

2.2.28 (L2) Ensure 'Log on as a batch job' is set to 'Administrators'CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 NGWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.36 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)CIS Windows Server 2012 R2 DC L2 v3.0.0Windows

ACCESS CONTROL

2.2.37 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)CIS Microsoft Windows Server 2016 v3.0.0 L2 DCWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.37 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)CIS Microsoft Windows Server 2025 v1.0.0 L2 DCWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.37 (L2) Ensure 'Log on as a batch job' is set to 'Administrators' (DC Only)CIS Microsoft Windows Server 2019 v4.0.0 L2 DCWindows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.5 Ensure 'cookie protection mode' is configured for forms authentication - DefaultCIS IIS 7 L1 v1.8.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

3.13 Only enable directory server if absolutely necessary - Ensure file /etc/rc2.d/S72directory does NOT exist.CIS Solaris 9 v1.3Unix

CONFIGURATION MANAGEMENT

3.21 (L2) Host should enable strict lockdown modeCIS VMware ESXi 8.0 v1.2.0 L2VMware

ACCESS CONTROL

7.1 Ensure application security policies exist when allowing traffic from an untrusted zone to a more trusted zoneCIS Palo Alto Firewall 10 v1.2.0 L2Palo_Alto

ACCESS CONTROL, MEDIA PROTECTION

7.1 Ensure application security policies exist when allowing traffic from an untrusted zone to a more trusted zoneCIS Palo Alto Firewall 10 v1.2.0 L1Palo_Alto

ACCESS CONTROL, MEDIA PROTECTION

8.1.33 Set 'Web sites in less privileged Web content zones can navigate into this zone' to 'Enabled:Disable'CIS IE 11 v1.0.0Windows

ACCESS CONTROL

11.1 Ensure SELinux Is Enabled in Enforcing ModeCIS Apache HTTP Server 2.2 L2 v3.6.0Unix

ACCESS CONTROL

11.1 Ensure SELinux Is Enabled in Enforcing ModeCIS Apache HTTP Server 2.2 L2 v3.6.0 MiddlewareUnix

ACCESS CONTROL

AIX7-00-001032 - AIX administrative accounts must not run a web browser, except as needed for local service administration.DISA STIG AIX 7.x v3r1Unix

CONFIGURATION MANAGEMENT

AS24-W1-000650 - The Apache web server must set an inactive timeout for completing the TLS handshake - mod_reqtimeoutDISA STIG Apache Server 2.4 Windows Server v3r3Windows

ACCESS CONTROL

DISA_Microsoft_Windows_10_STIG_v3r4.audit from DISA Microsoft Windows 10 STIG v3r4DISA Microsoft Windows 10 STIG v3r4Windows
DISA_Oracle_Database_19c_STIG_v1r1.audit from DISA Oracle Database 19c STIG v1r1DISA Oracle Database 19c STIG v1r1 WindowsWindows
DISA_STIG_Apache_Server-2.2_Unix_v1r11_Middleware.audit from DISA Apache 2.2 Unix STIG v1r11DISA STIG Apache Server 2.2 Unix v1r11 MiddlewareUnix
DISA_STIG_BIND_9_v2r3.audit from DISA BIND 9.x v2r3 STIGDISA BIND 9.x STIG v2r3Unix
DISA_STIG_Microsoft_Word_2010_v1r12.audit from DISA Microsoft Word 2010 v1r12 STIGDISA STIG Office 2010 Word v1r12Windows
DISA_STIG_Oracle_Linux_6_v2r7.audit from DISA Oracle Linux 6 v2r7 STIGDISA STIG Oracle Linux 6 v2r7Unix
DISA_STIG_Oracle_Linux_7_v3r2.audit from DISA Oracle Linux 7 v3r2 STIGDISA Oracle Linux 7 STIG v3r2Unix
DISA_STIG_PostgreSQL_9-x_on_RHEL_v2r5_OS.audit from DISA PostgreSQL 9.x v2r5 STIGDISA STIG PostgreSQL 9.x on RHEL OS v2r5Unix
EDGE-00-000027 - Web Bluetooth API must be disabled.DISA STIG Edge v2r2Windows

CONFIGURATION MANAGEMENT

F5BI-DM-000163 - The F5 BIG-IP appliance must be configured to restrict a consistent inbound IP for the entire management session.DISA F5 BIG-IP Device Management STIG v2r4F5

SYSTEM AND COMMUNICATIONS PROTECTION

GEN004220 - Administrative accounts must not run a web browser, except as needed for local service administration.DISA STIG for Oracle Linux 5 v2r1Unix

ACCESS CONTROL, CONFIGURATION MANAGEMENT

GEN004220 - Administrative accounts must not run a web browser, except as needed for local service administration.DISA STIG AIX 6.1 v1r14Unix

ACCESS CONTROL

Internet Explorer Processes - Consistent Mime Handling - explorer.exeMSCT Windows 10 1809 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - Consistent Mime Handling - explorer.exeMSCT Windows Server 2019 MS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - Consistent Mime Handling - iexplore.exeMSCT Windows 10 1809 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - explorer.exe - Consistent Mime HandlingMSCT Windows 10 1803 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - FEATURE_MIME_HANDLING - (Reserved)MSCT Windows Server 2016 MS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - FEATURE_MIME_HANDLING - (Reserved)MSCT Windows Server v20H2 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - FEATURE_MIME_HANDLING - explorer.exeMSCT Windows 10 1903 v1.19.9Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - FEATURE_MIME_HANDLING - explorer.exeMSCT Windows 10 v2004 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - FEATURE_MIME_HANDLING - explorer.exeMSCT Windows 10 v21H1 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - FEATURE_MIME_HANDLING - explorer.exeMSCT Windows Server 2016 MS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - FEATURE_MIME_HANDLING - iexplore.exeMSCT Windows 10 v2004 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - FEATURE_MIME_HANDLING - iexplore.exeMSCT Windows Server 2016 MS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

JBOS-AS-000705 - JBoss must be configured to generate log records for privileged activities.DISA JBoss EAP 6.3 STIG v2r6Unix

AUDIT AND ACCOUNTABILITY

OH12-1X-000077 - The log data and records from OHS must be backed up onto a different system or media.DISA STIG Oracle HTTP Server 12.1.3 v2r3Unix

AUDIT AND ACCOUNTABILITY

SQL2-00-017300 - SQL Server must specifically prohibit or restrict the use of unauthorized functions and services in each instance.DISA STIG SQL Server 2012 DB Instance Security v1r20MS_SQLDB

CONFIGURATION MANAGEMENT

SYMP-AG-000580 - Symantec ProxySG must identify and log internal users associated with denied outgoing communications traffic posing a threat to external information systems - Access Logging EnabledDISA Symantec ProxySG Benchmark ALG v1r3BlueCoat

SYSTEM AND COMMUNICATIONS PROTECTION

VCLD-67-000015 - VAMI server binaries and libraries must be verified for their integrity.DISA STIG VMware vSphere 6.7 VAMI-lighttpd v1r3Unix

CONFIGURATION MANAGEMENT

VCLD-80-000022 The vCenter VAMI service must off-load log records onto a different system or media from the system being logged.DISA VMware vSphere 8.0 vCenter Appliance Management Interface (VAMI) STIG v2r1Unix

AUDIT AND ACCOUNTABILITY

VCWN-65-000014 - The vCenter Server for Windows must set the distributed port group MAC Address Change policy to reject.DISA STIG VMware vSphere vCenter 6.5 v2r3VMware

CONFIGURATION MANAGEMENT

VCWN-65-000018 - The vCenter Server for Windows must configure all port groups to a value other than that of the native VLAN.DISA STIG VMware vSphere vCenter 6.5 v2r3VMware

CONFIGURATION MANAGEMENT