Item Search

Name	Audit Name	Plugin	Category
1.1.1.7 Ensure udf kernel module is not available	CIS Oracle Linux 9 v2.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
1.1.2.3.1 Ensure separate partition exists for /home	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.3.1.6 Ensure no unconfined services exist	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.2.25 Ensure 'Increase scheduling priority' is set to 'Administrators' - Window Manager\Window Manager Group'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.7.7 (L2) Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	ACCESS CONTROL, CONFIGURATION MANAGEMENT
3.1.6 Ensure RDS is disabled	CIS Debian 10 Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.3 Ensure rds kernel module is not available	CIS Ubuntu Linux 18.04 LTS v2.2.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
3.2.3 Ensure rds kernel module is not available	CIS Red Hat Enterprise Linux 9 v2.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
3.2.3 Ensure rds kernel module is not available	CIS Oracle Linux 7 v4.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
3.2.3 Ensure rds kernel module is not available	CIS Ubuntu Linux 24.04 LTS v1.0.0 L2 Workstation	Unix	CONFIGURATION MANAGEMENT
3.2.3 Ensure rds kernel module is not available	CIS Oracle Linux 8 Workstation L2 v3.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.3 Ensure rds kernel module is not available	CIS Rocky Linux 8 Server L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.3 Ensure rds kernel module is not available	CIS Rocky Linux 8 Workstation L2 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.2.4 Ensure sctp kernel module is not available	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
3.4.3 Ensure RDS is disabled - lsmod	CIS Debian 9 Workstation L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
3.4.3 Ensure RDS is disabled - modprobe	CIS Debian 8 Workstation L1 v2.0.2	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.4.3 Ensure RDS is disabled - modprobe	CIS Debian 9 Workstation L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
3.5.3 Ensure RDS is disabled	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
3.5.3 Ensure RDS is disabled - lsmod	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
3.5.3 Ensure RDS is disabled - modprobe	CIS Debian Family Server L2 v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
3.5.3 Ensure RDS is disabled - modprobe	CIS Ubuntu Linux 18.04 LXD Host L2 Workstation v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
3.5.3 Ensure RDS is disabled (lsmod)	CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0	Unix	CONFIGURATION MANAGEMENT
3.13 Only enable directory server if absolutely necessary - Ensure file /etc/rc2.d/S72directory does NOT exist.	CIS Solaris 9 v1.3	Unix	CONFIGURATION MANAGEMENT
5.2.1 Ensure '%ANY%' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.5 Ensure 'SELECT ANY DICTIONARY' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.3.2 Ensure 'EXECUTE_CATALOG_ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 18c DB Unified Auditing v1.1.0	OracleDB	ACCESS CONTROL
5.3.2 Ensure 'EXECUTE_CATALOG_ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.3.3 Ensure 'DBA' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.3.3 Ensure 'EXECUTE_CATALOG_ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	ACCESS CONTROL
5.3.4 Ensure 'DBA' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 12c DB Unified Auditing v3.0.0	OracleDB	ACCESS CONTROL
6.1.8 Ensure 'LOGMINING' Is Revoked From Unauthorized 'GRANTEE'	CIS Oracle Database 23ai v1.0.0 L1 RDBMS	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
6.3.2.4 Ensure system warns when audit logs are low on space	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.6 Ensure use of privileged commands are collected	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.8 Ensure events that modify user/group information are collected	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.12 Ensure login and logout events are collected	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.13 Ensure file deletion events by users are collected	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.17 Ensure successful and unsuccessful attempts to use the chacl command are collected	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.19 Ensure kernel module loading unloading and modification is collected	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
6.3.3.20 Ensure the audit configuration is immutable	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MEDIA PROTECTION
6.3.4.6 Ensure audit configuration files owner is configured	CIS Oracle Linux 9 v2.0.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.13 Secure the GRUB Menu - Check if 'lock' command is set after failsafe section	CIS Solaris 10 L1 v5.2	Unix	SYSTEM AND INFORMATION INTEGRITY
DG0172-ORACLE11 - Changes to DBMS security labels should be audited.	DISA STIG Oracle 11 Instance v9r1 Database	OracleDB
GEN007480 - The Reliable Datagram Sockets (RDS) protocol must be disabled or not installed unless required - 'install rds /bin/true'	DISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit	Unix	CONFIGURATION MANAGEMENT
MS.DEFENDER.1.3v1 - All users SHALL be added to Defender for Office 365 protection in either the standard or strict preset security policy.	CISA SCuBA Microsoft 365 Defender v1.5.0	microsoft_azure	ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
O19C-00-009800 - Object permissions granted to PUBLIC must be restricted.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O121-C2-016500 - The DBMS must terminate the network connection associated with a communications session at the end of the session or 15 minutes of inactivity.	DISA STIG Oracle 12c v3r2 Database	OracleDB	ACCESS CONTROL
SYMP-AG-000460 - Symantec ProxySG providing reverse proxy encryption intermediary services must implement NIST FIPS-validated cryptography to generate cryptographic hashes.	DISA Symantec ProxySG Benchmark ALG v1r3	BlueCoat	SYSTEM AND COMMUNICATIONS PROTECTION
SYMP-AG-000470 - Symantec ProxySG providing reverse proxy encryption intermediary services must implement NIST FIPS-validated cryptography for digital signatures.	DISA Symantec ProxySG Benchmark ALG v1r3	BlueCoat	SYSTEM AND COMMUNICATIONS PROTECTION
WBLC-08-000222 - Oracle WebLogic must separate hosted application functionality from Oracle WebLogic management functionality.	Oracle WebLogic Server 12c Windows v2r2	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
ZEBR-10-000100 - Zebra Android 10 must be configured to enforce a minimum password length of six characters.	AirWatch - DISA Zebra Android 10 COPE v1r2	MDM	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search