Item Search

Name	Audit Name	Plugin	Category
1.1.1.4 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Debian 9 Server L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
1.1.1.4 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Debian 9 Workstation L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled	CIS CentOS 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - /etc/modprobe.d/*	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - lsmod	CIS Debian 8 Workstation L1 v2.0.2	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - lsmod	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Red Hat 6 Server L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Debian Family Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
2.2.1.2 Ensure 'Allow Siri while device is locked' is set to 'Disabled'	MobileIron - CIS Apple iOS 14 and iPadOS 14 v1.0.0 End User Owned L1	MDM	ACCESS CONTROL
2.2.1.11 Ensure 'Show Control Center in Lock screen' is set to 'Disabled'	AirWatch - CIS Apple iOS 14 and iPadOS 14 v1.0.0 End User Owned L1	MDM	ACCESS CONTROL
2.4.1 Ensure 'Allow simple value' is set to 'Disabled'	MobileIron - CIS Apple iOS 10 v2.0.0 End User Owned L1	MDM	IDENTIFICATION AND AUTHENTICATION
2.4.1 Ensure 'Allow simple value' is set to 'Disabled'	AirWatch - CIS Apple iOS 11 v1.0.0 End User Owned L1	MDM	CONFIGURATION MANAGEMENT
2.4.3 Ensure 'Maximum Auto-Lock' is set to '2 minutes' or less	AirWatch - CIS Apple iOS 13 and iPadOS 13 v1.0.0 End User Owned L1	MDM	ACCESS CONTROL
2.4.5 Ensure 'Maximum number of failed attempts' is set to '6'	MobileIron - CIS Apple iOS 12 v1.0.0 End User Owned L1	MDM	ACCESS CONTROL
2.4.5 Ensure 'Maximum number of failed attempts' is set to '6'	AirWatch - CIS Apple iOS 13 and iPadOS 13 v1.0.0 End User Owned L1	MDM	CONFIGURATION MANAGEMENT
2.5.3 Ensure HA Reserved Management Interface is configured	CIS Fortigate 7.0.x v1.3.0 L1	FortiGate	ACCESS CONTROL, CONFIGURATION MANAGEMENT
3.2.1.5 Ensure 'Allow iCloud documents & data' is set to 'Disabled'	MobileIron - CIS Apple iPadOS 17 Institutionally Owned L1	MDM	CONFIGURATION MANAGEMENT
3.2.1.5 Ensure 'Allow iCloud documents & data' is set to 'Disabled'	AirWatch - CIS Apple iOS 18 v1.0.0 L1 Institution Owned	MDM	CONFIGURATION MANAGEMENT
3.2.1.5 Ensure 'Allow iCloud documents & data' is set to 'Disabled'	MobileIron - CIS Apple iOS 18 v1.0.0 L1 Institution Owned	MDM	CONFIGURATION MANAGEMENT
3.2.1.10 Ensure 'Force encrypted backups' is set to 'Enabled'	AirWatch - CIS Apple iOS 17 Institution Owned L1	MDM	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
3.2.1.15 Ensure 'Allow installing configuration profiles' is set to 'Disabled'	AirWatch - CIS Apple iPadOS 17 Institutionally Owned L1	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.2.1.16 Ensure 'Allow adding VPN configurations' is set to 'Disabled'	AirWatch - CIS Apple iPadOS 18 v1.0.0 L1 Institutionally Owned	MDM	ACCESS CONTROL
3.2.1.16 Ensure 'Allow modifying cellular data app settings' is set to 'Disabled'	AirWatch - CIS Apple iOS 14 and iPadOS 14 Institution Owned L2	MDM	CONFIGURATION MANAGEMENT
3.2.1.21 Ensure 'Treat AirDrop as unmanaged destination' is set to 'Enabled'	AirWatch - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	ACCESS CONTROL
3.2.1.28 Ensure 'Show Control Center in Lock screen' is set to 'Disabled'	AirWatch - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	ACCESS CONTROL
3.2.2.1 Ensure 'Force fraud warning' is set to 'Enabled'	AirWatch - CIS Apple iOS 18 v1.0.0 L1 Institution Owned	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.4.1 Ensure 'Allow simple value' is set to 'Disabled'	MobileIron - CIS Apple iOS 10 v2.0.0 Institution Owned L1	MDM	IDENTIFICATION AND AUTHENTICATION
3.4.2 Ensure 'Minimum passcode length' is set to '6' or greater	AirWatch - CIS Apple iOS 13 and iPadOS 13 Institution Owned L1	MDM	CONFIGURATION MANAGEMENT
3.4.5 Ensure 'Maximum number of failed attempts' is set to '6'	AirWatch - CIS Apple iOS 12 v1.0.0 Institution Owned L1	MDM	ACCESS CONTROL
3.7.1 Ensure 'Allow user to move messages from this account' is set to 'Disabled'	AirWatch - CIS Apple iOS 17 Institution Owned L1	MDM	ACCESS CONTROL, MEDIA PROTECTION
3.7.1 Ensure 'Allow user to move messages from this account' is set to 'Disabled'	MobileIron - CIS Apple iOS 18 v1.0.0 L1 Institution Owned	MDM	ACCESS CONTROL, MEDIA PROTECTION
3.8.1 Ensure 'If Lost, Return to... Message' is 'Configured'	AirWatch - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	ACCESS CONTROL
3.8.1 Ensure 'If Lost, Return to... Message' is 'Configured'	MobileIron - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	ACCESS CONTROL
4.1.5 Review Airprint	MobileIron - CIS Apple iPadOS 17 Institutionally Owned L2	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.1.5 Review Airprint	MobileIron - CIS Apple iPadOS 18 v1.0.0 L2 End User Owned	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.1.5 Review Airprint	MobileIron - CIS Apple iPadOS 18 v1.0.0 L2 Institutionally Owned	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.1.5 Review Airprint	AirWatch - CIS Apple iOS 18 v1.0.0 L2 End User Owned	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2.14 Ensure sshd MACs are configured	CIS Oracle Linux 8 Workstation L1 v3.0.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.2.15 Ensure sshd MACs are configured	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.3 Create network specific locations	CIS Apple macOS 10.12 L2 v1.2.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
5.2 Ensure 'Peer Name Resolution Protocol (PNRPsvc)' is set to 'Not Installed'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	CONFIGURATION MANAGEMENT
5.2 Ensure 'Peer Name Resolution Protocol (PNRPsvc)' is set to 'Not Installed' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	CONFIGURATION MANAGEMENT
20.45 Ensure 'Outdated or unused accounts are removed or disabled' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
20.49 Ensure 'Permissions for the Security Event Log must prevent access by non-privileged accounts'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
20.49 Ensure 'Permissions for the Security Event Log must prevent access by non-privileged accounts' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
20.50 Ensure 'Permissions for the System Event Log must prevent access by non-privileged accounts'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
20.50 Ensure 'Permissions for the System Event Log must prevent access by non-privileged accounts'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
JBOS-AS-000080 - The JBoss server must generate log records for access and authentication events to the management interface.	DISA JBoss EAP 6.3 STIG v2r6	Unix	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search