Item Search

Name	Audit Name	Plugin	Category
2.2.7 Ensure 'REMOTE_OS_AUTHENT' Is Set to 'FALSE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.2.7 Ensure 'REMOTE_OS_AUTHENT' Is Set to 'FALSE'	CIS Oracle Server 18c DB Traditional Auditing v1.1.0	OracleDB	IDENTIFICATION AND AUTHENTICATION
5.3.1 Remove operating system related ESPs - sybsyesp.dll	CIS Sybase 15.0 L2 OS Windows v1.1.0	Windows	CONFIGURATION MANAGEMENT
5.3.1 Remove operating system related ESPs - sybsyesp.so	CIS Sybase 15.0 L2 OS Unix v1.1.0	Unix	CONFIGURATION MANAGEMENT
9.12 Ensure audit policies are enabled within the database	CIS IBM DB2 v10 v1.1.0 Database Level 1	IBM_DB2DB
17.3.1 (L1) Ensure 'Audit PNP Activity' is set to include 'Success'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit PNP Activity' is set to include 'Success'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit PNP Activity' is set to include 'Success'	CIS Microsoft Windows Server 2022 v4.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit PNP Activity' is set to include 'Success'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
20.21 Ensure 'DoD Root Certificate Authority (CA) certificates' are installed in the 'Trusted Root Store'	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
ALMA-09-054470 - AlmaLinux OS 9 audit system must take appropriate action when the audit files have reached maximum size.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	AUDIT AND ACCOUNTABILITY
ALMA-09-055350 - AlmaLinux OS 9 must securely compare internal information system clocks at least every 24 hours.	DISA CloudLinux AlmaLinux OS 9 STIG v1r2	Unix	AUDIT AND ACCOUNTABILITY
APPL-15-001130 - The macOS system must configure audit_control owner to mode 440 or less permissive.	DISA Apple macOS 15 (Sequoia) STIG v1r3	Unix	AUDIT AND ACCOUNTABILITY
EPAS-00-003500 - Database objects must be owned by database/EDB Postgres Advanced Server principals authorized for ownership.	EnterpriseDB PostgreSQL Advanced Server DB v2r1	PostgreSQLDB	CONFIGURATION MANAGEMENT
EX13-MB-000325 - The Exchange SMTP automated banner response must not reveal server details.	DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
EX16-ED-000630 - The Exchange SMTP automated banner response must not reveal server details.	DISA Microsoft Exchange 2016 Edge Transport Server STIG v2r6	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
MD7X-00-004600 MongoDB must separate user functionality (including user interface services) from database management functionality.	DISA MongoDB Enterprise Advanced 7.x STIG v1r1	MongoDB	SYSTEM AND COMMUNICATIONS PROTECTION
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0.	DISA Oracle MySQL 8.0 v2r2 OS Linux	Unix	IDENTIFICATION AND AUTHENTICATION
O19C-00-000100 - Oracle Database must limit the number of concurrent sessions for each system account to an organization-defined number of sessions.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	ACCESS CONTROL
O19C-00-000300 - Oracle Database must automatically terminate a user session after organization-defined conditions or trigger events requiring session disconnect.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	ACCESS CONTROL
O19C-00-000500 - Oracle Database must associate organization-defined types of security labels having organization-defined security label values with information in storage.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	ACCESS CONTROL
O19C-00-000800 - Oracle Database must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	ACCESS CONTROL
O19C-00-001000 - Oracle Database must enforce approved authorizations for logical access to the system in accordance with applicable policy.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	ACCESS CONTROL
O19C-00-008100 - Database software directories, including database management system (DBMS) configuration files, must be stored in dedicated directories, or DASD pools, separate from the host OS and other applications.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-008300 - The role(s)/group(s) used to modify database structure (including but not necessarily limited to tables, indexes, storage, etc.) and logic modules (stored procedures, functions, triggers, links to software external to the DBMS, etc.) must be restricted to authorized users.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-008600 - Oracle instance names must not contain Oracle version numbers.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-009000 - The Oracle WITH GRANT OPTION privilege must not be granted to nondatabase administrator (DBA) or nonapplication administrator user accounts.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-009300 - The Oracle SQL92_SECURITY parameter must be set to TRUE.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-009500 - System privileges granted using the WITH ADMIN OPTION must not be granted to unauthorized user accounts.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-009700 - Oracle roles granted using the WITH ADMIN OPTION must not be granted to unauthorized accounts.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-009800 - Object permissions granted to PUBLIC must be restricted.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-010100 - Oracle application administration roles must be disabled if not required and authorized.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-010700 - Use of the Oracle Database installation account must be logged.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-011900 - Oracle Database default accounts must be assigned custom passwords.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-012100 - Oracle Database must provide a mechanism to automatically remove or disable temporary user accounts after 72 hours.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-012400 - Oracle Database must set the maximum number of consecutive invalid logon attempts to three.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-013000 - Unused database components, database management system (DBMS) software, and database objects must be removed.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-013300 - Use of external executables must be authorized.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	CONFIGURATION MANAGEMENT
O19C-00-013700 - Oracle Database must ensure users are authenticated with an individual authenticator prior to using a shared authenticator.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	IDENTIFICATION AND AUTHENTICATION
O19C-00-013800 - Oracle Database must uniquely identify and authenticate organizational users (or processes acting on behalf of organizational users).	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	IDENTIFICATION AND AUTHENTICATION
O19C-00-013900 - Oracle Database must enforce the DOD standards for password complexity.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	IDENTIFICATION AND AUTHENTICATION
O19C-00-014700 - Oracle Database must enforce password maximum lifetime restrictions.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	IDENTIFICATION AND AUTHENTICATION
O19C-00-016800 - Oracle Database must take needed steps to protect data at rest and ensure confidentiality and integrity of application data.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	SYSTEM AND COMMUNICATIONS PROTECTION
O19C-00-016900 - Oracle Database must implement cryptographic mechanisms to prevent unauthorized modification of organization-defined information at rest (to include, at a minimum, PII and classified information) on organization-defined information system components.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	SYSTEM AND COMMUNICATIONS PROTECTION
O19C-00-017100 - Oracle Database must isolate security functions from nonsecurity functions by means of separate security domains.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	SYSTEM AND COMMUNICATIONS PROTECTION
O19C-00-018400 - Oracle Database must restrict error messages so only authorized personnel may view them.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	SYSTEM AND INFORMATION INTEGRITY
O19C-00-019900 - Oracle Database must, for password-based authentication, require immediate selection of a new password upon account recovery.	DISA Oracle Database 19c STIG v1r1 Database	OracleDB	IDENTIFICATION AND AUTHENTICATION
O121-C2-016500 - The DBMS must terminate the network connection associated with a communications session at the end of the session or 15 minutes of inactivity.	DISA STIG Oracle 12c v3r2 Database	OracleDB	ACCESS CONTROL
SOL-11.1-010440 - The operating system must protect audit information from unauthorized access.	DISA STIG Solaris 11 SPARC v3r1	Unix	AUDIT AND ACCOUNTABILITY
TCAT-AS-000750 - Tomcat must use FIPS-validated ciphers on secured connectors.	DISA STIG Apache Tomcat Application Server 9 v3r2 Middleware	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search