Item Search

Name	Audit Name	Plugin	Category
18.5.11.2 (L1) Ensure 'Prohibit installation and configuration of Network Bridge on your DNS domain network' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT, CONTINGENCY PLANNING, PLANNING, PROGRAM MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION
18.6.11.2 (L1) Ensure 'Prohibit installation and configuration of Network Bridge on your DNS domain network' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT, CONTINGENCY PLANNING, PLANNING, PROGRAM MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION
18.6.11.2 (L1) Ensure 'Prohibit installation and configuration of Network Bridge on your DNS domain network' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL, CONFIGURATION MANAGEMENT
18.6.11.2 (L1) Ensure 'Prohibit installation and configuration of Network Bridge on your DNS domain network' is set to 'Enabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	ACCESS CONTROL, CONFIGURATION MANAGEMENT
18.6.11.2 (L1) Ensure 'Prohibit installation and configuration of Network Bridge on your DNS domain network' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	ACCESS CONTROL, CONFIGURATION MANAGEMENT
AADC-CL-000275 - Adobe Acrobat Pro DC Classic PDF file attachments must be blocked.	DISA STIG Adobe Acrobat Pro DC Classic Track v2r1	Windows	CONFIGURATION MANAGEMENT
AADC-CL-001015 - Adobe Acrobat Pro DC Classic Protected View must be enabled.	DISA STIG Adobe Acrobat Pro DC Classic Track v2r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
CGI-BIN directory should be disabled. 'Addmodule mod_cgi.c'	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
CGI-BIN directory should be disabled. 'ScriptAlias'	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
HTTP TRACE method should be disabled. 'RewriteCond'	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
HTTP TRACE method should be disabled. 'RewriteEngine'	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
HTTP TRACE method should be disabled. 'RewriteRule'	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
Huawei: Disable FTP IPV4	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT
Huawei: Disable FTP IPV6	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT
Huawei: Disable Telnet on IPV6	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT
Huawei: Require service timestamp	TNS Huawei VRP Best Practice Audit	Huawei	AUDIT AND ACCOUNTABILITY
Huawei: SSH Max Retries <= 3	TNS Huawei VRP Best Practice Audit	Huawei	ACCESS CONTROL
Huawei: User Interfaces are Authenticated	TNS Huawei VRP Best Practice Audit	Huawei	IDENTIFICATION AND AUTHENTICATION
Huawei: User Interfaces Configured Inbound SSH	TNS Huawei VRP Best Practice Audit	Huawei	CONFIGURATION MANAGEMENT
Keep Alive setting parameter value should be appropriately configured.	TNS IBM HTTP Server Best Practice	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
Logging Directives should be restricted to authorized users. - 'CustomLog logs/access_log combined'	TNS IBM HTTP Server Best Practice	Unix	AUDIT AND ACCOUNTABILITY
MaxClients parameter value should be configured to appropriate value.	TNS IBM HTTP Server Best Practice	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
Non-Essential modules should be disabled. 'mod_dav'	TNS IBM HTTP Server Best Practice	Unix	CONFIGURATION MANAGEMENT
OpenStack Compute - strict permissions set for Compute configuration files - /etc/nova/rootwrap.conf	TNS OpenStack Nova/Compute Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Compute - user/group ownership of config files set to root/nova - /etc/nova/api-paste.ini	TNS OpenStack Nova/Compute Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Horizon - CSRF_COOKIE_SECURE parameter set to True	TNS OpenStack Dashboard/Horizon Security Guide	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
OpenStack Horizon - USE_SSL parameter set to True	TNS OpenStack Dashboard/Horizon Security Guide	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
OpenStack Horizon - user/group of config files set to root/horizon - /etc/openstack-dashboard/local_settings.py	TNS OpenStack Dashboard/Horizon Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Identity - Identity uses strong hashing algorithms for PKI tokens	TNS OpenStack Keystone/Identity Security Guide	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
OpenStack Identity - strict permissions set for Identity configuration files - /etc/keystone/keystone-paste.ini	TNS OpenStack Keystone/Identity Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Identity - strict permissions set for Identity configuration files - /etc/keystone/ssl/certs/ca.pem	TNS OpenStack Keystone/Identity Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Identity - user/group ownership of config files set to keystone - /etc/keystone/keystone-paste.ini	TNS OpenStack Keystone/Identity Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Identity - user/group ownership of config files set to keystone - /etc/keystone/policy.json	TNS OpenStack Keystone/Identity Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Identity - user/group ownership of config files set to keystone - /etc/keystone/ssl/certs/signing_cert.pem	TNS OpenStack Keystone/Identity Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Networking - secure protocol used for authentication	TNS OpenStack Neutron/Networking Security Guide	Unix
OpenStack Networking - user/group ownership of config files set to root/neutron - /etc/neutron/policy.json	TNS OpenStack Neutron/Networking Security Guide	Unix	CONFIGURATION MANAGEMENT
OpenStack Networking - user/group ownership of config files set to root/neutron - /etc/neutron/rootwrap.conf	TNS OpenStack Neutron/Networking Security Guide	Unix	CONFIGURATION MANAGEMENT
Salesforce.com : Administrator Access - 'No System Administrator accounts have been created since the last scan'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Administrator Access - 'No System Administrator accounts have been modified since the last scan'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Execution User ID'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Error URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Error URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Send Client Credentials in Header'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Token Endpoint URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Salesforce'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
SalesForce.com : User Permissions - 'Review Active System Administrators'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
WA230 A22 - The Web site software used with the web server must have all applicable security patches applied and documented.	DISA STIG Apache Server 2.2 Unix v1r11	Unix	SYSTEM AND INFORMATION INTEGRITY
WA230 A22 - The Web site software used with the web server must have all applicable security patches applied and documented.	DISA STIG Apache Server 2.2 Unix v1r11 Middleware	Unix

Detections

Analytics

Item Search