Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure packages are obtained from authorized repositories	CIS PostgreSQL 9.6 OS v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.2 Ensure Installation of Binary Packages	CIS PostgreSQL 9.6 OS v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.2.1.1 Ensure 'Protection From Zone Elevation' is set to Enabled - exprwd.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.2.1.1 Ensure 'Protection From Zone Elevation' is set to Enabled - mspub.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.2.1.1 Ensure 'Protection From Zone Elevation' is set to Enabled - onent.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.2.1.1 Ensure 'Protection From Zone Elevation' is set to Enabled - outlook.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.2.1.1 Ensure 'Protection From Zone Elevation' is set to Enabled - pptview.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.2.1.10 Ensure 'Object Caching Protection' is set to Enabled - exprwd.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.3 Ensure Installation of Community Packages	CIS PostgreSQL 9.6 OS v1.0.0	Unix	SYSTEM AND INFORMATION INTEGRITY
1.5 (L1) Ensure 'Allow the audio sandbox to run' is set to 'Enabled'	CIS Google Chrome L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.5 Ensure Data Cluster Initialized Successfully	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	ACCESS CONTROL
1.6 (L1) Ensure 'Ask where to save each file before downloading' is set to 'Enabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.9 (L1) Ensure 'Determine the availability of variations' is set to 'Enable all variations'	CIS Google Chrome L1 v3.0.0	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
1.10 (L1) Ensure 'Disable Certificate Transparency enforcement for a list of Legacy Certificate Authorities' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT
1.11 (L1) Ensure 'Disable Certificate Transparency enforcement for a list of subjectPublicKeyInfo hashes' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT
1.22 (L1) Ensure 'Import autofill form data from default browser on first run' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
1.24 (L1) Ensure 'Import search engines from default browser on first run' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
2.1.1 (L1) Ensure 'Update policy override' is set to 'Enabled' with 'Always allow updates (recommended)' or 'Automatic silent updates' specified	CIS Google Chrome L1 v3.0.0	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
2.2 Ensure the PostgreSQL pg_wheel group membership is correct - /etc/passwd	CIS PostgreSQL 9.6 OS v1.0.0	Unix	ACCESS CONTROL
2.2.5 (L1) Ensure 'Allow local file access to file:// URLs on these sites in the PDF Viewer' Is Disabled	CIS Google Chrome L1 v3.0.0	Windows	ACCESS CONTROL
2.3.1 (L1) Ensure 'Blocks external extensions from being installed' is set to 'Enabled'	CIS Google Chrome L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.2 (L1) Ensure 'Configure allowed app/extension types' is set to 'Enabled: extension, hosted_app, platform_app, theme'	CIS Google Chrome L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.5 (L1) Ensure 'Block third-party storage partitioning for these origins' Is Configured	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
2.4.1 (L2) Ensure 'Supported authentication schemes' is set to 'Enabled: ntlm, negotiate'	CIS Google Chrome L2 v3.0.0	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.6.1 (L1) Ensure 'Enable saving passwords to the password manager' is Explicitly Configured	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
2.8.2 (L1) Ensure 'Allow remote users to interact with elevated windows in remote assistance sessions' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.8.5 (L1) Ensure 'Enable firewall traversal from remote access host' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.8.6 (L1) Ensure 'Enable or disable PIN-less authentication for remote access hosts' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
2.12 (L2) Ensure 'Allow proceeding from the SSL warning page' is set to 'Disabled'	CIS Google Chrome L2 v3.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.19 (L1) Ensure 'Set the time period for update notifications' is set to 'Enabled: 86400000'	CIS Google Chrome L1 v3.0.0	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
2.20 (L1) Ensure 'Allow Web Authentication requests on sites with broken TLS certificates' Is Disabled	CIS Google Chrome L1 v3.0.0	Windows	ACCESS CONTROL, AWARENESS AND TRAINING, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.26 (L1) Ensure 'Enable Google Search Side Panel' Is Disabled	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
2.30 (L1) Ensure 'Enable Renderer App Container' Is Enabled	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
3.1.1 (L2) Ensure 'Default cookies setting' is set to 'Enabled: Keep cookies for the duration of the session'	CIS Google Chrome L2 v3.0.0	Windows	CONFIGURATION MANAGEMENT
3.1.2 Ensure the log destinations are set correctly	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.9 Ensure the maximum log file size is set correctly	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.11 Ensure the program name for PostgreSQL syslog messages is correct	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.6 (L1) Ensure 'Control how Chrome Cleanup reports data to Google' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
3.8 (L1) Ensure 'Enable alternate error pages' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
3.16 (L1) Ensure 'Enable URL-keyed anonymized data collection' is set to 'Disabled'	CIS Google Chrome L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
4.2.1 (L2) Ensure 'Control use of the Serial API' is set to 'Enabled: Do not allow any site to request access to serial ports via the Serial API'	CIS Google Chrome L2 v3.0.0	Windows	CONFIGURATION MANAGEMENT
4.2.7 (L2) Ensure 'Allow Window Management permission on these sites' Is Configured	CIS Google Chrome L2 v3.0.0	Windows	ACCESS CONTROL
4.4 (L2) Ensure 'Allow or deny audio capture' is set to 'Disabled'	CIS Google Chrome L2 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
6.3 Ensure 'Postmaster' Runtime Parameters are Configured	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	SYSTEM AND SERVICES ACQUISITION
6.4 Ensure 'SIGHUP' Runtime Parameters are Configured	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	SYSTEM AND SERVICES ACQUISITION
6.6 Ensure 'User' Runtime Parameters are Configured	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	ACCESS CONTROL
6.8 Ensure SSL is enabled and configured correctly	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure SSL Certificates are Configured For Replication - ssl cert file	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
7.2 Ensure a replication-only user is created and used for streaming replication	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	ACCESS CONTROL
7.4 Ensure WAL archiving is configured and functional - archive_command	CIS PostgreSQL 9.6 OS v1.0.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search