Item Search

Name	Audit Name	Plugin	Category
1.1.5 (L1) Ensure 'Password must meet complexity requirements' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	IDENTIFICATION AND AUTHENTICATION
1.1.8 Ensure nodev option set on /var partition	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.4.1 Ensure core dumps are restricted	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	CONFIGURATION MANAGEMENT
1.5.1.4 Ensure permissions on /etc/motd are configured	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.8 Ensure 'Attachment Filtering Agent' is configured	CIS Microsoft Exchange Server 2019 L1 Edge v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
3.2.4 Ensure suspicious packets are logged	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
3.3.2.3 Ensure outbound and established connections are configured	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.1.1.1 Ensure correct container image is set for stackdriver logging agent	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	AUDIT AND ACCOUNTABILITY
4.5 Ensure 'SYS.USER$MIG' Has Been Dropped	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.1.1.2 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "File System" Packages	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.1.3 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "Encryption" Packages	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.1.4 Ensure 'EXECUTE' is revoked from 'PUBLIC' on "Java" Packages	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.3.3 Ensure 'ALL' Is Revoked on 'Sensitive' Tables	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.1.14 Ensure only strong MAC algorithms are used	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.2.1 Ensure '%ANY%' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.3 Ensure 'EXECUTE ANY PROCEDURE' Is Revoked from 'OUTLN'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.10 Ensure 'CREATE PROCEDURE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.12 Ensure 'CREATE ANY LIBRARY' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.2.15 Ensure 'GRANT ANY ROLE' Is Revoked from Unauthorized 'GRANTEE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL, MEDIA PROTECTION
5.3.1.4 Ensure inactive password lock is 30 days or less	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	IDENTIFICATION AND AUTHENTICATION
6.2.12 Ensure no users have .netrc files	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.2.13 Ensure the 'ALTER DATABASE LINK' Action Audit Is Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
6.2.14 Ensure no users have .rhosts files	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.2.25 Ensure the 'ALTER TRIGGER' Action Audit IS Enabled	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	AUDIT AND ACCOUNTABILITY
17.2.6 (L1) Ensure 'Audit User Account Management' is set to 'Success and Failure'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.9.65.3.9.1 Ensure 'Always prompt for password upon connection' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Administrator Access - 'No System Administrator accounts have been created since the last scan'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Administrator Access - 'No System Administrator accounts have been modified since the last scan'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Execution User ID'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Janrain'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Error URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Error URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Send Client Credentials in Header'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Token Endpoint URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Salesforce'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Email Services - 'AttachmentOption != 2 or 3'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Email Services - 'AuthenticationFailureAction != 2 or 3'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Email Services - 'IsTextAttachmentsAsBinary = False'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Email Services - 'OverLimitAction != 2'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : Monitoring Login History - 'Users that have not logged in'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Network-Based Security - 'Login IP Addresses'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	AUDIT AND ACCOUNTABILITY
Salesforce.com : Object Permissions - 'DefaultAccountAccess should not be Public Read/Write or Public Read/Write/Transfer'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Securing Data Access - 'DashboardMobile iPad access'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Password Policies - 'minimum password length >= 8'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Setting Password Policies - 'Must mix numbers, uppercase and lowercase letters, and special characters'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : Setting Session Security - 'Review Site.com Contributor User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review Site.com Publisher User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review Wireless User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
SalesForce.com : User Permissions - 'Review Active System Administrators'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL

Detections

Analytics

Item Search