Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1 Ensure ESXi is properly patchedCIS VMware ESXi 6.7 v1.3.0 Level 1VMware

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.1.1 Install Available UpdatesCIS IBM DB2 12.1 v1.0.0 Database Level 1IBM_DB2DB

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2 Enable Auto UpdateCIS Apple macOS 10.12 L1 v1.2.0Unix

SYSTEM AND INFORMATION INTEGRITY

1.2 Enable Auto UpdateCIS Apple macOS 10.13 L1 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

1.2.1.2 Ensure gpgcheck is globally activatedCIS AlmaLinux OS 9 v2.0.0 L1 WorkstationUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.1.3 Ensure repo_gpgcheck is globally activatedCIS Rocky Linux 9 v2.0.0 L2 ServerUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.1.3 Ensure repo_gpgcheck is globally activatedCIS Rocky Linux 8 v3.0.0 L2 WorkstationUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.1.3 Ensure repo_gpgcheck is globally activatedCIS Oracle Linux 8 v4.0.0 L2 ServerUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.1.3 Ensure repo_gpgcheck is globally activatedCIS Oracle Linux 8 v4.0.0 L2 WorkstationUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.1.3 Ensure repo_gpgcheck is globally activatedCIS Red Hat Enterprise Linux 8 v4.0.0 L2 WorkstationUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.2 Ensure gpgcheck is globally activatedCIS Red Hat Enterprise Linux 7 v4.0.0 L1 ServerUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.2 Ensure gpgcheck is globally activatedCIS Amazon Linux 2023 v1.0.0 L1 ServerUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.2 Ensure gpgcheck is globally activatedCIS CentOS Linux 8 Server L1 v2.0.0Unix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.2 Ensure gpgcheck is globally activatedCIS CentOS Linux 7 v4.0.0 L1 ServerUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.2 Ensure gpgcheck is globally activatedCIS Fedora 28 Family Linux Server L1 v2.0.0Unix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.3 Ensure gpgcheck is globally activatedCIS SUSE Linux Enterprise 12 v3.2.1 L1 WorkstationUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.3 Ensure repo_gpgcheck is globally activatedCIS Oracle Linux 7 v4.0.0 L2 ServerUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.4 Ensure Red Hat Subscription Manager connection is configuredCIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 ServerUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.5 Ensure updates, patches, and additional security software are installedCIS Oracle Linux 7 v4.0.0 L1 WorkstationUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.2.5 Ensure updates, patches, and additional security software are installedCIS Red Hat Enterprise Linux 7 v4.0.0 L1 WorkstationUnix

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

1.4 Enable system data files and security update installs - 'ConfigDataInstall'CIS Apple macOS 10.12 L1 v1.2.0Unix

SYSTEM AND INFORMATION INTEGRITY

1.4 Enable system data files and security update installs - ConfigDataInstallCIS Apple OSX 10.9 L1 v1.3.0Unix

SYSTEM AND INFORMATION INTEGRITY

1.4 Enable system data files and security update installs - CriticalUpdateInstallCIS Apple OSX 10.9 L1 v1.3.0Unix

SYSTEM AND INFORMATION INTEGRITY

1.5 Enable macOS update installsCIS Apple macOS 10.12 L1 v1.2.0Unix

SYSTEM AND INFORMATION INTEGRITY

1.29 WN16-00-000320CIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT IIWindows

SYSTEM AND INFORMATION INTEGRITY

1.93 (L1) Ensure 'Enable component updates in Microsoft Edge' is set to 'Enabled'CIS Microsoft Intune for Edge v1.0.0 L1Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

2.1 Enable Automatic Updates - app.update.autoCIS Mozilla Firefox 102 ESR Windows L1 v1.0.0Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

2.1 Enable Automatic Updates - app.update.autoCIS Mozilla Firefox 38 ESR Windows L1 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.4 Set Update Interval Time ChecksCIS Mozilla Firefox 38 ESR Windows L1 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

3.3.1 (L1) Ensure 'Auto-update check period override' is set to any value except '0'CIS Microsoft Intune for Edge v1.0.0 L1Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

3.6 Ensure Relational Database Service Instances have Auto Minor Version Upgrade EnabledCIS Amazon Web Services Three-tier Web Architecture L1 1.0.0amazon_aws

SYSTEM AND INFORMATION INTEGRITY

4.3 Ensure 'Install iOS Updates' of 'Automatic Updates' is set to 'Enabled'AirWatch - CIS Apple iOS 18 v2.0.0 L1 Institution OwnedMDM

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

4.3 Ensure 'Install iOS Updates' of 'Automatic Updates' is set to 'Enabled'MobileIron - CIS Apple iOS 18 v2.0.0 L1 Institution OwnedMDM

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

4.3 Ensure 'Install iOS Updates' of 'Automatic Updates' is set to 'Enabled'MobileIron - CIS Apple iOS 26 v1.0.0 L1 Institution OwnedMDM

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

4.7 Ensure 'Automatic Downloads' of 'App Updates' is set to 'Enabled'MobileIron - CIS Apple iOS 18 v2.0.0 L1 End User OwnedMDM

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

4.7 Ensure 'Automatic Downloads' of 'App Updates' is set to 'Enabled'MobileIron - CIS Apple iPadOS 17 Institutionally Owned L1MDM

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

5.7.3 Apply Security Context to Your Pods and ContainersCIS Red Hat OpenShift Container Platform v1.9.0 L2 OpenShiftOpenShift

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

6.2 Turn on filename extensionsCIS Apple OSX 10.9 L1 v1.3.0Unix

SYSTEM AND INFORMATION INTEGRITY

7.6 Enable Extension Auto UpdateCIS Mozilla Firefox 102 ESR Windows L1 v1.0.0Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.17.1 Ensure 'Download Mode' is NOT set to 'Enabled: Internet'CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BLWindows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.17.1 Ensure 'Download Mode' is NOT set to 'Enabled: Internet'CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BLWindows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.93.2.2 (L1) Ensure 'Configure Automatic Updates: Scheduled install day' is set to '0 - Every day'CIS Windows Server 2012 DC L1 v3.0.0Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.94.1.1 Ensure 'No auto-restart with logged on users for scheduled automatic updates installations' is set to 'Disabled'CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MSWindows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.94.1.1 Ensure 'No auto-restart with logged on users for scheduled automatic updates installations' is set to 'Disabled'CIS Microsoft Windows Server 2025 v2.0.0 L1 MSWindows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.94.2.2 Ensure 'Configure Automatic Updates: Scheduled install day' is set to '0 - Every day'CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BLWindows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.94.2.2 Ensure 'Configure Automatic Updates: Scheduled install day' is set to '0 - Every day'CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BLWindows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.94.2.3 Ensure 'Enable features introduced via servicing that are off by default' is set to 'Disabled'CIS Microsoft Windows 11 Enterprise v5.0.1 L1Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.94.2.4 Ensure 'Remove access to 'Pause updates' feature' is set to 'Enabled'CIS Microsoft Windows 11 Stand-alone v5.0.0 L1Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.94.4.3 Ensure 'Enable optional updates' is set to 'Disabled'CIS Microsoft Windows 11 Stand-alone v5.0.0 L1Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.94.4.3 Ensure 'Enable optional updates' is set to 'Disabled'CIS Microsoft Windows 11 Enterprise v5.0.1 L1Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY