Item Search

NameAudit NamePluginCategory
1.5 Ensure Interactive Login is DisabledCIS MySQL 5.6 Enterprise Windows OS L2 v2.0.0Windows

ACCESS CONTROL

1.17 Ensure Snowflake stored procedures do not run with ACCOUNTADMIN or SECURITYADMIN role privilegesCIS Snowflake Foundations v1.0.0 L1Snowflake

ACCESS CONTROL

2.2.1 Ensure that NGINX is run using a non-privileged, dedicated service accountCIS NGINX Benchmark v2.1.0 L1 ProxyUnix

ACCESS CONTROL

3.1 Ensure least privilege for database accountsCIS MongoDB 4 L1 DB v1.0.0MongoDB

ACCESS CONTROL

3.1 Ensure least privilege for database accountsCIS MongoDB 7 v1.1.0 L1 MongoDBMongoDB

ACCESS CONTROL

4.1 Ensure sudo is configured correctlyCIS PostgreSQL 16 OS v1.0.0Unix

ACCESS CONTROL

4.1.4 If proxy kubeconfig file exists ensure ownership is set to root:rootCIS Red Hat OpenShift Container Platform v1.7.0 L1OpenShift

ACCESS CONTROL

4.1.6 Ensure that the --kubeconfig kubelet.conf file ownership is set to root:rootCIS Red Hat OpenShift Container Platform v1.7.0 L1OpenShift

ACCESS CONTROL

4.1.8 Ensure that the client certificate authorities file ownership is set to root:rootCIS Red Hat OpenShift Container Platform v1.7.0 L1OpenShift

ACCESS CONTROL

4.2.7 Ensure SSH root login is disabledCIS Amazon Linux 2023 Server L1 v1.0.0Unix

ACCESS CONTROL

4.2.7 Ensure SSH root login is disabledCIS Ubuntu Linux 20.04 LTS Server L1 v2.0.1Unix

ACCESS CONTROL

4.2.20 Ensure sshd PermitRootLogin is disabledCIS CentOS Linux 7 v4.0.0 L1 WorkstationUnix

ACCESS CONTROL

4.2.20 Ensure sshd PermitRootLogin is disabledCIS Oracle Linux 7 v4.0.0 L1 ServerUnix

ACCESS CONTROL

4.2.20 Ensure sshd PermitRootLogin is disabledCIS Red Hat Enterprise Linux 7 v4.0.0 L1 ServerUnix

ACCESS CONTROL

4.3.1 Ensure sudo is installedCIS Oracle Linux 7 v4.0.0 L1 ServerUnix

ACCESS CONTROL

4.3.1 Ensure sudo is installedCIS Red Hat Enterprise Linux 7 v4.0.0 L1 ServerUnix

ACCESS CONTROL

4.3.1 Ensure sudo is installedCIS Debian 10 Server L1 v2.0.0Unix

ACCESS CONTROL

4.3.4 Ensure users must provide password for escalationCIS Amazon Linux 2 v3.0.0 L2Unix

ACCESS CONTROL

4.3.4 Ensure users must provide password for escalationCIS Rocky Linux 8 Server L2 v2.0.0Unix

ACCESS CONTROL

4.3.4 Ensure users must provide password for escalationCIS Rocky Linux 8 Workstation L2 v2.0.0Unix

ACCESS CONTROL

4.3.4 Ensure users must provide password for privilege escalationCIS Debian 10 Workstation L2 v2.0.0Unix

ACCESS CONTROL

4.3.5 Ensure re-authentication for privilege escalation is not disabled globallyCIS Debian 10 Server L1 v2.0.0Unix

ACCESS CONTROL

4.3.6 Ensure sudo authentication timeout is configured correctlyCIS Ubuntu Linux 20.04 LTS Workstation L1 v2.0.1Unix

ACCESS CONTROL

4.3.6 Ensure sudo authentication timeout is configured correctlyCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 ServerUnix

ACCESS CONTROL

4.4 Ensure No Users Are Assigned the 'DEFAULT' ProfileCIS Oracle Server 19c DB Unified Auditing v1.2.0OracleDB

ACCESS CONTROL

4.8 Ensure the set_user extension is installedCIS PostgreSQL 17 v1.0.0 L1 PostgreSQLPostgreSQLDB

ACCESS CONTROL

5.1.1 Ensure that the cluster-admin role is only used where requiredCIS Red Hat OpenShift Container Platform v1.7.0 L1OpenShift

ACCESS CONTROL

5.1.20 Ensure sshd PermitRootLogin is disabledCIS AlmaLinux OS 9 v2.0.0 L1 ServerUnix

ACCESS CONTROL

5.2.4 Ensure users must provide password for escalationCIS AlmaLinux OS 9 v2.0.0 L2 ServerUnix

ACCESS CONTROL

5.2.4 Ensure users must provide password for escalationCIS SUSE Linux Enterprise 15 v2.0.0 L2 ServerUnix

ACCESS CONTROL

5.2.4 Ensure users must provide password for escalationCIS SUSE Linux Enterprise 15 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL

5.2.6 Ensure sudo authentication timeout is configured correctlyCIS SUSE Linux Enterprise 15 v2.0.0 L1 ServerUnix

ACCESS CONTROL

5.2.7 Ensure SSH root login is disabledCIS CentOS Linux 8 Server L1 v2.0.0Unix

ACCESS CONTROL

5.2.7 Ensure SSH root login is disabledCIS Fedora 28 Family Linux Server L1 v2.0.0Unix

ACCESS CONTROL

5.3.4 Ensure users must provide password for escalationCIS CentOS Linux 8 Workstation L2 v2.0.0Unix

ACCESS CONTROL

5.3.4 Ensure users must provide password for escalationCIS Fedora 28 Family Linux Workstation L2 v2.0.0Unix

ACCESS CONTROL

5.3.6 Ensure sudo authentication timeout is configured correctlyCIS CentOS Linux 8 Server L1 v2.0.0Unix

ACCESS CONTROL

5.3.12 Ensure SSH root login is disabledCIS Amazon Linux 2 STIG v2.0.0 L1 ServerUnix

ACCESS CONTROL

5.5 Ensure the "root" Account Is DisabledCIS Apple macOS 14.0 Sonoma Cloud-tailored v1.1.0 L1Unix

ACCESS CONTROL

5.5 Ensure the "root" Account Is DisabledCIS Apple macOS 12.0 Monterey Cloud-tailored v1.1.0 L1Unix

ACCESS CONTROL

6.1.2 Ensure Admin Privileges Are Revoked from Unauthorized 'GRANTEE'CIS Oracle Database 23ai v1.0.0 L1 RDBMSOracleDB

ACCESS CONTROL

7.2 Ensure logging of replication commands is configuredCIS PostgreSQL 17 v1.0.0 L1 PostgreSQLPostgreSQLDB

ACCESS CONTROL

18.4.1 (L1) Ensure 'Apply UAC restrictions to local accounts on network logons' is set to 'Enabled' (MS only)CIS Windows Server 2012 R2 MS L1 v3.0.0Windows

ACCESS CONTROL

18.9.90.2 (L1) Ensure 'Always install with elevated privileges' is set to 'Disabled'CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DCWindows

ACCESS CONTROL

18.9.90.2 (L1) Ensure 'Always install with elevated privileges' is set to 'Disabled'CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1Windows

ACCESS CONTROL

18.9.90.2 Ensure 'Always install with elevated privileges' is set to 'Disabled'CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DCWindows

ACCESS CONTROL

18.10.81.2 (L1) Ensure 'Always install with elevated privileges' is set to 'Disabled'CIS Windows Server 2012 R2 MS L1 v3.0.0Windows

ACCESS CONTROL

19.7.43.1 (L1) Ensure 'Always install with elevated privileges' is set to 'Disabled'CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1Windows

ACCESS CONTROL

20.70 Ensure 'Users with Administrative privileges have separate accounts for administrative duties and normal operational tasks'CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DCWindows

ACCESS CONTROL

20.70 Ensure 'Users with Administrative privileges have separate accounts for administrative duties and normal operational tasks'CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MSWindows

ACCESS CONTROL