Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.1.3 Ensure mounting of jffs2 filesystems is disabled - lsmodCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

1.1.1.6 Ensure mounting of squashfs filesystems is disabled - /etc/modprobe.d/CIS.confCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

1.1.1.6 Ensure mounting of squashfs filesystems is disabled - lsmodCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

1.2.1.7 Ensure 'Disable User Name and Password' is set to Enabled - mse7.exeCIS Microsoft Office 2016 v1.1.0Windows

CONFIGURATION MANAGEMENT

1.2.1.7 Ensure 'Disable User Name and Password' is set to Enabled - mspub.exeCIS Microsoft Office 2016 v1.1.0Windows

CONFIGURATION MANAGEMENT

1.2.1.7 Ensure 'Disable User Name and Password' is set to Enabled - onent.exeCIS Microsoft Office 2016 v1.1.0Windows

CONFIGURATION MANAGEMENT

1.2.1.8 Ensure 'Scripted Window Security Restrictions' is set to Enabled - excel.exeCIS Microsoft Office 2016 v1.1.0Windows

CONFIGURATION MANAGEMENT

1.2.1.8 Ensure 'Scripted Window Security Restrictions' is set to Enabled - mspub.exeCIS Microsoft Office 2016 v1.1.0Windows

CONFIGURATION MANAGEMENT

1.2.1.9 Ensure 'Local Machine Zone Lockdown Security' is set to Enabled - pptview.exeCIS Microsoft Office 2016 v1.1.0Windows

CONFIGURATION MANAGEMENT

1.2.2 Ensure GPG keys are configuredCIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND INFORMATION INTEGRITY

1.4.1 Ensure permissions on bootloader config are configuredCIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND INFORMATION INTEGRITY

1.4.3 Ensure interactive boot is not enabledCIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND INFORMATION INTEGRITY

1.5.1 Ensure core dumps are restricted - limits.conf, limits.d/*CIS Amazon Linux v2.1.0 L1Unix

ACCESS CONTROL

1.5.1 Ensure core dumps are restricted - sysctlCIS Amazon Linux v2.1.0 L1Unix

ACCESS CONTROL

1.7.1.1 Ensure message of the day is configured properly - mrsvCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

1.7.1.3 Ensure remote login warning banner is configured properly - mrsvCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.1.7 Ensure talk server is not enabledCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.1.10 Ensure rsync service is not enabledCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.2.1.3 Ensure chrony is configured - OPTIONSCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.2.3 Ensure Avahi Server is not enabledCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.2.7 Ensure NFS and RPC are not enabled - NFSCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

2.11.1.2 Ensure 'Disable UI Extending from Documents and Templates' is set to Enabled - ExcelCIS Microsoft Office 2016 v1.1.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

2.11.1.2 Ensure 'Disable UI Extending from Documents and Templates' is set to Enabled - OutlookCIS Microsoft Office 2016 v1.1.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

2.21.2 Ensure 'Control Blogging' is set to Enabled (All Blogging Disabled)CIS Microsoft Office 2016 v1.1.0Windows

CONFIGURATION MANAGEMENT

2.22.2 Ensure 'Block Opening of Pre-release Versions of File Formats New to Excel 2016 ...' is set to EnabledCIS Microsoft Office 2016 v1.1.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.24.1.6 Ensure Set 'Automatically Receive Small Updates to Improve Reliability' is set to DisabledCIS Microsoft Office 2016 v1.1.0Windows

CONFIGURATION MANAGEMENT

2.25.4 Ensure 'Suppress Hyperlink Warnings' is set to DisabledCIS Microsoft Office 2016 v1.1.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.25.5 Ensure 'Protect Document Metadata for Rights Managed Office Open XML Files' is set to EnabledCIS Microsoft Office 2016 v1.1.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

2.25.11 Ensure 'Disable All Trust Bar Notifications For Security Issues' is set to DisabledCIS Microsoft Office 2016 v1.1.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.30.1 Ensure 'Disable Smart Document's Use of Manifests' is set to EnabledCIS Microsoft Office 2016 v1.1.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

2.36.1.1 Ensure 'Improve Proofing Tools' is set to DisabledCIS Microsoft Office 2016 v1.1.0Windows

CONFIGURATION MANAGEMENT

3.2.2 Ensure ICMP redirects are not accepted - 'net.ipv4.conf.all.accept_redirects = 0 sysctl'CIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.2.3 Ensure secure ICMP redirects are not accepted - 'net.ipv4.conf.default.secure_redirects = 0 sysctl'CIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.2.4 Ensure suspicious packets are logged - 'net.ipv4.conf.all.log_martians = 1 /etc/sysctl.conf /etc/sysctl.d/*'CIS Amazon Linux v2.1.0 L1Unix

AUDIT AND ACCOUNTABILITY

3.2.6 Ensure bogus ICMP responses are ignored - /etc/sysctl.conf /etc/sysctl.d/*CIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.2.7 Ensure Reverse Path Filtering is enabled - 'net.ipv4.conf.default.rp_filter = 1 /etc/sysctl.conf /etc/sysctl.d/*'CIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.4.3 Ensure /etc/hosts.deny is configuredCIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.4.5 Ensure permissions on /etc/hosts.deny are configuredCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

3.6.1 Ensure iptables is installedCIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.6.2 Ensure default deny firewall policy - Chain FORWARDCIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.6.2 Ensure default deny firewall policy - Chain OUTPUTCIS Amazon Linux v2.1.0 L1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

3.6.4 Ensure outbound and established connections are configuredCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

4.2.1.5 Ensure remote rsyslog messages are only accepted on designated log hosts. - InputTCPServerRun 514CIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

4.2.2.2 Ensure logging is configuredCIS Amazon Linux v2.1.0 L1Unix

AUDIT AND ACCOUNTABILITY

4.2.2.4 Ensure syslog-ng is configured to send logs to a remote log host - destination logserverCIS Amazon Linux v2.1.0 L1Unix

AUDIT AND ACCOUNTABILITY

5.1.4 Ensure permissions on /etc/cron.daily are configuredCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

5.1.6 Ensure permissions on /etc/cron.monthly are configuredCIS Amazon Linux v2.1.0 L1Unix

CONFIGURATION MANAGEMENT

5.2.3 Ensure SSH LogLevel is set to INFOCIS Amazon Linux v2.1.0 L1Unix

AUDIT AND ACCOUNTABILITY

5.2.12 Ensure SSH Idle Timeout Interval is configured - ClientAliveIntervalCIS Amazon Linux v2.1.0 L1Unix

ACCESS CONTROL

5.2.15 Ensure SSH warning banner is configuredCIS Amazon Linux v2.1.0 L1Unix

ACCESS CONTROL