Item Search

Name	Audit Name	Plugin	Category
ESXI-80-000237 - The ESXi host must not be configured to override virtual machine (VM) logger settings.	DISA VMware vSphere 8.0 ESXi STIG v2r3	Unix	CONFIGURATION MANAGEMENT
ESXI-80-000238 - The ESXi host must require TPM-based configuration encryption.	DISA VMware vSphere 8.0 ESXi STIG v2r3	Unix	CONFIGURATION MANAGEMENT
ESXI-80-000248 - The ESXi host must disable key persistence.	DISA VMware vSphere 8.0 ESXi STIG v2r3	Unix	CONFIGURATION MANAGEMENT
ESXI-80-000249 - The ESXi host must deny shell access for the dcui account.	DISA VMware vSphere 8.0 ESXi STIG v2r3	Unix	CONFIGURATION MANAGEMENT
F5BI-DM-000291 - The F5 BIG-IP appliance providing user access control intermediary services must display the Standard Mandatory DOD-approved Notice and Consent Banner before granting access to SSH.	DISA F5 BIG-IP Device Management STIG v2r4	F5	ACCESS CONTROL
GOOG-15-006300 - Google Android 15 must be configured to lock the display after 15 minutes (or less) of inactivity - or less of inactivity.	MobileIron - DISA Google Android 15 COBO v1r2	MDM	ACCESS CONTROL
GOOG-15-006300 - Google Android 15 must be configured to lock the display after 15 minutes (or less) of inactivity - or less of inactivity.	AirWatch - DISA Google Android 15 COPE v1r2	MDM	ACCESS CONTROL
GOOG-15-006300 - Google Android 15 must be configured to lock the display after 15 minutes (or less) of inactivity - or less of inactivity.	MobileIron - DISA Google Android 15 COPE v1r2	MDM	ACCESS CONTROL
GOOG-15-006400 - Google Android 15 must be configured to not allow more than 10 consecutive failed authentication attempts.	MobileIron - DISA Google Android 15 COBO v1r2	MDM	ACCESS CONTROL
GOOG-15-006700 - Google Android 15 allow list must be configured to not include applications with the following characteristics:	MobileIron - DISA Google Android 15 COPE v1r2	MDM	IDENTIFICATION AND AUTHENTICATION
GOOG-15-006750 - Google Android 15 allow list must be configured to not include artificial intelligence (AI) applications that process device data in the cloud, including Google Gemini.	AirWatch - DISA Google Android 15 COBO v1r2	MDM	IDENTIFICATION AND AUTHENTICATION
GOOG-15-006750 - Google Android 15 allow list must be configured to not include artificial intelligence (AI) applications that process device data in the cloud, including Google Gemini.	AirWatch - DISA Google Android 15 COPE v1r2	MDM	IDENTIFICATION AND AUTHENTICATION
GOOG-15-009500 - Google Android 15 must be configured to disable ad hoc wireless client-to-client connection capability.	MobileIron - DISA Google Android 15 COPE v1r2	MDM	SYSTEM AND COMMUNICATIONS PROTECTION
GOOG-15-009800 - Google Android 15 users must complete required training.	MobileIron - DISA Google Android 15 COPE v1r2	MDM	CONFIGURATION MANAGEMENT
GOOG-15-009950 - Google Android 15 must be configured to enforce a password for Wi-Fi and Bluetooth hotspot, if approved for use by the authorizing official (AO). If not approved for use, Wi-Fi and Bluetooth hotspot must be disabled.	MobileIron - DISA Google Android 15 COPE v1r2	MDM	CONFIGURATION MANAGEMENT
GOOG-15-010200 - The Google Android 15 work profile must be configured to enforce the system application disable list.	MobileIron - DISA Google Android 15 COBO v1r2	MDM	CONFIGURATION MANAGEMENT
GOOG-15-010300 - Google Android 15 must be provisioned as a fully managed device and configured to create a work profile.	MobileIron - DISA Google Android 15 COPE v1r2	MDM	CONFIGURATION MANAGEMENT
GOOG-15-010500 - The Google Android 15 work profile must be configured to disable the autofill services.	AirWatch - DISA Google Android 15 COBO v1r2	MDM	CONFIGURATION MANAGEMENT
GOOG-15-010500 - The Google Android 15 work profile must be configured to disable the autofill services.	MobileIron - DISA Google Android 15 COPE v1r2	MDM	CONFIGURATION MANAGEMENT
GOOG-15-010600 - Google Android 15 must be configured to disallow configuration of date and time.	AirWatch - DISA Google Android 15 COBO v1r2	MDM	CONFIGURATION MANAGEMENT
GOOG-15-010600 - Google Android 15 must be configured to disallow configuration of date and time.	MobileIron - DISA Google Android 15 COBO v1r2	MDM	CONFIGURATION MANAGEMENT
OL07-00-010341 - The Oracle Linux operating system must restrict privilege elevation to authorized personnel.	DISA Oracle Linux 7 STIG v3r2	Unix	CONFIGURATION MANAGEMENT
OL07-00-021031 - The Oracle Linux operating system must be configured so that all world-writable directories are owned by root, sys, bin, or an application user.	DISA Oracle Linux 7 STIG v3r2	Unix	CONFIGURATION MANAGEMENT
WN22-00-000060 - Windows Server 2022 manually managed application account passwords must be changed at least annually or when a system administrator with knowledge of the password leaves the organization.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-00-000110 - Windows Server 2022 must use an antivirus program.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-00-000120 - Windows Server 2022 must have a host-based intrusion detection or prevention system.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-00-000270 - Windows Server 2022 must have the roles and features required by the system documented.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-00-000330 - Windows Server 2022 must not have the Microsoft FTP service installed unless required by the organization.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-00-000470 - Windows Server 2022 must have Secure Boot enabled.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-AU-000180 - Windows Server 2022 must be configured to audit logoff successes.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	AUDIT AND ACCOUNTABILITY
WN22-CC-000010 - Windows Server 2022 must prevent the display of slide shows on the lock screen.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-CC-000080 - Windows Server 2022 hardened Universal Naming Convention (UNC) paths must be defined to require mutual authentication and integrity for at least the \\\SYSVOL and \\\NETLOGON shares.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-CC-000180 - Windows Server 2022 users must be prompted to authenticate when the system wakes from sleep (on battery).	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-CC-000190 - Windows Server 2022 users must be prompted to authenticate when the system wakes from sleep (plugged in).	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-CC-000240 - Windows Server 2022 administrator accounts must not be enumerated during elevation.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WN22-CC-000270 - Windows Server 2022 Application event log size must be configured to 32768 KB or greater.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	AUDIT AND ACCOUNTABILITY
WN22-CC-000280 - Windows Server 2022 Security event log size must be configured to 196608 KB or greater.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	AUDIT AND ACCOUNTABILITY
WN22-CC-000340 - Windows Server 2022 must not save passwords in the Remote Desktop Client.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	IDENTIFICATION AND AUTHENTICATION
WN22-CC-000390 - Windows Server 2022 must prevent attachments from being downloaded from RSS feeds.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-CC-000400 - Windows Server 2022 must disable Basic authentication for RSS feeds over HTTP.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-CC-000520 - Windows Server 2022 Windows Remote Management (WinRM) service must not store RunAs credentials.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	IDENTIFICATION AND AUTHENTICATION
WN22-DC-000140 - Windows Server 2022 must use separate, NSA-approved (Type 1) cryptography to protect the directory data in transit for directory service implementations at a classified confidentiality level when replication data traverses a network cleared to a lower level than the data.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WN22-DC-000390 - Windows Server 2022 Deny log on as a service user right must be configured to include no accounts or groups (blank) on domain controllers.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL
WN22-MS-000070 - Windows Server 2022 Access this computer from the network user right must only be assigned to the Administrators and Authenticated Users groups on domain-joined member servers and standalone or nondomain-joined systems.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	ACCESS CONTROL
WN22-SO-000030 - Windows Server 2022 built-in administrator account must be renamed.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-SO-000040 - Windows Server 2022 built-in guest account must be renamed.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-SO-000050 - Windows Server 2022 must force audit policy subcategory settings to override audit policy category settings.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	AUDIT AND ACCOUNTABILITY
WN22-SO-000240 - Windows Server 2022 must be configured to prevent anonymous users from having the same permissions as the Everyone group.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-SO-000270 - Windows Server 2022 must prevent NTLM from falling back to a Null session.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-SO-000320 - Windows Server 2022 must be configured to at least negotiate signing for LDAP client signing.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search