Item Search

Name	Audit Name	Plugin	Category
2.2 Ensure 'Protect RE' Firewall Filter includes explicit terms for all Management Services	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
4.2 Enable Auditing of Incoming Network Connections - AUE_ACCEPT : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_ACCEPT : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_CONNECT : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_CONNECT : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_inetd_connect : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_inetd_connect : cis	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_SOCKACCEPT : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_SOCKACCEPT : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.2 Enable Auditing of Incoming Network Connections - AUE_SOCKCONNECT : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.3 Enable Auditing of File Metadata Modification Events - AUE_ACLSET : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.3 Enable Auditing of File Metadata Modification Events - AUE_ACLSET : cis	CIS Solaris 11.2 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.3 Enable Auditing of File Metadata Modification Events - AUE_CHOWN : cis	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
6.8 Disable Host-based Authentication for Login-based Services - rlogin auth sufficient pam_rhosts_auth.so.1	CIS Solaris 11.1 L1 v1.0.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
6.8 Disable Host-based Authentication for Login-based Services - rlogin auth sufficient pam_rhosts_auth.so.1	CIS Solaris 11 L1 v1.1.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
6.8 Disable Host-based Authentication for Login-based Services - rsh auth sufficient pam_rhosts_auth.so.1	CIS Solaris 11.1 L1 v1.0.0	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
6.17 (L1) Ensure 'Detailed Tracking Audit Process Creation' is set to include 'Success'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
6.17 (L1) Ensure 'Detailed Tracking Audit Process Creation' is set to include 'Success'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.3.1 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
18.6.19.2.1 (L2) Disable IPv6 (Ensure TCPIP6 Parameter 'DisabledComponents' is set to '0xff (255)')	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.6.19.2.1 (L2) Disable IPv6 (Ensure TCPIP6 Parameter 'DisabledComponents' is set to '0xff (255)')	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NG	Windows	CONFIGURATION MANAGEMENT
18.6.19.2.1 (L2) Disable IPv6 (Ensure TCPIP6 Parameter 'DisabledComponents' is set to '0xff (255)')	CIS Microsoft Windows 10 Enterprise v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
19.7.8.1 (L1) Ensure 'Configure Windows spotlight on lock screen' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 DC	Windows	ACCESS CONTROL
19.7.8.1 Ensure 'Configure Windows spotlight on lock screen' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	ACCESS CONTROL
19.7.8.4 (L2) Ensure 'Turn off all Windows spotlight features' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v4.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
19.7.8.4 (L2) Ensure 'Turn off all Windows spotlight features' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v4.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
19.7.8.4 (L2) Ensure 'Turn off all Windows spotlight features' is set to 'Enabled'	CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
19.7.8.4 Ensure 'Turn off all Windows spotlight features' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v5.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
19.7.8.4 Ensure 'Turn off all Windows spotlight features' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v2.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
19.7.8.4 Ensure 'Turn off all Windows spotlight features' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L2 BL	Windows	CONFIGURATION MANAGEMENT
Extended Protection for LDAP Authentication (Domain Controllers only)	MSCT Windows Server 1903 DC v1.19.9	Windows	CONFIGURATION MANAGEMENT
Extended Protection for LDAP Authentication (Domain Controllers only)	MSCT Windows Server v1909 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Extended Protection for LDAP Authentication (Domain Controllers only)	MSCT Windows Server 2019 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Extended Protection for LDAP Authentication (Domain Controllers only) (DEPRECATED)	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Extended Protection for LDAP Authentication (Domain Controllers only) (DEPRECATED)	MSCT Windows Server v20H2 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
MD3X-00-000280 - Unused database components, DBMS software, and database objects must be removed.	DISA STIG MongoDB Enterprise Advanced 3.x v2r3 OS	Unix	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search