Detections
Analytics

Item Search

NameAudit NamePluginCategory
6.1 Ensure that MongoDB uses a non-default portCIS MongoDB 6 v1.2.0 L1 MongoDBUnix

CONFIGURATION MANAGEMENT

6.1 Ensure that MongoDB uses a non-default portCIS MongoDB 7 v1.2.0 L1 UnixUnix

CONFIGURATION MANAGEMENT

9.12 Set 'Turn off Crash Detection' to 'Enabled'CIS IE 10 v1.1.0Windows

CONFIGURATION MANAGEMENT

18.10.42.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.43.16 (L1) Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BLWindows

SYSTEM AND INFORMATION INTEGRITY

All network interfaces are operating in full-duplex modeTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

Auto-start is not enabledTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

DTAM054 - McAfee VirusScan On-Demand scan must be configured to find unknown program threats.DISA McAfee VirusScan 8.8 Managed Client STIG v6r1Windows

SYSTEM AND INFORMATION INTEGRITY

DTAVSEL-102 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x On-Demand scanner must be configured to find unknown program viruses.McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6Unix

SYSTEM AND INFORMATION INTEGRITY

Enable QoS on all VM guestsTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Disable SNMPv2'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

HP ProCurve - 'Disable TFTP client'TNS HP ProCurveHPProCurve

CONFIGURATION MANAGEMENT

HP ProCurve - 'Enable HTTPS'TNS HP ProCurveHPProCurve

SYSTEM AND COMMUNICATIONS PROTECTION

HP ProCurve - 'Privilege mode is configured'TNS HP ProCurveHPProCurve

IDENTIFICATION AND AUTHENTICATION

HP ProCurve - 'Secure Management VLAN is configured'TNS HP ProCurveHPProCurve

ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Identify a network interface to be used for storage accessTNS Citrix HypervisorUnix

CONFIGURATION MANAGEMENT

JUSX-IP-000013 - To protect against unauthorized data mining, the Juniper Networks SRX Series Gateway IDPS must prevent SQL injection attacks launched against data storage objects, including, at a minimum, databases, database records, and database fields.DISA Juniper SRX Services Gateway IDPS v2r1Juniper

ACCESS CONTROL

Restrict allowed IPv6 addresses used by each VM guestTNS Citrix HypervisorUnix

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Anti-Spyware - DMZTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - AutoUpdate - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Content Filtering On - DMZTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Flood Protection - Layer 2 - All InterfacesTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Flood Protection - TCP - checksum enforcementTNS SonicWALL v5.9SonicWALL
SonicWALL - GAV ON - LANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - GAV ON - WANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - GAV ON - WLANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Login Banner - Public ZoneTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

SonicWALL - Password Policy - Affected User types - full-adminsTNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - minimum length >= 8TNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - Password Uniqueness >= 10TNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - Password Policy - User Lockout - EnabledTNS SonicWALL v5.9SonicWALL
SonicWALL - Review the DNS Server SettingsTNS SonicWALL v5.9SonicWALL

SYSTEM AND COMMUNICATIONS PROTECTION

SonicWALL - Security Services - Gateway AV - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Gateway AV - TCP Stream InboundTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - IDP - EnabledTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Security Services - Settings - Max SecurityTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - SNMP Community Name - 'public' or 'private'TNS SonicWALL v5.9SonicWALL

IDENTIFICATION AND AUTHENTICATION

SonicWALL - SSL Control - Enable SSL ControlTNS SonicWALL v5.9SonicWALL
SonicWALL - SSL Control ON - LANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - SSL Control ON - WANTNS SonicWALL v5.9SonicWALL

SYSTEM AND INFORMATION INTEGRITY

SonicWALL - Syslog server - >=1 server configuredTNS SonicWALL v5.9SonicWALL
SonicWALL - Use non default admin access ports - 'SSH'TNS SonicWALL v5.9SonicWALL

CONFIGURATION MANAGEMENT

SonicWALL - Use non default admin access ports - HTTPTNS SonicWALL v5.9SonicWALL

CONFIGURATION MANAGEMENT

SonicWALL - User Inactivity Timeout - 5 minutes or lessTNS SonicWALL v5.9SonicWALL

ACCESS CONTROL

XenServer - Administrative actions are loggedTNS Citrix XenServerUnix
XenServer - Disable promiscuous mode on all network interfacesTNS Citrix XenServerUnix
XenServer - Enable only necessary and secure services, protocols, daemons - 'snapwatchd'TNS Citrix XenServerUnix

CONFIGURATION MANAGEMENT

XenServer - High availability is enabledTNS Citrix XenServerUnix
XenServer - Install a trusted certificate in place of the default self-signed SSL certificateTNS Citrix XenServerUnix