Item Search

Name	Audit Name	Plugin	Category
1.1.6 (L1) Ensure 'Store passwords using reversible encryption' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.6 (L1) Ensure 'Store passwords using reversible encryption' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.6 (L1) Ensure 'Store passwords using reversible encryption' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.6 Ensure 'Store passwords using reversible encryption' is set to 'Disabled' - Disabled	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.6 Ensure 'Store passwords using reversible encryption' is set to 'Disabled' - Disabled	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.7 (L1) Ensure 'Store passwords using reversible encryption' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.7 (L1) Ensure 'Store passwords using reversible encryption' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.1.7 (L1) Ensure 'Store passwords using reversible encryption' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.2 (L1) Ensure 'Network security: Do not store LAN Manager hash value on next password change' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.5 (L1) Ensure 'Network security: Do not store LAN Manager hash value on next password change' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.5 (L1) Ensure 'Network security: Do not store LAN Manager hash value on next password change' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.14.1 (L2) Ensure 'System cryptography: Force strong key protection for user keys stored on the computer' is set to 'User is prompted when the key is first used' or higher	CIS Microsoft Windows 11 Stand-alone v4.0.0 L2	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.14.1 (L2) Ensure 'System cryptography: Force strong key protection for user keys stored on the computer' is set to 'User is prompted when the key is first used' or higher	CIS Microsoft Windows 11 Enterprise v4.0.0 L2	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.14.1 (L2) Ensure 'System cryptography: Force strong key protection for user keys stored on the computer' is set to 'User is prompted when the key is first used' or higher	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BL NG	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.14.1 Ensure 'System cryptography: Force strong key protection for user keys stored on the computer' is set to 'User must enter a password each time they use a key' (STIG only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.7 Ensure 'passwordFormat' is not set to clear - Default	CIS IIS 10 v1.2.1 Level 1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.4.2.3.4 Ensure pam_pwhistory includes use_authtok	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.4.3.3.3 Ensure pam_pwhistory includes use_authtok	CIS Oracle Linux 8 Server L1 v3.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.4.3.4.3 Ensure pam_unix includes a strong password hashing algorithm	CIS AlmaLinux OS 8 Server L1 v3.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.4.3.4.3 Ensure pam_unix includes a strong password hashing algorithm	CIS Oracle Linux 8 Server L1 v3.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.4.3.4.4 Ensure pam_unix includes use_authtok	CIS Rocky Linux 8 Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.4.4 Ensure strong password hashing algorithm is configured	CIS Debian 10 Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.4.4 Ensure strong password hashing algorithm is configured	CIS Debian 10 Server L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.5.1.1 Ensure strong password hashing algorithm is configured	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.5.1.1 Ensure strong password hashing algorithm is configured	CIS Red Hat EL8 Workstation L1 v3.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.5.1.1 Ensure strong password hashing algorithm is configured	CIS Rocky Linux 8 Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
4.5.4 Ensure password hashing algorithm is SHA-512	CIS Amazon Linux 2023 Server L1 v1.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.3.2.3.3 Ensure pam_pwhistory includes use_authtok	CIS SUSE Linux Enterprise 15 v2.0.0 L1 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.3.2.3.3 Ensure pam_pwhistory includes use_authtok	CIS SUSE Linux Enterprise 15 v2.0.0 L1 Workstation	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.3.3.4.3 Ensure pam_unix includes a strong password hashing algorithm	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Workstation	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.3.3.4.4 Ensure pam_unix includes use_authtok	CIS Debian Linux 12 v1.1.0 L1 Workstation	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.3.3.4.4 Ensure pam_unix includes use_authtok	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.4.1.4 Ensure strong password hashing algorithm is configured	CIS Debian Linux 12 v1.1.0 L1 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.4.1.4 Ensure strong password hashing algorithm is configured	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Workstation	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
5.4.3 Ensure password hashing algorithm is SHA-512	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.2.1 Ensure accounts in /etc/passwd use shadowed passwords	CIS Debian 10 Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.2.1 Ensure accounts in /etc/passwd use shadowed passwords	CIS Rocky Linux 8 Workstation L1 v2.0.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.2.1 Ensure accounts in /etc/passwd use shadowed passwords	CIS CentOS Linux 7 v4.0.0 L1 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.2.12 Ensure no users have .netrc files	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.2.14 Ensure no users have .rhosts files	CIS Google Container-Optimized OS v1.2.0 L2 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.1 Ensure default_authentication_plugin is Set to a Secure Option	CIS Oracle MySQL Community Server 8.4 v1.0.0 L1 Database	MySQLDB	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.2 Ensure Passwords are Not Stored in the Global Configuration	CIS Oracle MySQL Community Server 8.4 v1.0.0 L1 OS Linux on Linux	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.2 Ensure Passwords are Not Stored in the Global Configuration	CIS Oracle MySQL Enterprise Edition 8.4 v1.0.0 L1 MySQL OS Linux	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
7.2.1 Ensure accounts in /etc/passwd use shadowed passwords	CIS SUSE Linux Enterprise 15 v2.0.0 L1 Server	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.7 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.7 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.8 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.8 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.9 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.5.1 Ensure 'MSS: (AutoAdminLogon) Enable Automatic Logon' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search