Item Search

Name	Audit Name	Plugin	Category
1.2.1.4 Ensure 'Bind to Object' is set to Enabled - exprwd.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.2.1.4 Ensure 'Bind to Object' is set to Enabled - msaccess.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.2.1.4 Ensure 'Bind to Object' is set to Enabled - mspub.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.2.1.4 Ensure 'Bind to Object' is set to Enabled - visio.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.2.1.4 Ensure 'Bind to Object' is set to Enabled - winproj.exe	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.3 (L1) Ensure no unauthorized kernel modules are loaded on the host	CIS VMware ESXi 7.0 v1.5.0 L1 Bare Metal	Unix	SYSTEM AND SERVICES ACQUISITION
2.2.29 (L2) Ensure 'Log on as a service' is configured	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.29 (L2) Ensure 'Log on as a service' is configured	CIS Microsoft Windows 11 Enterprise v4.0.0 L2	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.29 (L2) Ensure 'Log on as a service' is configured	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.5 (L1) Ensure SNMP is configured properly	CIS VMware ESXi 7.0 v1.5.0 L1 Bare Metal	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.5 Ensure 'cookie protection mode' is configured for forms authentication - Default	CIS IIS 10 v1.2.1 Level 1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.6 Ensure Other Write Access on Apache Directories and Files Is Restricted	CIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware	Unix	ACCESS CONTROL
3.6 Ensure Other Write Access on Apache Directories and Files Is Restricted	CIS Apache HTTP Server 2.2 L2 v3.6.0	Unix	ACCESS CONTROL
3.6 Ensure Other Write Access on Apache Directories and Files Is Restricted	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	ACCESS CONTROL
4.1 (L1) Ensure a non-root user account exists for local admin access	CIS VMware ESXi 7.0 v1.5.0 L1 Bare Metal	Unix	ACCESS CONTROL
4.4.20 Ensure 'directoryBrowsingEnabled' is set to 'false' for web applications	CIS IBM WebSphere Liberty v1.0.0 L1	Unix	MEDIA PROTECTION
5.3 Set 'Prevent ignoring certificate errors' to 'Enabled'	CIS IE 9 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
6.1 Ensure FTP requests are encrypted - Control Channel Default	CIS IIS 10 v1.2.1 Level 1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.1 Ensure FTP requests are encrypted - Data Channel Default	CIS IIS 10 v1.2.1 Level 1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
6.11 Ensure all HTTP Header Logging options are enabled	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION
6.11 Ensure all HTTP Header Logging options are enabled	CIS Palo Alto Firewall 11 v1.1.0 L1	Palo_Alto	AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION
6.12 Ensure all HTTP Header Logging options are enabled - X-Forwarded-For	CIS Palo Alto Firewall 9 v1.1.0 L1	Palo_Alto	AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION
7.8 Ensure port-level configuration overrides are disabled.	CIS VMware ESXi 6.7 v1.3.0 Level 1	VMware	SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION
10.4 Force SSL when accessing the manager application via HTTP	CIS Apache Tomcat 11 v1.0.0 L1	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
Configuring cookie encryption within the HTTP profile	Tenable F5 BIG-IP Best Practice Audit	F5	SYSTEM AND COMMUNICATIONS PROTECTION
DISA_F5_BIG-IP_Device_Management_v2r4.audit from DISA F5 BIG-IP Device Management v2r4 STIG	DISA F5 BIG-IP Device Management STIG v2r4	F5
DISA_STIG_VMware_vSphere_6.7_VAMI-lighttpd_v1r3.audit from DISA VMware vSphere 6.7 VAMI-lighttpd v1r3 STIG	DISA STIG VMware vSphere 6.7 VAMI-lighttpd v1r3	Unix
DISA_VMware_vSphere_8.0_vCenter_Appliance_Perfcharts_STIG_v2r1.audit from DISA VMware vSphere 8.0 vCenter Appliance Perfcharts STIG v2r1	DISA VMware vSphere 8.0 vCenter Appliance Perfcharts STIG v2r1	Unix
DTOO306 - Office System - Hyperlinks to web templates in File \| New and task panes must be disabled.	DISA STIG Office System 2010 v1r13	Windows	CONFIGURATION MANAGEMENT
OH12-1X-000228 - OHS must prohibit anonymous FTP user access to interactive scripts.	DISA STIG Oracle HTTP Server 12.1.3 v2r3	Unix	CONFIGURATION MANAGEMENT
SHPT-00-000190 - SharePoint must enforce organizational requirements to implement separation of duties through assigned information access authorizations.	DISA STIG SharePoint 2010 v1r9	Windows	ACCESS CONTROL
SonicWALL - Password Policy - minimum length >= 8	TNS SonicWALL v5.9	SonicWALL	IDENTIFICATION AND AUTHENTICATION
SPLK-CL-000090 - When Splunk Enterprise is distributed over multiple servers, each server must be configured to disable non-essential capabilities.	DISA STIG Splunk Enterprise 7.x for Windows v3r1 REST API	Splunk	CONFIGURATION MANAGEMENT
SYMP-AG-000610 - Symantec ProxySG providing content filtering must detect use of network services that have not been authorized or approved by the ISSM and ISSO, at a minimum.	DISA Symantec ProxySG Benchmark ALG v1r3	BlueCoat	SYSTEM AND INFORMATION INTEGRITY
VCEM-67-000027 - Rsyslog must be configured to monitor and ship ESX Agent Manager log files - access	DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4	Unix	AUDIT AND ACCOUNTABILITY
VCEM-67-000027 - Rsyslog must be configured to monitor and ship ESX Agent Manager log files - catalina	DISA STIG VMware vSphere 6.7 EAM Tomcat v1r4	Unix	AUDIT AND ACCOUNTABILITY
VCLU-80-000142 The vCenter Lookup service default ROOT web application must be removed.	DISA VMware vSphere 8.0 vCenter Appliance Lookup Service STIG v2r1	Unix	CONFIGURATION MANAGEMENT
VCUI-80-000127 The vCenter UI service must configure the 'setCharacterEncodingFilter' filter.	DISA VMware vSphere 8.0 vCenter Appliance User Interface (UI) STIG v2r1	Unix	SYSTEM AND INFORMATION INTEGRITY
VCUI-80-000142 The vCenter UI service default ROOT web application must be removed.	DISA VMware vSphere 8.0 vCenter Appliance User Interface (UI) STIG v2r1	Unix	CONFIGURATION MANAGEMENT
VCWN-06-000047 - The system must require an administrator to unlock an account locked due to excessive login failures.	DISA STIG VMware vSphere vCenter 6.x v1r4	VMware	ACCESS CONTROL
VCWN-65-000047 - The vCenter Server for Windows must require an administrator to unlock an account locked due to excessive login failures.	DISA STIG VMware vSphere vCenter 6.5 v2r3	VMware	ACCESS CONTROL
vNetwork : restrict-port-level-overrides	VMWare vSphere 6.5 Hardening Guide	VMware
WatchGuard : Authentication Settings - 'Management User Idle Timeout'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	ACCESS CONTROL
WatchGuard : Authentication Settings - 'Management User Session Timeout'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	ACCESS CONTROL
WatchGuard : Single Sign-On - 'Enabled'	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	IDENTIFICATION AND AUTHENTICATION
WatchGuard : SNMP Configuration - v3 uses SHA1 Auth Algorithm	TNS Best Practice WatchGuard Audit 1.0.0	WatchGuard	SYSTEM AND COMMUNICATIONS PROTECTION
WG430 A22 - Anonymous FTP user access to interactive scripts is prohibited.	DISA STIG Apache Site 2.2 Unix v1r11 Middleware	Unix
WG430 A22 - Anonymous FTP user access to interactive scripts is prohibited.	DISA STIG Apache Site 2.2 Unix v1r11	Unix
WG430 W22 - Anonymous FTP user access to interactive scripts must be prohibited.	DISA STIG Apache Site 2.2 Windows v1r13	Windows
Windows Device Configuration - Scan scripts loaded in Microsoft web browsers	Tenable Best Practices for Microsoft Intune Windows v1.0	microsoft_azure	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search