Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.4 Ensure nosuid option set on /tmp partitionCIS Google Container-Optimized OS v1.2.0 L1 ServerUnix

ACCESS CONTROL, MEDIA PROTECTION

1.1.5 Ensure noexec option set on /tmp partitionCIS Google Container-Optimized OS v1.2.0 L1 ServerUnix

CONFIGURATION MANAGEMENT

1.6.2 Ensure local login warning banner is configured properlyCIS Oracle Linux 7 v4.0.0 L1 WorkstationUnix

ACCESS CONTROL

1.6.2 Ensure local login warning banner is configured properlyCIS Ubuntu Linux 22.04 LTS v2.0.0 L1 ServerUnix

ACCESS CONTROL

1.6.2 Ensure local login warning banner is configured properlyCIS Ubuntu Linux 24.04 LTS v1.0.0 L1 ServerUnix

ACCESS CONTROL

1.6.2 Ensure local login warning banner is configured properlyCIS Ubuntu Linux 24.04 LTS v1.0.0 L1 WorkstationUnix

ACCESS CONTROL

1.6.2 Ensure local login warning banner is configured properlyCIS Debian Linux 12 v1.1.0 L1 ServerUnix

ACCESS CONTROL

1.6.3 Ensure remote login warning banner is configured properlyCIS Debian Linux 11 v2.0.0 L1 ServerUnix

ACCESS CONTROL

1.6.3 Ensure remote login warning banner is configured properlyCIS Red Hat Enterprise Linux 7 v4.0.0 L1 ServerUnix

ACCESS CONTROL

1.7.1.3 Ensure remote login warning banner is configured properly - msrvCIS Aliyun Linux 2 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.7.2 Ensure local login warning banner is configured properlyCIS AlmaLinux OS 9 v2.0.0 L1 ServerUnix

ACCESS CONTROL

1.7.2 Ensure local login warning banner is configured properlyCIS AlmaLinux OS 8 Workstation L1 v3.0.0Unix

ACCESS CONTROL

1.7.3 Ensure /etc/issue.net is configuredCIS SUSE Linux Enterprise 15 v2.0.1 L1 WorkstationUnix

ACCESS CONTROL

1.7.3 Ensure remote login warning banner is configured properlyCIS Oracle Linux 9 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

1.7.3 Ensure remote login warning banner is configured properlyCIS AlmaLinux OS 9 v2.0.0 L1 ServerUnix

ACCESS CONTROL

1.7.3 Ensure remote login warning banner is configured properlyCIS AlmaLinux OS 8 Server L1 v3.0.0Unix

ACCESS CONTROL

1.7.3 Ensure remote login warning banner is configured properlyCIS Oracle Linux 8 Workstation L1 v3.0.0Unix

ACCESS CONTROL

1.7.3 Ensure remote login warning banner is configured properlyCIS Red Hat EL8 Server L1 v3.0.0Unix

ACCESS CONTROL

1.130 (L1) Ensure 'Suppress the unsupported OS warning' is set to 'Disabled'CIS Microsoft Edge v3.0.0 L1Windows

SYSTEM AND SERVICES ACQUISITION

2.9.1.1 Ensure the OS Is Not Active When Resuming from Standby (Intel)CIS Apple macOS 14.0 Sonoma v2.1.0 L2Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.10.1.1 Ensure the OS Is Not Active When Resuming from Standby (Intel)CIS Apple macOS 15.0 Sequoia v1.1.0 L2Unix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

3.1.17 Secure permissions for the primary archive log location - LOGARCHMETH1 OS PermissionsCIS IBM DB2 v10 v1.1.0 Linux OS Level 1Unix
3.1.18 Secure permissions for the secondary archive log location - LOGARCHMETH2 OS PermissionsCIS IBM DB2 v10 v1.1.0 Windows OS Level 1Windows

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

4.1.2.2 Ensure journald is configured to write logfiles to persistent diskCIS Google Container-Optimized OS v1.2.0 L1 ServerUnix

AUDIT AND ACCOUNTABILITY

4.5.1 Install TCP WrappersCIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

5.3 Ensure the Sudo Timeout Period Is Set to Zero - timestamp timeoutCIS Apple macOS 10.15 Catalina v3.0.0 L1Unix

ACCESS CONTROL

18.10.92.4.2 (L1) Ensure 'Select when Preview Builds and Feature Updates are received' is set to 'Enabled: 180 or more days'CIS Microsoft Windows Server 2016 v3.0.0 L1 DCWindows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.93.4.2 (L1) Ensure 'Select when Preview Builds and Feature Updates are received' is set to 'Enabled: 180 or more days'CIS Microsoft Windows Server 2025 v1.0.0 L1 MSWindows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

18.10.93.4.2 (L1) Ensure 'Select when Preview Builds and Feature Updates are received' is set to 'Enabled: 180 or more days'CIS Microsoft Windows 11 Enterprise v4.0.0 L1Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

ALMA-09-008160 - AlmaLinux OS 9 must maintain an account lock until the locked account is manually released by an administrator; and not automatically after a set time.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

ACCESS CONTROL

ALMA-09-023010 - AlmaLinux OS 9 must disable the use of user namespaces.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

ALMA-09-031370 - AlmaLinux OS 9 must be configured to disable USB mass storage.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION

ALMA-09-033240 - AlmaLinux OS 9 SSHD must accept public key authentication.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

IDENTIFICATION AND AUTHENTICATION

ALMA-09-035660 - AlmaLinux OS 9 must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

IDENTIFICATION AND AUTHENTICATION

ALMA-09-035880 - AlmaLinux OS 9 must ensure the password complexity module is enabled in the password-auth file.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

IDENTIFICATION AND AUTHENTICATION

ALMA-09-036760 - AlmaLinux OS 9 must require the change of at least four character classes when passwords are changed.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

IDENTIFICATION AND AUTHENTICATION

ALMA-09-036870 - AlmaLinux OS 9 must require the maximum number of repeating characters be limited to three when passwords are changed.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

IDENTIFICATION AND AUTHENTICATION

ALMA-09-040060 - AlmaLinux OS 9 must implement a systemwide encryption policy.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION

ALMA-09-043800 - AlmaLinux OS 9 must not show boot up messages.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

SYSTEM AND INFORMATION INTEGRITY

ALMA-09-052160 - AlmaLinux OS 9 audispd-plugins package must be installed.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY

ALMA-09-052930 - AlmaLinux OS 9 must have the rsyslog package installed.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY

ALMA-09-054470 - AlmaLinux OS 9 audit system must take appropriate action when the audit files have reached maximum size.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY

APPL-15-003030 - The macOS system must allow smart card authentication.DISA Apple macOS 15 (Sequoia) STIG v1r3Unix

IDENTIFICATION AND AUTHENTICATION

DO0145-ORACLE11 - OS DBA group membership should be restricted to authorized accounts.DISA STIG Oracle 11 Installation v9r1 LinuxUnix

ACCESS CONTROL

O112-P2-012800 - The DBMS must uniquely identify and authenticate organizational users (or processes acting on behalf of organizational users).DISA STIG Oracle 11.2g v2r5 DatabaseOracleDB

IDENTIFICATION AND AUTHENTICATION

SLES-12-020200 - The SUSE operating system must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/passwd.DISA SLES 12 STIG v3r2Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

SRG-OS-000197-ESXI5 - Remote logging for ESXi hosts must be configured.DISA STIG VMWare ESXi Server 5 STIG v2r1VMware

CONFIGURATION MANAGEMENT

UBTU-16-020300 - The Ubuntu operating system must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/passwd.DISA STIG Ubuntu 16.04 LTS v2r3Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, MAINTENANCE

VCWN-65-000009 - The vCenter Server for Windows must use Active Directory authentication.DISA STIG VMware vSphere vCenter 6.5 v2r3VMware

IDENTIFICATION AND AUTHENTICATION

WA00545 A22 - Web server options for the OS root must be disabled.DISA STIG Apache Server 2.2 Unix v1r11Unix

CONFIGURATION MANAGEMENT