| 1.2 Do Not Install a Multi-Use System - chkconfig | CIS BIND DNS v3.0.1 Authoritative Name Server | Unix | CONFIGURATION MANAGEMENT |
| 1.2 Do Not Install a Multi-Use System - chkconfig | CIS BIND DNS v3.0.1 Caching Only Name Server | Unix | CONFIGURATION MANAGEMENT |
| 1.6.1 Ensure message of the day is configured properly | CIS CentOS Linux 7 v4.0.0 L1 Workstation | Unix | ACCESS CONTROL |
| 1.6.1 Ensure message of the day is configured properly | CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Workstation | Unix | ACCESS CONTROL |
| 1.7.1 Ensure message of the day is configured properly | CIS AlmaLinux OS 8 Server L1 v3.0.0 | Unix | ACCESS CONTROL |
| 1.7.1 Ensure message of the day is configured properly - banner | CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.7.1 Ensure message of the day is configured properly - banner text | CIS CentOS 6 Workstation L1 v3.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.7.1 Ensure message of the day is configured properly - banner text | CIS Red Hat 6 Workstation L1 v3.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.7.1 Ensure message of the day is configured properly - mrsv | CIS CentOS 6 Server L1 v3.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.7.1 Ensure message of the day is configured properly - mrsv | CIS CentOS 6 Workstation L1 v3.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.8.1.1 Ensure message of the day is configured properly | CIS SUSE Linux Enterprise 12 v3.2.1 L1 Workstation | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION |
| 2.1.2 Ensure 'extproc' Is Not Present in 'listener.ora' | CIS Oracle Server 12c Windows v3.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| 2.1.2 Ensure 'extproc' Is Not Present in 'listener.ora' | CIS Oracle Server 18c Windows v1.1.0 | Windows | SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 2.2.27 Ensure 'Deny log on as a service' to include 'Enterprise Admins Group and Domain Admins Group' (STIG MS only) | CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS | Windows | ACCESS CONTROL |
| 3.1.14 Set maximum connection limits - 'maxappls <= 99' | CIS IBM DB2 OS L2 v1.2.0 | Unix | ACCESS CONTROL |
| 3.1.15 Set administrative notification level - 'notifylevel = 3 or 4' | CIS IBM DB2 OS L2 v1.2.0 | Unix | AUDIT AND ACCOUNTABILITY |
| 3.2.3 Disable database discover - 'discover_db = disable' | CIS IBM DB2 OS L2 v1.2.0 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 3.2.12 Set archive log failover retry limit - 'numarchretry <= 5' | CIS IBM DB2 OS L2 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
| 3.3.5 Secure the JDK runtime library - 'jdk_path value' | CIS IBM DB2 OS L2 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
| 3.3.7 Disable unused task scheduler - 'sched_enable = off' | CIS IBM DB2 OS L2 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
| 4.13 listener.ora - 'admin_restrictions_listener_name = on' | CIS v1.1.0 Oracle 11g OS L2 | Unix | ACCESS CONTROL |
| 4.30 listener.ora, tnsnames.ora - 'Disable external procedures' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| 4.42 listener.ora - 'dynamic_registration_listener_name = OFF' | CIS v1.1.0 Oracle 11g OS L2 | Unix | ACCESS CONTROL |
| 5.02 OAS - 'Encryption Type - sqlnet.encryption_server = REQUIRED' | CIS v1.1.0 Oracle 11g OS L2 | Unix | ACCESS CONTROL |
| 5.03 OAS - 'Encryption Type - sqlnet.encryption_client = REQUIRED' | CIS v1.1.0 Oracle 11g OS L2 | Unix | ACCESS CONTROL |
| 5.04 OAS - 'FIPS Compliance - sslfips_140 = TRUE' | CIS v1.1.0 Oracle 11g OS L2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 5.06 OAS - 'Integrity Protection - sqlnet.crypto_checksum_types_server = (SHA1)' | CIS v1.1.0 Oracle 11g OS L2 | Unix | ACCESS CONTROL |
| 5.07 OAS - 'Oracle Wallet Owner Permissions - Set Configuration method for Oracle Wallet.' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| 5.10 OAS - 'Certificate Request Key Size - Request the maximum key size.' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| 8.0.2 Start and Stop DB2 Administrator Server | CIS IBM DB2 OS L2 v1.2.0 | Unix | |
| 8.0.8 Secure the permission of the SSLconfig.ini file | CIS IBM DB2 OS L2 v1.2.0 | Unix | |
| 8.6.1 (L2) Ensure nonpersistent disks are limited | CIS VMware ESXi 7.0 v1.5.0 L2 | VMware | AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND INFORMATION INTEGRITY |
| 9.2.8 Check User Dot File Permissions | CIS Red Hat Enterprise Linux 5 L1 v2.2.1 | Unix | ACCESS CONTROL |
| 12.39 Network - 'Implement if appropriate' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| 12.40 Application PL/SQL code - 'Encrypt' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| 12.41 Hard coded data in PL/SQL and application source code - 'Avoid or encrypt' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| 12.50 Intrusion detection system on host - 'Utilize' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| 12.58 Data Guard Redo - 'Authenticate Redo Transport Services using SSL Certificates' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| 14.07 RAID file system - 'Implement' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| 14.08 Magnetically wipe failed disks - 'Implement' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| 14.11 Recovery procedures - 'Document and Test' | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| CIS_v1.1.0_Oracle_11g_OS_Unix_Linux_Level_2.audit from CIS Security Configuration Benchmark For Oracle Database Server 11g version 1.1.0 | CIS v1.1.0 Oracle 11g OS L2 | Unix | |
| DG0012-ORACLE11 - Database software directories including DBMS configuration files are stored in dedicated directories separate from the host OS and other applications - 'ORACLE_BASE environment variable set' | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | CONFIGURATION MANAGEMENT |
| DG0012-ORACLE11 - Database software directories including DBMS configuration files are stored in dedicated directories separate from the host OS and other applications - 'ORACLE_HOME environment variable set' | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | CONFIGURATION MANAGEMENT |
| JUEX-RT-000460 - The Juniper out-of-band management (OOBM) gateway must be configured to transport management traffic to the Network Operations Center (NOC) via dedicated circuit, MPLS/VPN service, or IPsec tunnel. | DISA Juniper EX Series Router v2r1 | Juniper | SYSTEM AND COMMUNICATIONS PROTECTION |
| OL07-00-010340 - The Oracle Linux operating system must be configured so that users must provide a password for privilege escalation. | DISA Oracle Linux 7 STIG v3r2 | Unix | IDENTIFICATION AND AUTHENTICATION |
| PPS9-00-004900 - The EDB Postgres Advanced Server must use NIST FIPS 140-2 or 140-3 validated cryptographic modules for cryptographic operations. | EDB PostgreSQL Advanced Server OS Linux Audit v2r3 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-08-010380 - RHEL 8 must require users to provide a password for privilege escalation. | DISA Red Hat Enterprise Linux 8 STIG v2r3 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-09-255040 - RHEL 9 SSHD must not allow blank passwords. | DISA Red Hat Enterprise Linux 9 STIG v2r4 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-09-654015 - RHEL 9 must audit all uses of the chmod, fchmod, and fchmodat system calls. | DISA Red Hat Enterprise Linux 9 STIG v2r4 | Unix | AUDIT AND ACCOUNTABILITY, MAINTENANCE |
