Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2 Do Not Install a Multi-Use System - chkconfigCIS BIND DNS v3.0.1 Authoritative Name ServerUnix

CONFIGURATION MANAGEMENT

1.2 Do Not Install a Multi-Use System - chkconfigCIS BIND DNS v3.0.1 Caching Only Name ServerUnix

CONFIGURATION MANAGEMENT

1.6.1 Ensure message of the day is configured properlyCIS Red Hat Enterprise Linux 7 v4.0.0 L1 ServerUnix

ACCESS CONTROL

1.6.1 Ensure message of the day is configured properlyCIS Ubuntu Linux 24.04 LTS v1.0.0 L1 WorkstationUnix

ACCESS CONTROL

1.6.1 Ensure message of the day is configured properlyCIS CentOS Linux 7 v4.0.0 L1 WorkstationUnix

ACCESS CONTROL

1.6.1 Ensure message of the day is configured properlyCIS Red Hat Enterprise Linux 7 v4.0.0 L1 WorkstationUnix

ACCESS CONTROL

1.7.1 Ensure message of the day is configured properlyCIS Fedora 28 Family Linux Workstation L1 v2.0.0Unix

ACCESS CONTROL

1.7.1 Ensure message of the day is configured properlyCIS Amazon Linux 2 STIG v2.0.0 L1 ServerUnix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

1.7.1 Ensure message of the day is configured properlyCIS Amazon Linux 2 STIG v2.0.0 L1 WorkstationUnix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

1.7.1 Ensure message of the day is configured properlyCIS Amazon Linux 2023 Server L1 v1.0.0Unix

ACCESS CONTROL

1.7.1 Ensure message of the day is configured properlyCIS AlmaLinux OS 8 Workstation L1 v3.0.0Unix

ACCESS CONTROL

1.7.1 Ensure message of the day is configured properlyCIS AlmaLinux OS 8 Server L1 v3.0.0Unix

ACCESS CONTROL

1.7.1 Ensure message of the day is configured properly - bannerCIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1 Ensure message of the day is configured properly - banner textCIS Red Hat 6 Server L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1 Ensure message of the day is configured properly - banner textCIS CentOS 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1 Ensure message of the day is configured properly - banner textCIS Red Hat 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1 Ensure message of the day is configured properly - mrsvCIS CentOS 6 Server L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1 Ensure message of the day is configured properly - mrsvCIS CentOS 6 Workstation L1 v3.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1 Ensure message of the day is configured properly - platform flagsCIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1 Ensure message of the day is configured properly - platform flagsCIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0Unix

CONFIGURATION MANAGEMENT

1.7.1.1 Ensure message of the day is configured properlyCIS Ubuntu Linux 18.04 LXD Container L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.7.2 Ensure local login warning banner is configured properlyCIS Ubuntu Linux 20.04 LTS Server L1 v2.0.1Unix

ACCESS CONTROL

1.7.2 Ensure local login warning banner is configured properlyCIS Ubuntu Linux 18.04 LTS v2.2.0 L1 WorkstationUnix

ACCESS CONTROL

1.7.2 Ensure local login warning banner is configured properlyCIS Debian 10 Workstation L1 v2.0.0Unix

ACCESS CONTROL

1.8.1 Ensure message of the day is configured properlyCIS Debian Family Workstation L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

1.8.1.1 Ensure message of the day is configured properlyCIS SUSE Linux Enterprise 12 v3.2.1 L1 WorkstationUnix

CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION

2.19 Ensure FIPS 140-2 OpenSSL Cryptography Is UsedCIS Oracle MySQL Community Server 8.4 v1.0.0 L1 DatabaseMySQLDB

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

4.2.2 Disable ICMP Redirect Acceptance - net.ipv4.conf.default.accept_redirects = 0CIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

CONFIGURATION MANAGEMENT

4.2.3 Disable Secure ICMP Redirect Acceptance - net.ipv4.conf.default.secure_redirects = 0CIS Red Hat Enterprise Linux 5 L2 v2.2.1Unix

SYSTEM AND INFORMATION INTEGRITY

4.2.4 Log Suspicious Packets - net.ipv4.conf.all.log_martians = 1CIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

CONFIGURATION MANAGEMENT

4.2.7 Enable RFC-recommended Source Route Validation - net.ipv4.conf.all.rp_filter = 1CIS Red Hat Enterprise Linux 5 L2 v2.2.1Unix

SYSTEM AND INFORMATION INTEGRITY

4.2.7 Enable RFC-recommended Source Route Validation - net.ipv4.conf.default.rp_filter = 1CIS Red Hat Enterprise Linux 5 L2 v2.2.1Unix

SYSTEM AND INFORMATION INTEGRITY

9.2.8 Check User Dot File PermissionsCIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

ACCESS CONTROL

9.24 Find Un-owned Files and DirectoriesCIS Solaris 11.1 L1 v1.0.0Unix

ACCESS CONTROL

ALMA-09-021800 - AlmaLinux OS 9 must enable hardening for the Berkeley Packet Filter (BPF) just-in-time (JIT) compiler.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

CONFIGURATION MANAGEMENT

ALMA-09-048200 - AlmaLinux OS 9 must generate audit records for any use of the "chacl" command.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

ALMA-09-048310 - AlmaLinux OS 9 must generate audit records for any use of the "chage" command.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

ALMA-09-048750 - AlmaLinux OS 9 must generate audit records for any use of the "chsh" command.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

ALMA-09-049410 - AlmaLinux OS 9 must generate audit records for any use of the "newgrp" command.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE

DG0012-ORACLE11 - Database software directories including DBMS configuration files are stored in dedicated directories separate from the host OS and other applications - 'ORACLE_BASE environment variable set'DISA STIG Oracle 11 Installation v9r1 WindowsWindows

CONFIGURATION MANAGEMENT

DG0012-ORACLE11 - Database software directories including DBMS configuration files are stored in dedicated directories separate from the host OS and other applications - 'ORACLE_HOME environment variable set'DISA STIG Oracle 11 Installation v9r1 WindowsWindows

CONFIGURATION MANAGEMENT

OL08-00-010380 - OL 8 must require users to provide a password for privilege escalation.DISA Oracle Linux 8 STIG v2r4Unix

IDENTIFICATION AND AUTHENTICATION

PPS9-00-004900 - The EDB Postgres Advanced Server must use NIST FIPS 140-2 or 140-3 validated cryptographic modules for cryptographic operations.EDB PostgreSQL Advanced Server OS Linux Audit v2r3Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-07-010340 - The Red Hat Enterprise Linux operating system must be configured so that users must provide a password for privilege escalation.DISA Red Hat Enterprise Linux 7 STIG v3r15Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-07-010344 - The Red Hat Enterprise Linux operating system must not be configured to bypass password requirements for privilege escalation.DISA Red Hat Enterprise Linux 7 STIG v3r15Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-07-010350 - The Red Hat Enterprise Linux operating system must be configured so that users must re-authenticate for privilege escalation.DISA Red Hat Enterprise Linux 7 STIG v3r15Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-08-010381 - RHEL 8 must require users to reauthenticate for privilege escalation.DISA Red Hat Enterprise Linux 8 STIG v2r3Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-09-611085 - RHEL 9 must require users to provide a password for privilege escalation.DISA Red Hat Enterprise Linux 9 STIG v2r4Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-09-611145 - RHEL 9 must not be configured to bypass password requirements for privilege escalation.DISA Red Hat Enterprise Linux 9 STIG v2r4Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-09-654070 - RHEL 9 must audit all uses of the truncate, ftruncate, creat, open, openat, and open_by_handle_at system calls.DISA Red Hat Enterprise Linux 9 STIG v2r4Unix

AUDIT AND ACCOUNTABILITY, MAINTENANCE