Item Search

Name	Audit Name	Plugin	Category
1.7.8 Ensure GDM autorun-never is enabled	CIS Ubuntu Linux 22.04 LTS v3.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, MEDIA PROTECTION
1.7.8 Ensure GDM autorun-never is enabled	CIS Ubuntu Linux 20.04 LTS v3.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, MEDIA PROTECTION
1.7.8 Ensure GDM autorun-never is enabled	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, MEDIA PROTECTION
1.7.8 Ensure GDM autorun-never is enabled	CIS Ubuntu Linux 24.04 LTS v1.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, MEDIA PROTECTION
2.3.9.3 Ensure 'Microsoft network server: Digitally sign communications (if client agrees)' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
4.1.2.1 Ensure local user Home directories exists	CIS IBM AIX 7 v1.1.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION
18.5.11.3 (L1) Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL
18.5.11.3 Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
18.5.11.3 Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
18.5.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.11.1.5 (BL) Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Recovery Key' is set to 'Enabled: Allow 256-bit recovery key'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
18.9.11.1.7 Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Save BitLocker recovery information to AD DS for fixed data drives' is set to 'Enabled: False'	CIS Windows 7 Workstation Bitlocker v3.2.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.1.7 Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Save BitLocker recovery information to AD DS for fixed data drives' is set to 'Enabled: False'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.12 Ensure 'Require additional authentication at startup: Allow BitLocker without a compatible TPM' is set to 'Enabled: False'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.17 (BL) Ensure 'Require additional authentication at startup' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.3.5 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
18.9.11.3.7 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Save BitLocker recovery information to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
18.9.11.3.7 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Save BitLocker recovery information to AD DS for removable data drives' is set to 'Enabled: False'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.20.1.2 (L2) Ensure 'Turn off handwriting personalization data sharing' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v4.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.9.20.1.2 (L2) Ensure 'Turn off handwriting personalization data sharing' is set to 'Enabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.9.20.1.2 Ensure 'Turn off handwriting personalization data sharing' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v2.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.9.39.2 (L2) Ensure 'Turn off location' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	CONFIGURATION MANAGEMENT
18.10.10.2.1 (BL) Ensure 'Allow enhanced PINs for startup' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	IDENTIFICATION AND AUTHENTICATION
18.10.10.2.5 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Recovery Password' is set to 'Enabled: Require 48-digit recovery password'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.2.6 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.2.6 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.2.6 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 10 Stand-alone v4.0.0 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.2.6 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.2.6 Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 11 Stand-alone v5.0.0 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.10.2.6 Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Recovery Key' is set to 'Enabled: Do not allow 256-bit recovery key'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L2 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
CIS Internet Explorer 10 Benchmark Version 1.1.0	CIS IE 10 v1.1.0	Windows
CIS_AlmaLinux_OS_8_v4.0.0_L1_Server.audit from CIS AlmaLinux OS 8 4.0.0	CIS AlmaLinux OS 8 v4.0.0 L1 Server	Unix
CIS_AlmaLinux_OS_10_v1.0.0_L1_Server.audit from CIS AlmaLinux OS 10 1.0.0	CIS AlmaLinux OS 10 v1.0.0 L1 Server	Unix
CIS_Debian_Linux_10_v2.0.0_L2_Server.audit from CIS Debian Linux 10 v2.0.0	CIS Debian Linux 10 v2.0.0 L2 Server	Unix
CIS_Debian_Linux_11_v2.0.0_L2_Server.audit from CIS Debian Linux 11 v2.0.0	CIS Debian Linux 11 v2.0.0 L2 Server	Unix
CIS_Debian_Linux_12_v1.1.0_L2_Server.audit from CIS Debian Linux 12 v1.1.0	CIS Debian Linux 12 v1.1.0 L2 Server	Unix
CIS_IBM_DB2_10_v1.1.0_Level_1_OS_Linux.audit from CIS DB2 10.x Linux	CIS IBM DB2 v10 v1.1.0 Linux OS Level 1	Unix
CIS_Kubernetes_v1.24_v1.0.0_Level_2_Worker.audit from CIS Kubernetes v1.24 Benchmark v1.0.0	CIS Kubernetes v1.24 Benchmark v1.0.0 L2 Worker	Unix	CONFIGURATION MANAGEMENT
CIS_Microsoft_Defender_Antivirus_v1.0.0_L1_Server.audit from CIS Microsoft Defender Antivirus 1.0.0	CIS Microsoft Defender Antivirus v1.0.0 L1 Server	Windows
CIS_MongoDB_3.6_Benchmark_Level_1_DB_v1.1.0.audit from CIS MongoDB 3.6 Benchmark	CIS MongoDB 3.6 Database Audit L1 v1.1.0	MongoDB
CIS_MongoDB_3.6_Benchmark_Level_2_DB_v1.1.0.audit from CIS MongoDB 3.6 Benchmark	CIS MongoDB 3.6 Database Audit L2 v1.1.0	MongoDB
CIS_MongoDB_8_v1.0.0_L1_Windows.audit from CIS MongoDB 8 Benchmark v1.0.0	CIS MongoDB 8 v1.0.0 L1 Windows	Windows
CIS_MongoDB_8_v1.0.0_L2_Windows.audit from CIS MongoDB 8 Benchmark v1.0.0	CIS MongoDB 8 v1.0.0 L2 Windows	Windows
CIS_Oracle_Linux_9_v2.0.0_L1_Workstation.audit from CIS Oracle Linux 9 v2.0.0	CIS Oracle Linux 9 v2.0.0 L1 Workstation	Unix
CIS_Oracle_Linux_10_v1.0.0_L2_Workstation.audit from CIS Oracle Linux 10 1.0.0	CIS Oracle Linux 10 v1.0.0 L2 Workstation	Unix
CIS_PostgreSQL_11_v1.0.0_L1_OS_Linux.audit from CIS Benchmark for PostgreSQL 11	CIS PostgreSQL 11 OS v1.0.0	Unix
CIS_PostgreSQL_17_v1.0.0_L1_OS_Linux.audit from CIS PostgreSQL 17 Benchmark v1.0.0	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	Unix
CIS_Rocky_Linux_9_v2.0.0_L1_Workstation.audit from CIS Rocky Linux 9 v2.0.0	CIS Rocky Linux 9 v2.0.0 L1 Workstation	Unix
CIS_v1.1.0_Oracle_11g_OS_Windows_Level_2.audit from CIS v1.1.0 Oracle 11g	CIS v1.1.0 Oracle 11g OS Windows Level 2	Windows
CNTR-R2-001130 - Rancher RKE2 must prevent nonprivileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.	DISA Rancher Government Solutions RKE2 STIG v2r5	Unix	ACCESS CONTROL

Detections

Analytics

Item Search