Item Search

Name	Audit Name	Plugin	Category
1.1.3 Ensure that the controller manager pod specification file permissions are set to 600 or more restrictive	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.3 Ensure that the controller manager pod specification file permissions are set to 600 or more restrictive	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.5 Ensure that the scheduler pod specification file permissions are set to 600 or more restrictive	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.7 Ensure that the etcd pod specification file permissions are set to 600 or more restrictive	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.9 Ensure that the Container Network Interface file permissions are set to 600 or more restrictive	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.11 Ensure that the etcd data directory permissions are set to 700 or more restrictive	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.12 Ensure that the etcd data directory ownership is set to etcd:etcd	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.12 Ensure that the etcd data directory ownership is set to etcd:etcd	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.12 Ensure that the etcd data directory ownership is set to etcd:etcd	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.15 Ensure that the scheduler.conf file permissions are set to 600 or more restrictive	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.15 Ensure that the scheduler.conf file permissions are set to 600 or more restrictive	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.17 Ensure that the controller-manager.conf file permissions are set to 600 or more restrictive	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.17 Ensure that the controller-manager.conf file permissions are set to 600 or more restrictive	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.17 Ensure that the controller-manager.conf file permissions are set to 600 or more restrictive	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.19 Ensure that the Kubernetes PKI directory and file ownership is set to root:root	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.21 Ensure that the Kubernetes PKI key file permissions are set to 600	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.21 Ensure that the Kubernetes PKI key file permissions are set to 600	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.1.21 Ensure that the Kubernetes PKI key file permissions are set to 600	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.2.1 Ensure that the --anonymous-auth argument is set to false	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.2.6 Ensure that the --authorization-mode argument is not set to AlwaysAllow	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.2.7 Ensure that the --authorization-mode argument includes Node	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.2.10 Ensure that the admission control plugin AlwaysAdmit is not set	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.2.11 Ensure that the admission control plugin AlwaysPullImages is set	CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.2.13 Ensure that the admission control plugin ServiceAccount is set	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.5 Ensure that the --peer-client-cert-auth argument is set to true	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
2.5 Ensure that the --peer-client-cert-auth argument is set to true	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.1 Ensure 'datadir' Has Appropriate Permissions	CIS MySQL 5.6 Community Linux OS L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.2 Ensure 'log_bin_basename' Files Have Appropriate Permissions	CIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.2 Ensure 'log_bin_basename' Files Have Appropriate Permissions	CIS MySQL 5.6 Community Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.2 Ensure 'log_bin_basename' Files Have Appropriate Permissions	CIS MySQL 5.6 Community Linux OS L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.2 Ensure 'log_bin_basename' Files Have Appropriate Permissions	CIS MySQL 5.7 Enterprise Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.3 Ensure 'log_error' Has Appropriate Permissions	CIS MySQL 5.7 Enterprise Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.4 Ensure 'slow_query_log' Has Appropriate Permissions	CIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.4 Ensure 'slow_query_log' Has Appropriate Permissions	CIS MySQL 5.7 Enterprise Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.5 Ensure 'relay_log_basename' Files Have Appropriate Permissions	CIS MySQL 5.6 Community Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.6 Ensure 'general_log_file' Has Appropriate Permissions	CIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.7 Ensure SSL Key Files Have Appropriate Permissions	CIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
3.7 Ensure SSL Key Files Have Appropriate Permissions	CIS MySQL 5.6 Community Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure 'audit_log_file' Has Appropriate Permissions - audit_log_file has Appropriate Permissions	CIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.1.1 Ensure that the kubelet service file permissions are set to 600 or more restrictive	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Worker	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.1.7 Ensure that the certificate authorities file permissions are set to 600 or more restrictive	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Worker	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.2.1 Ensure that the --anonymous-auth argument is set to false	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Worker	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.2.2 Ensure that the --authorization-mode argument is not set to AlwaysAllow	CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Worker	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.2.2 Ensure that the --authorization-mode argument is not set to AlwaysAllow	CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Worker	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.5 Ensure 'mysqld' is Not Started with '--skip-grant-tables' - /etc/my.cnf	CIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
4.5 Ensure 'mysqld' is Not Started with '--skip-grant-tables' - C:\my.cnf	CIS MySQL 5.6 Community Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, MEDIA PROTECTION
4.5 Ensure 'mysqld' is Not Started with '--skip-grant-tables' - C:\my.ini	CIS MySQL 5.6 Community Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, MEDIA PROTECTION
4.5 Ensure 'mysqld' is Not Started with '--skip-grant-tables' - MySQL Service Registry Entry	CIS MySQL 5.6 Community Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, MEDIA PROTECTION
4.5 Ensure 'mysqld' is Not Started with '--skip-grant-tables' - SYSCONFDIR/my.cnf	CIS MySQL 5.6 Enterprise Linux OS L1 v2.0.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
6.1.4 Ensure Guest Access to Shared Folders Is Disabled - SMB Sharing	CIS Apple macOS 10.14 v2.0.0 L1	Unix	ACCESS CONTROL, MEDIA PROTECTION

Detections

Analytics

Item Search