Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.4.1.3 Ensure 'Consistent Mime Handling' is set to 'Enabled'CIS Microsoft Office Enterprise v1.1.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

1.1.4.1.12 Ensure 'Restrict File Download' is set to 'Enabled'CIS Microsoft Office Enterprise v1.1.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

1.8 Ensure 'Attachment Filtering Agent' is configuredCIS Microsoft Exchange Server 2019 L1 Edge v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

2.1 Alter the Advertised server.info StringCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.1 Alter the Advertised server.info StringCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.1.2 Ensure the Common Attachment Types Filter is enabledCIS Microsoft 365 Foundations E3 L1 v3.0.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.1.4 Ensure Safe Attachments policy is enabledCIS Microsoft 365 Foundations E5 L2 v3.0.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.1.5 Ensure Safe Attachments for SharePoint, OneDrive, and Microsoft Teams is EnabledCIS Microsoft 365 Foundations E5 L2 v3.0.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.1.7 Ensure that an anti-phishing policy has been createdCIS Microsoft 365 Foundations E5 L1 v3.0.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.2 Alter the Advertised server.number StringCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.2 Alter the Advertised server.number StringCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.3 Alter the Advertised server.built DateCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.3 Alter the Advertised server.built DateCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.4 Disable X-Powered-By HTTP Header and Rename the Server Value for all ConnectorsCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.4 Disable X-Powered-By HTTP Header and Rename the Server Value for all ConnectorsCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.4.1 Ensure Priority account protection is enabled and configuredCIS Microsoft 365 Foundations E5 L1 v3.0.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.4.2 Ensure Priority accounts have 'Strict protection' presets appliedCIS Microsoft 365 Foundations E5 L1 v3.0.0microsoft_azure

SYSTEM AND INFORMATION INTEGRITY

2.5 Disable client facing Stack TracesCIS Apache Tomcat 10 L1 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.5 Disable client facing Stack TracesCIS Apache Tomcat 10 L1 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.5.1.5.1 Ensure 'Automatically download attachments' is set to 'Disabled'CIS Microsoft Office Enterprise v1.1.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.1.5.2 Ensure 'Do not include Internet Calendar integration in Outlook' is set to 'Enabled'CIS Microsoft Office Enterprise v1.1.0 L1Windows

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

2.5.14.3.1.1 Ensure 'Allow users to demote attachments to Level 2' is set to 'Disabled'CIS Microsoft Office Enterprise v1.1.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.3.1.4 Ensure 'Do not prompt about Level 1 attachments when sending an item' is set to 'Disabled'CIS Microsoft Office Enterprise v1.1.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.3.1.6 Ensure 'Remove file extensions blocked as Level 2' is set to 'Disabled'CIS Microsoft Office Enterprise v1.1.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.4.1 Ensure 'Allow hyperlinks in suspected phishing e-mail messages' is set to 'Disabled'CIS Microsoft Office Enterprise v1.1.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.5.14.8 Ensure 'Prevent users from customizing attachment security settings' is set to 'Enabled'CIS Microsoft Office Enterprise v1.1.0 L1Windows

SYSTEM AND INFORMATION INTEGRITY

2.7 Ensure Sever Header is Modified To Prevent Information DisclosureCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.7 Ensure Sever Header is Modified To Prevent Information DisclosureCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

4.1 Block Mixed Active ContentCIS Mozilla Firefox 102 ESR Windows L1 v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

4.1 Block Mixed Active ContentCIS Mozilla Firefox 102 ESR Linux L1 v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

4.3.1 Enable Botnet C&C Domain Blocking DNS FilterCIS Fortigate 7.0.x Level 2 v1.2.0FortiGate

SYSTEM AND INFORMATION INTEGRITY

6.3.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 13.0 Ventura v2.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

6.3.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 14.0 Sonoma v1.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 12.0 Monterey v3.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 10.15 Catalina v3.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledCIS Apple macOS 11.0 Big Sur v4.0.0 L1Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

8.4 Ensure ETag Response Header Fields Do Not Include InodesCIS Apache HTTP Server 2.4 L2 v2.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000170 - Exchange messages with a blank sender field must be filtered.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000180 - The Exchange Sender filter must block unaccepted domains.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000200 - Exchange Attachment filtering must remove undesirable attachments by file type.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000210 - The Exchange Block List service provider must be identified.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000215 - Exchange messages with malformed From address must be rejected.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000235 - The Exchange Recipient filter must be enabled.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000245 - Exchange internal Receive connectors must not allow anonymous connections.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000265 - Exchange must have antispam filtering installed.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000270 - Exchange must have antispam filtering enabled - SenderFilterConfigDISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000270 - Exchange must have antispam filtering enabled - SenderIDConfigDISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000270 - Exchange must have antispam filtering enabled - SenderReputationConfigDISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000275 - Exchange must have antispam filtering configured.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY

EX13-EG-000280 - Exchange Sender Identification Framework must be enabled.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

SYSTEM AND INFORMATION INTEGRITY