Item Search

NameAudit NamePluginCategory
1.5.9 Ensure NIST FIPS-validated cryptography is configured - etcCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

1.5.9 Ensure NIST FIPS-validated cryptography is configured - grubCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

1.5.9 Ensure NIST FIPS-validated cryptography is configured - procCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

1.5.9 Ensure NIST FIPS-validated cryptography is configured - rpmCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

AIX7-00-001048 - AIX must protect the confidentiality and integrity of all information at rest - clic.rte.libDISA STIG AIX 7.x v2r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

AIX7-00-001048 - AIX must protect the confidentiality and integrity of all information at rest - EFS enabledDISA STIG AIX 7.x v2r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

AOSX-13-000780 - The macOS system must implement cryptographic mechanisms to protect the confidentiality and integrity of all information at rest.DISA STIG Apple Mac OSX 10.13 v2r5Unix

SYSTEM AND COMMUNICATIONS PROTECTION

AOSX-14-005020 - The macOS system must implement cryptographic mechanisms to protect the confidentiality and integrity of all information at rest.DISA STIG Apple Mac OSX 10.14 v2r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

AOSX-15-005020 - The macOS system must implement cryptographic mechanisms to protect the confidentiality and integrity of all information at rest.DISA STIG Apple Mac OSX 10.15 v1r8Unix

SYSTEM AND COMMUNICATIONS PROTECTION

APPL-11-005020 - The macOS system must implement cryptographic mechanisms to protect the confidentiality and integrity of all information at rest.DISA STIG Apple macOS 11 v1r5Unix

SYSTEM AND COMMUNICATIONS PROTECTION

APPL-11-005020 - The macOS system must implement cryptographic mechanisms to protect the confidentiality and integrity of all information at rest.DISA STIG Apple macOS 11 v1r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

APPL-12-005020 - The macOS system must implement cryptographic mechanisms to protect the confidentiality and integrity of all information at rest.DISA STIG Apple macOS 12 v1r4Unix

SYSTEM AND COMMUNICATIONS PROTECTION

BIND-9X-001131 - The DNSSEC keys used with the BIND 9.x implementation must be group owned by a privileged account.DISA BIND 9.x STIG v2r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

BIND-9X-001132 - Permissions assigned to the DNSSEC keys used with the BIND 9.x implementation must enforce read-only access to the key owner and deny access to all other users.DISA BIND 9.x STIG v2r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

DKER-EE-002660 - Docker Secrets must be used to store configuration files and small amounts of user-generated data (up to 500 kb in size) in Docker Enterprise.DISA STIG Docker Enterprise 2.x Linux/Unix v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

DTBC-0039 - Browser history must be saved.DISA STIG Google Chrome v2r6Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI042-IE11 - Userdata persistence must be disallowed (Internet zone).DISA STIG IE 11 v2r2Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO188 - Document metadata for password protected files must be protected.DISA STIG Microsoft Office System 2016 v2r2Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO189 - The encryption type for password protected Open XML files must be set.DISA STIG Microsoft Office System 2016 v2r2Windows

SYSTEM AND COMMUNICATIONS PROTECTION

EP11-00-005700 - The EDB Postgres Advanced Server must protect the confidentiality and integrity of all information at rest.EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

EX13-MB-000125 - Exchange Public Folder stores must be retained until backups are complete.DISA Microsoft Exchange 2013 Mailbox Server STIG v2r2Windows

SYSTEM AND COMMUNICATIONS PROTECTION

EX13-MB-000130 - The Exchange Public Folder database must not be overwritten by a restore.DISA Microsoft Exchange 2013 Mailbox Server STIG v2r2Windows

SYSTEM AND COMMUNICATIONS PROTECTION

EX13-MB-000135 - Exchange Mailboxes must be retained until backups are complete.DISA Microsoft Exchange 2013 Mailbox Server STIG v2r2Windows

SYSTEM AND COMMUNICATIONS PROTECTION

EX16-MB-000270 - Exchange Mailboxes must be retained until backups are complete.DISA Microsoft Exchange 2016 Mailbox Server STIG v2r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

EX16-MB-000300 - Exchange email-forwarding SMTP domains must be restricted.DISA Microsoft Exchange 2016 Mailbox Server STIG v2r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IIST-SV-000137 - The production IIS 10.0 web server must utilize SHA2 encryption for the Machine Key - Validation MethodDISA IIS 10.0 Server v2r5Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IISW-SV-000137 - The production IIS 8.5 web server must utilize SHA2 encryption for the Machine Key - Encryption MethodDISA IIS 8.5 Server v2r3Windows

SYSTEM AND COMMUNICATIONS PROTECTION

IISW-SV-000137 - The production IIS 8.5 web server must utilize SHA2 encryption for the Machine Key - Validation MethodDISA IIS 8.5 Server v2r3Windows

SYSTEM AND COMMUNICATIONS PROTECTION

O365-CO-000008 - Office applications must be configured to specify encryption type in password-protected Office 97-2003 files.DISA STIG Microsoft Office 365 ProPlus v2r5Windows

SYSTEM AND COMMUNICATIONS PROTECTION

OL6-00-000276 - The operating system must protect the confidentiality and integrity of data at rest.DISA STIG Oracle Linux 6 v2r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

OL08-00-010030 - All OL 8 local disk partitions must implement cryptographic mechanisms to prevent unauthorized disclosure or modification of all information that requires at-rest protection.DISA Oracle Linux 8 STIG v1r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

PPS9-00-005700 - The EDB Postgres Advanced Server must protect the confidentiality and integrity of all information at rest.EDB PostgreSQL Advanced Server OS Linux Audit v2r1Unix

SYSTEM AND COMMUNICATIONS PROTECTION

RHEL-06-000276 - The operating system must protect the confidentiality and integrity of data at rest.DISA Red Hat Enterprise Linux 6 STIG v2r2Unix

SYSTEM AND COMMUNICATIONS PROTECTION

RHEL-07-021350 - The Red Hat Enterprise Linux operating system must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards - etcDISA Red Hat Enterprise Linux 7 STIG v3r9Unix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

RHEL-07-021350 - The Red Hat Enterprise Linux operating system must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards - procDISA Red Hat Enterprise Linux 7 STIG v3r9Unix

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

SLES-12-010450 - All SUSE operating system persistent disk partitions must implement cryptographic mechanisms to prevent unauthorized disclosure or modification of all information that requires at rest protection - /etc/crypttabDISA SLES 12 STIG v2r7Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SLES-12-010450 - All SUSE operating system persistent disk partitions must implement cryptographic mechanisms to prevent unauthorized disclosure or modification of all information that requires at rest protection.DISA SLES 12 STIG v2r7Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SOL-11.1-060160 - The operating system must protect the confidentiality and integrity of information at rest.DISA STIG Solaris 11 SPARC v2r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

SOL-11.1-060160 - The operating system must protect the confidentiality and integrity of information at rest.DISA STIG Solaris 11 X86 v2r6Unix

SYSTEM AND COMMUNICATIONS PROTECTION

UBTU-16-010400 - All persistent disk partitions must implement cryptographic mechanisms to prevent unauthorized disclosure or modification of all information that requires at rest protection.DISA STIG Ubuntu 16.04 LTS v2r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

UBTU-18-010003 - Ubuntu operating systems handling data requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.DISA STIG Ubuntu 18.04 LTS v2r8Unix

SYSTEM AND COMMUNICATIONS PROTECTION

WN10-00-000030 - Windows 10 information systems must use BitLocker to encrypt all disks to protect the confidentiality and integrity of all information at rest.DISA Windows 10 STIG v2r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN10-00-000031 - Windows 10 systems must use a BitLocker PIN for pre-boot authentication - UseAdvancedStartupDISA Windows 10 STIG v2r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN10-00-000031 - Windows 10 systems must use a BitLocker PIN for pre-boot authentication - UseTPMPin / UseTPMKeyPinDISA Windows 10 STIG v2r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN10-00-000032 - Windows 10 systems must use a BitLocker PIN with a minimum length of six digits for pre-boot authentication.DISA Windows 10 STIG v2r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN12-00-000020 - Systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.DISA Windows Server 2012 and 2012 R2 MS STIG v3r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN12-00-000020 - Systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.DISA Windows Server 2012 and 2012 R2 DC STIG v3r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN16-00-000280 - Systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.DISA Windows Server 2016 STIG v2r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN19-00-000250 - Windows Server 2019 systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.DISA Windows Server 2019 STIG v2r4Windows

SYSTEM AND COMMUNICATIONS PROTECTION

WN22-00-000250 - Windows Server 2022 systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.DISA Windows Server 2022 STIG v1r1Windows

SYSTEM AND COMMUNICATIONS PROTECTION