Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2.20 Ensure that the --secure-port argument is not set to 0CIS Kubernetes Benchmark v1.6.1 L1 MasterUnix
1.2.32 Ensure that the --etcd-cafile argument is set as appropriateCIS Kubernetes Benchmark v1.6.1 L1 MasterUnix
1.3.6 Ensure that the RotateKubeletServerCertificate argument is set to trueCIS Kubernetes Benchmark v1.6.1 L2 MasterUnix
1.6.3 Ensure that the Certificate Securing Remote Access VPNs is Valid - CertificatesCIS Palo Alto Firewall 9 Benchmark L2 v1.0.0Palo_Alto
1.6.3 Ensure that the Certificate Securing Remote Access VPNs is Valid - CertificatesCIS Palo Alto Firewall 9 Benchmark v1.0.0 L1Palo_Alto
1.6.3 Ensure that the Certificate Securing Remote Access VPNs is Valid - GlobalProtect GatewaysCIS Palo Alto Firewall 9 Benchmark v1.0.0 L1Palo_Alto
2.1 Ensure that the --cert-file and --key-file arguments are set as appropriate - keyCIS Kubernetes Benchmark v1.6.1 L1 MasterUnix
2.1.4 Ensure 'SECURE_REGISTER_' Is Set to 'TCPS' or 'IPC'CIS Oracle Server 18c Linux v1.0.0Unix
2.5 Ensure insecure registries are not usedCIS Docker v1.3.1 L1 Docker LinuxUnix
4.1.2 Ensure a trusted certificate and trust chain is installedCIS NGINX Benchmark v1.0.0 L1 LoadbalancerUnix
4.1.2 Ensure a trusted certificate and trust chain is installedCIS NGINX Benchmark v1.0.0 L1 WebserverUnix
4.1.6 Ensure custom Diffie-Hellman parameters are usedCIS NGINX Benchmark v1.0.0 L1 WebserverUnix
4.2 Ensure Federal Information Processing Standard (FIPS) is enabledCIS MongoDB 3.6 L2 Unix Audit v1.0.0Unix
5.2 Ensure login via 'host' TCP/IP Socket is configured correctlyCIS PostgreSQL 13 OS v1.0.0Unix
6.7 Ensure FIPS 140-2 OpenSSL Cryptography Is Used - fips_enabledCIS PostgreSQL 12 OS v1.0.0Unix
6.8 Ensure SSL is enabled and configured correctlyCIS PostgreSQL 12 DB v1.0.0PostgreSQLDB
6.8 Ensure SSL is enabled and configured correctlyCIS PostgreSQL 13 DB v1.0.0PostgreSQLDB
6.8 Ensure TLS is enabled and configured correctlyCIS PostgreSQL 14 DB v1.0.0PostgreSQLDB
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databasesCIS SQL Server 2017 Database L1 AWS RDS v1.2.0MS_SQLDB
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databasesCIS SQL Server 2016 Database L1 DB v1.3.0MS_SQLDB
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databasesCIS SQL Server 2019 Database L1 DB v1.2.0MS_SQLDB
7.2 Ensure a Valid Trusted Certificate Is InstalledCIS Apache HTTP Server 2.4 L1 v1.5.0 MiddlewareUnix
7.2 Ensure Asymmetric Key Size is set to 'greater than or equal to 2048' in non-system databasesCIS SQL Server 2019 Database L1 DB v1.2.0MS_SQLDB
7.2 Ensure Asymmetric Key Size is set to 'greater than or equal to 2048' in non-system databasesCIS SQL Server 2017 Database L1 AWS RDS v1.2.0MS_SQLDB
7.2 Ensure Asymmetric Key Size is set to 'greater than or equal to 2048' in non-system databasesCIS SQL Server 2017 Database L1 DB v1.2.0MS_SQLDB
7.2 Ensure Asymmetric Key Size is set to 'greater than or equal to 2048' in non-system databasesCIS SQL Server 2019 Database L1 AWS RDS v1.2.0MS_SQLDB
7.3 Ensure WAL archiving is configured and functional - archive_modeCIS PostgreSQL 12 OS v1.0.0Unix
7.4 Ensure streaming replication parameters are configured correctlyCIS PostgreSQL 13 DB v1.0.0PostgreSQLDB
7.4 Ensure that all Docker swarm overlay networks are encryptedCIS Docker v1.3.1 L1 Docker LinuxUnix
7.4 Ensure the TLSv1.0 and TLSv1.1 Protocols are DisabledCIS Apache HTTP Server 2.4 L1 v2.0.0Unix
7.4 Ensure Weak SSL Protocols Are Disabled - 'TLSv1'CIS Apache HTTP Server 2.4 L1 v1.5.0Unix
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'Global SSLCipherSuite'CIS Apache HTTP Server 2.4 L1 v2.0.0 MiddlewareUnix
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'Global SSLHonorCipherOrder = On'CIS Apache HTTP Server 2.4 L1 v2.0.0Unix
7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'VirtualHost SSLHonorCipherOrder = On'CIS Apache HTTP Server 2.4 L1 v2.0.0Unix
7.6 Ensure Insecure SSL Renegotiation Is Not EnabledCIS Apache HTTP Server 2.4 L1 v2.0.0Unix
7.6 Ensure Insecure SSL Renegotiation Is Not EnabledCIS Apache HTTP Server 2.4 L1 v1.5.0 MiddlewareUnix
7.7 Ensure SSL Compression is not EnabledCIS Apache HTTP Server 2.4 L1 v2.0.0Unix
7.7 Ensure SSL Compression is not EnabledCIS Apache HTTP Server 2.4 L1 v2.0.0 MiddlewareUnix
7.8 Ensure Medium Strength SSL/TLS Ciphers Are DisabledCIS Apache HTTP Server 2.4 L1 v2.0.0 MiddlewareUnix
7.9 Ensure All Web Content is Accessed via HTTPSCIS Apache HTTP Server 2.4 L1 v1.5.0 MiddlewareUnix
7.10 Ensure OCSP Stapling Is Enabled - SSLStaplingCacheCIS Apache HTTP Server 2.4 L2 v2.0.0Unix
7.10 Ensure OCSP Stapling Is Enabled - SSLUseStaplingCIS Apache HTTP Server 2.4 L2 v2.0.0Unix
7.10 Ensure OCSP Stapling Is Enabled - SSLUseStaplingCIS Apache HTTP Server 2.4 L2 v2.0.0 MiddlewareUnix
7.10 Ensure the TLSv1.0 and TLSv1.1 Protocols are DisabledCIS Apache HTTP Server 2.4 L2 v1.5.0Unix
7.11 Ensure HTTP Strict Transport Security Is EnabledCIS Apache HTTP Server 2.4 L2 v2.0.0Unix
7.11 Ensure HTTP Strict Transport Security Is EnabledCIS Apache HTTP Server 2.4 L2 v2.0.0 MiddlewareUnix
7.11 Ensure OCSP Stapling Is Enabled - SSLStaplingCacheCIS Apache HTTP Server 2.4 L2 v1.5.0Unix
7.11 Ensure OCSP Stapling Is Enabled - SSLStaplingCacheCIS Apache HTTP Server 2.4 L2 v1.5.0 MiddlewareUnix
7.11 Ensure OCSP Stapling Is Enabled - SSLUseStaplingCIS Apache HTTP Server 2.4 L2 v1.5.0 MiddlewareUnix
7.12 Ensure HTTP Strict Transport Security Is EnabledCIS Apache HTTP Server 2.4 L2 v1.5.0 MiddlewareUnix