Item Search

NameAudit NamePluginCategory
2.2.5 (L1) Ensure 'Allow log on locally' is set to 'Administrators, Users'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL

2.2.5 Ensure 'Allow log on locally' is set to 'Administrators, Users'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL

2.2.7 Ensure 'Allow log on locally' is set to 'Administrators'CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0Windows

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

2.2.7 Ensure 'Allow log on locally' is set to 'Administrators'CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

2.2.7 Ensure 'Back up files and directories' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.10 Ensure 'Back up files and directories' is set to 'Administrators'CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.10 Ensure 'Back up files and directories' is set to 'Administrators'CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.10 Ensure 'Create a pagefile' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.12 (L1) Ensure 'Create global objects' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.12 Ensure 'Create global objects' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.13 Ensure 'Create a pagefile' is set to 'Administrators'CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.13 Ensure 'Create a pagefile' is set to 'Administrators'CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.14 (L1) Configure 'Create symbolic links'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.14 Configure 'Create symbolic links'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.15 (L1) Ensure 'Debug programs' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.15 Ensure 'Debug programs' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.17 Ensure 'Create symbolic links' is set to 'Administrators' (DC only)CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.21 (L1) Ensure 'Enable computer and user accounts to be trusted for delegation' is set to 'No One'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.21 Ensure 'Enable computer and user accounts to be trusted for delegation' is set to 'No One'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.22 (L1) Ensure 'Force shutdown from a remote system' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.22 Ensure 'Force shutdown from a remote system' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.25 (L1) Ensure 'Increase scheduling priority' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.25 (L1) Ensure 'Increase scheduling priority' is set to 'Administrators' - Window Manager\Window Manager Group'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.25 Ensure 'Increase scheduling priority' is set to 'Administrators' - AdministratorsCIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.25 Ensure 'Increase scheduling priority' is set to 'Administrators' - Window Manager\Window Manager Group'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.26 (L1) Ensure 'Load and unload device drivers' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.26 Ensure 'Load and unload device drivers' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.30 (L1) Ensure 'Manage auditing and security log' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.30 Ensure 'Manage auditing and security log' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.32 Ensure 'Load and unload device drivers' is set to 'Administrators'CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.32 Ensure 'Load and unload device drivers' is set to 'Administrators'CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.35 Ensure 'Manage auditing and security log' is set to 'Administrators' and (when Exchange is running in the environment) 'Exchange Servers' (DC only)CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.36 Ensure 'Manage auditing and security log' is set to 'Administrators' (MS only)CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION

2.2.37 Ensure 'Enable computer and user accounts to be trusted for delegation' is set to 'No One' (MS only)CIS Microsoft Windows Server 2016 STIG MS STIG v1.1.0Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2.38 Ensure 'Force shutdown from a remote system' is set to 'Administrators'CIS Microsoft Windows Server 2019 STIG MS STIG v1.0.1Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.3.5.1 Ensure 'Domain controller: Allow server operators to schedule tasks' is set to 'Disabled' (DC only)CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

4.6 Ensure only authorized users and groups belong to the esxAdminsGroup groupCIS VMware ESXi 6.7 v1.3.0 Level 1VMware

ACCESS CONTROL

4.7 Ensure only authorized users and groups belong to the esxAdminsGroup groupCIS VMware ESXi 7.0 v1.3.0 Level 1VMware

ACCESS CONTROL

5.1 Ensure Only Administrative Users Have Full Database AccessCIS MySQL 8.0 Community Database L1 v1.0.0MySQLDB

ACCESS CONTROL

5.1 Ensure Only Administrative Users Have Full Database AccessCIS MySQL 5.7 Community Database L1 v2.0.0MySQLDB

ACCESS CONTROL

5.1 Ensure Only Administrative Users Have Full Database AccessCIS MySQL 5.6 Enterprise Database L1 v2.0.0MySQLDB

ACCESS CONTROL

5.1 Ensure Only Administrative Users Have Full Database AccessCIS MariaDB 10.6 on Linux L1 v1.0.0Unix

ACCESS CONTROL

5.1 Ensure Only Administrative Users Have Full Database AccessCIS MariaDB 10.6 Database L1 v1.0.0MySQLDB

ACCESS CONTROL

5.1 Ensure Only Administrative Users Have Full Database AccessCIS MySQL 8.0 Enterprise Database L1 v1.3.0MySQLDB

ACCESS CONTROL

5.3.1 Ensure 'Privileged Identity Management' is used to manage rolesCIS Microsoft 365 Foundations E5 L2 v3.0.0microsoft_azure

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

5.10 Ensure Secure Keyboard Entry Terminal.app Is EnabledCIS Apple macOS 11.0 Big Sur v4.0.0 L1Unix

CONFIGURATION MANAGEMENT

5.10 Ensure Secure Keyboard Entry Terminal.app Is EnabledCIS Apple macOS 12.0 Monterey v3.0.0 L1Unix

CONFIGURATION MANAGEMENT

6.4.1 Ensure Secure Keyboard Entry Terminal.app Is EnabledCIS Apple macOS 14.0 Sonoma v1.0.0 L1Unix

CONFIGURATION MANAGEMENT

6.4.1 Ensure Secure Keyboard Entry Terminal.app Is EnabledCIS Apple macOS 13.0 Ventura v2.0.0 L1Unix

CONFIGURATION MANAGEMENT

20.40 Ensure 'Only administrators responsible for the domain controller to have Administrator rights on the system' (STIG DC only)CIS Microsoft Windows Server 2019 STIG DC STIG v1.0.1Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY