Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.2.3 Ensure 'Access this computer from the network' is set to 'Administrators, Authenticated Users' (MS only)CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1Windows

SYSTEM AND INFORMATION INTEGRITY

2.2.5 Ensure DHCP Server is not installedCIS Oracle Linux 6 Workstation L1 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.2.5 Ensure DHCP Server is not installedCIS CentOS 6 Workstation L1 v3.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.2.6 Ensure LDAP server is not installedCIS Oracle Linux 6 Workstation L1 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.2.6 Ensure LDAP server is not installedCIS CentOS 6 Workstation L1 v3.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.2.8 Ensure FTP Server is not installedCIS Oracle Linux 6 Workstation L1 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.2.10 Ensure IMAP and POP3 server is not installedCIS Oracle Linux 6 Workstation L1 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.2.11 Ensure Samba is not installedCIS Oracle Linux 6 Workstation L1 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.1.1 Disable IPv6CIS CentOS 6 Workstation L2 v3.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.1.1 Disable IPv6CIS Red Hat 6 Workstation L2 v3.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.1.1 Disable IPv6CIS CentOS 6 Server L2 v3.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.1.1 Disable IPv6CIS Oracle Linux 6 Server L2 v2.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.1.1 Disable IPv6CIS Red Hat 6 Server L2 v3.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

3.6 Disable IPv6CIS Aliyun Linux 2 L2 v1.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

4.2.5 Enable Ignore Broadcast Requests - net.ipv4.icmp_echo_ignore_broadcasts = 1CIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

SYSTEM AND INFORMATION INTEGRITY

4.2.6 Enable Bad Error Message Protection - net.ipv4.icmp_ignore_bogus_error_responses = 1CIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

SYSTEM AND INFORMATION INTEGRITY

4.4.1.2 Disable IPv6 Redirect Acceptance - net.ipv6.conf.default.accept_redirect = 0CIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

SYSTEM AND INFORMATION INTEGRITY

5.3.7 Ensure SSH X11 forwarding is disabled - sshd_configCIS Red Hat 6 Server L2 v3.0.0Unix

SYSTEM AND INFORMATION INTEGRITY

5.4 Ensure 'HomeGroup Listener (HomeGroupListener)' is set to 'Disabled'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

SYSTEM AND INFORMATION INTEGRITY

5.5 Ensure 'HomeGroup Provider (HomeGroupProvider)' is set to 'Disabled'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

SYSTEM AND INFORMATION INTEGRITY

5.6 Ensure 'IIS Admin Service (IISADMIN)' is set to 'Disabled' or 'Not Installed'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

SYSTEM AND INFORMATION INTEGRITY

5.9 Ensure 'Microsoft FTP Service (FTPSVC)' is set to 'Disabled' or 'Not Installed'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

SYSTEM AND INFORMATION INTEGRITY

5.22 Ensure 'Routing and Remote Access (RemoteAccess)' is set to 'Disabled'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

SYSTEM AND INFORMATION INTEGRITY

5.27 Ensure 'Telnet (TlntSvr)' is set to 'Disabled' or 'Not Installed'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

SYSTEM AND INFORMATION INTEGRITY

5.34 Ensure 'WinHTTP Web Proxy Auto-Discovery Service (WinHttpAutoProxySvc)' is set to 'Disabled'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

SYSTEM AND INFORMATION INTEGRITY

6.1 Ensure that MongoDB uses a non-default portCIS MongoDB 4 L1 OS Windows v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

6.2.1 Set SSH Protocol to 2CIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

SYSTEM AND INFORMATION INTEGRITY

6.2.7 Set SSH HostbasedAuthentication to NoCIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

SYSTEM AND INFORMATION INTEGRITY

6.2.11 Use Only Approved Ciphers in Counter Mode - Ciphers aes128-ctr,aes192-ctr,aes256-ctrCIS Red Hat Enterprise Linux 5 L1 v2.2.1Unix

SYSTEM AND INFORMATION INTEGRITY

18.1.3 Ensure 'Allow Online Tips' is set to 'Disabled'CIS Microsoft Windows 11 Enterprise v2.0.0 L2Windows

SYSTEM AND INFORMATION INTEGRITY

18.3.8 Ensure 'NetBT NodeType configuration' is set to 'Enabled: P-node (recommended)'CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

SYSTEM AND INFORMATION INTEGRITY

18.5.11 Ensure 'MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'CIS Microsoft Windows 11 Enterprise v2.0.0 L2Windows

SYSTEM AND INFORMATION INTEGRITY

18.5.12 Ensure 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'CIS Microsoft Windows 11 Enterprise v2.0.0 L2Windows

SYSTEM AND INFORMATION INTEGRITY

18.5.12 Ensure 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'CIS Microsoft Windows 11 Enterprise v2.0.0 L2 + BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.6.9.1 Ensure 'Turn on Mapper I/O (LLTDIO) driver' is set to 'Disabled' - AllowLLTDIOOnDomainCIS Microsoft Windows 11 Enterprise v2.0.0 L2Windows

SYSTEM AND INFORMATION INTEGRITY

18.6.9.1 Ensure 'Turn on Mapper I/O (LLTDIO) driver' is set to 'Disabled' - EnableLLTDIOCIS Microsoft Windows 11 Enterprise v2.0.0 L2Windows

SYSTEM AND INFORMATION INTEGRITY

18.6.9.1 Ensure 'Turn on Mapper I/O (LLTDIO) driver' is set to 'Disabled' - ProhibitLLTDIOOnPrivateNetCIS Microsoft Windows 11 Enterprise v2.0.0 L2 + BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.6.9.2 Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled' - AllowRspndrOnDomainCIS Microsoft Windows 11 Enterprise v2.0.0 L2Windows

SYSTEM AND INFORMATION INTEGRITY

18.6.9.2 Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled' - AllowRspndrOnDomainCIS Microsoft Windows 11 Enterprise v2.0.0 L2 + BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.6.9.2 Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled' - AllowRspndrOnPublicNetCIS Microsoft Windows 11 Enterprise v2.0.0 L2 + BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.6.9.2 Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled' - ProhibitRspndrOnPrivateNetCIS Microsoft Windows 11 Enterprise v2.0.0 L2 + BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.8.1.1 Ensure 'Turn off notifications network usage' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v2.0.0 L2 + BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.9.30.2 Ensure 'Allow upload of User Activities' is set to 'Disabled'CIS Microsoft Windows 11 Enterprise v2.0.0 L2Windows

SYSTEM AND INFORMATION INTEGRITY

18.9.59.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'CIS Microsoft Windows 8.1 v2.4.1 L2 BitlockerWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.15.2 Ensure 'Configure Authenticated Proxy usage for the Connected User Experience and Telemetry service' is set to 'Enabled: Disable Authenticated Proxy usage'CIS Microsoft Windows 11 Enterprise v2.0.0 L2 + BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.57.3.3.6 Ensure 'Do not allow supported Plug and Play device redirection' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v2.0.0 L2Windows

MEDIA PROTECTION

18.10.59.2 Ensure 'Allow Cloud Search' is set to 'Enabled: Disable Cloud Search'CIS Microsoft Windows 11 Enterprise v2.0.0 L2 + BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.63.1 Ensure 'Turn off KMS Client Online AVS Validation' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v2.0.0 L2 + BLWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.80.1 Ensure 'Allow suggested apps in Windows Ink Workspace' is set to 'Disabled'CIS Microsoft Windows 11 Enterprise v2.0.0 L2Windows

SYSTEM AND INFORMATION INTEGRITY

19.7.7.3 Ensure 'Do not use diagnostic data for tailored experiences' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v2.0.0 L2Windows

SYSTEM AND INFORMATION INTEGRITY