Item Search

NameAudit NamePluginCategory
1.1 Remove extraneous files and directories (SERVER_DIR/webapps/host-manager.xml)CIS Apache Tomcat 7 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.1 Remove extraneous files and directories (SERVER_DIR/webapps/manager)CIS Apache Tomcat 7 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.1 Remove extraneous files and directories (WEBAPP_DIR/examples)CIS Apache Tomcat 7 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

1.1 Remove extraneous files and directories (WEBAPP_DIR/js-examples)CIS Apache Tomcat 7 L2 v1.1.0 MiddlewareUnix

CONFIGURATION MANAGEMENT

1.1 Remove extraneous files and directories (WEBAPP_DIR/webdav)CIS Apache Tomcat 7 L2 v1.1.0 MiddlewareUnix

CONFIGURATION MANAGEMENT

1.2.3 Set 'no exec' for 'line aux 0'CIS Cisco IOS 12 L1 v4.0.0Cisco

CONFIGURATION MANAGEMENT

1.4 Remove all non-essential services from the host - DPKGCIS Docker 1.11.0 v1.0.0 L1 LinuxUnix

CONFIGURATION MANAGEMENT

1.4 Remove all non-essential services from the host - RPMCIS Docker 1.11.0 v1.0.0 L1 LinuxUnix

CONFIGURATION MANAGEMENT

1.4 Remove all non-essential services from the host - Running ProcessesCIS Docker 1.12.0 v1.0.0 L1 LinuxUnix

CONFIGURATION MANAGEMENT

1.4 Remove all non-essential services from the host - SocketsCIS Docker 1.12.0 v1.0.0 L1 LinuxUnix

CONFIGURATION MANAGEMENT

1.10 Ensure 'Developer Options' is set to DisabledAirWatch - CIS Google Android 7 v1.0.0 L1MDM

CONFIGURATION MANAGEMENT

1.24 Ensure 'Wi-Fi assistant' is set to DisabledAirWatch - CIS Google Android 7 v1.0.0 L1MDM

CONFIGURATION MANAGEMENT

1.90 (L1) Ensure 'Enable Discover access to page contents for AAD profiles' is set to 'Disabled'CIS Microsoft Edge v3.0.0 L1Windows

CONFIGURATION MANAGEMENT

1.133 (L1) Ensure 'Wait for Internet Explorer mode tabs to completely unload before ending the browser session' is set to 'Disabled'CIS Microsoft Edge v3.0.0 L1Windows

CONFIGURATION MANAGEMENT

2.1 Ensure 'Notifications on the lock screen' is set to DisabledMobileIron - CIS Google Android 7 v1.0.0 L1MDM

CONFIGURATION MANAGEMENT

2.1.2 Set 'no cdp run'CIS Cisco IOS 12 L1 v4.0.0Cisco

CONFIGURATION MANAGEMENT

2.1.3 Set 'no ip bootp server'CIS Cisco IOS 12 L1 v4.0.0Cisco

CONFIGURATION MANAGEMENT

2.1.4 Set 'no service dhcp'CIS Cisco IOS 12 L1 v4.0.0Cisco

CONFIGURATION MANAGEMENT

2.3 Ensure 'Back up to Google Drive' is DisabledAirWatch - CIS Google Android 7 v1.0.0 L2MDM

CONFIGURATION MANAGEMENT

2.5 Do not use the aufs storage driverCIS Docker 1.13.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

2.7.4 iCloud Drive Document syncCIS Apple macOS 10.12 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.10 Ensure 'Google Location History' is set to DisabledAirWatch - CIS Google Android 7 v1.0.0 L1MDM

CONFIGURATION MANAGEMENT

2.15 Do not enable swarm mode, if not neededCIS Docker 1.13.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

2.16 Control the number of manager nodes in a swarmCIS Docker 1.12.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

2.18 Disable Userland ProxyCIS Docker 1.12.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

2.25 Disable AutomountingCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

3.17 Ensure Accept ICMP Requests is not enabledCIS Check Point Firewall L2 v1.1.0CheckPoint

CONFIGURATION MANAGEMENT

4.1 Disable Bonjour advertising serviceCIS Apple macOS 10.13 L2 v1.1.0Unix

CONFIGURATION MANAGEMENT

4.4 Ensure http server is not runningCIS Apple macOS 10.12 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT

4.4 Ensure http server is not runningCIS Apple macOS 10.13 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

4.9 Use COPY instead of ADD in DockerfileCIS Docker 1.12.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.1.8 Ensure xinetd is not enabledCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

5.5 Do not mount sensitive host system directories on containersCIS Docker 1.11.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.5 Do not mount sensitive host system directories on containersCIS Docker 1.13.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.6 Do not run ssh within containersCIS Docker 1.11.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.6 Do not run ssh within containersCIS Docker 1.12.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.6 Do not run ssh within containersCIS Docker 1.13.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.8 Open only needed ports on containerCIS Docker 1.11.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.9 Open only needed ports on containerCIS Docker 1.6 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.19 Do not set mount propagation mode to sharedCIS Docker 1.11.0 v1.0.0 L1 DockerUnix

CONFIGURATION MANAGEMENT

5.29 Do not use Docker's default bridge docker0CIS Docker 1.12.0 v1.0.0 L2 DockerUnix

CONFIGURATION MANAGEMENT

6.2 (L2) Ensure 'Enable JavaScript' is 'Disabled'CIS MacOS Safari v2.0.0 L2Unix

CONFIGURATION MANAGEMENT

6.2 Ensure Avahi Server is not enabledCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

6.3 Ensure print server is not enabledCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

6.4 Avoid image sprawlCIS Docker 1.12.0 v1.0.0 L1 LinuxUnix

CONFIGURATION MANAGEMENT

6.9 Ensure FTP Server is not enabledCIS Debian Linux 7 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT

7.16 AirDrop security considerationsCIS Apple macOS 10.13 L1 v1.1.0Unix

CONFIGURATION MANAGEMENT

10.5 Rename the manager application (localhost/manager.xml)CIS Apache Tomcat 7 L2 v1.1.0 MiddlewareUnix

CONFIGURATION MANAGEMENT

10.17 Do not resolve hosts on logging valvesCIS Apache Tomcat 7 L2 v1.1.0 MiddlewareUnix

CONFIGURATION MANAGEMENT

Telnet vs. Secure Shell - no telnet-serverArubaOS Switch 16.x Hardening Guide v1.0.0ArubaOS

CONFIGURATION MANAGEMENT