Item Search

NameAudit NamePluginCategory
1.14 Ensure 'DNS interception checks enabled' is set to 'Enabled'CIS Google Chrome L1 v3.0.0Windows

RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY

2.1.7 Ensure That Microsoft Defender for Storage Is Set To 'On'CIS Microsoft Azure Foundations v2.0.0 L2microsoft_azure

RISK ASSESSMENT

2.1.8 Ensure That Microsoft Defender for Containers Is Set To 'On'CIS Microsoft Azure Foundations v2.0.0 L2microsoft_azure

RISK ASSESSMENT

2.1.10 Ensure That Microsoft Defender for Key Vault Is Set To 'On'CIS Microsoft Azure Foundations v2.0.0 L2microsoft_azure

RISK ASSESSMENT

2.1.15 Ensure that Auto provisioning of 'Log Analytics agent for Azure VMs' is Set to 'On'CIS Microsoft Azure Foundations v2.0.0 L1microsoft_azure

RISK ASSESSMENT

2.1.16 Ensure that Auto provisioning of 'Vulnerability assessment for machines' is Set to 'On'CIS Microsoft Azure Foundations v2.0.0 L2microsoft_azure

RISK ASSESSMENT

2.1.17 Ensure that Auto provisioning of 'Microsoft Defender for Containers components' is Set to 'On'CIS Microsoft Azure Foundations v2.0.0 L2microsoft_azure

RISK ASSESSMENT

2.3 Set Update Interval Time ChecksCIS Mozilla Firefox 102 ESR Windows L1 v1.0.0Windows

RISK ASSESSMENT

2.3 Set Update Interval Time ChecksCIS Mozilla Firefox 102 ESR Linux L1 v1.0.0Unix

RISK ASSESSMENT

2.3.6 Ensure 'Control Manifest v2 extension availability' Is Set to Forced OnlyCIS Google Chrome L2 v3.0.0Windows

RISK ASSESSMENT

2.3.7 Ensure 'Control availability of extensions unpublished on the Chrome Web Store' Is DisabledCIS Google Chrome L1 v3.0.0Windows

RISK ASSESSMENT

2.4 Set Update Wait Time PromptCIS Mozilla Firefox 102 ESR Windows L1 v1.0.0Windows

RISK ASSESSMENT

2.4 Set Update Wait Time PromptCIS Mozilla Firefox 102 ESR Linux L1 v1.0.0Unix

RISK ASSESSMENT

2.25 Ensure 'Allow file or directory picker APIs to be called without prior user gesture' Is DisabledCIS Google Chrome L1 v3.0.0Windows

RISK ASSESSMENT

4.1.2 Apply IPS Security Profile to PoliciesCIS Fortigate 7.0.x Level 1 v1.2.0FortiGate

RISK ASSESSMENT

4.2.1 Ensure that Microsoft Defender for SQL is set to 'On' for critical SQL ServersCIS Microsoft Azure Foundations v2.0.0 L2microsoft_azure

RISK ASSESSMENT

4.2.2 Ensure that Vulnerability Assessment (VA) is enabled on a SQL server by setting a Storage AccountCIS Microsoft Azure Foundations v2.0.0 L2microsoft_azure

RISK ASSESSMENT

4.2.3 Ensure that Vulnerability Assessment (VA) setting 'Periodic recurring scans' is set to 'on' for each SQL serverCIS Microsoft Azure Foundations v2.0.0 L2microsoft_azure

RISK ASSESSMENT

4.2.4 Ensure that Vulnerability Assessment (VA) setting 'Send scan reports to' is configured for a SQL serverCIS Microsoft Azure Foundations v2.0.0 L2microsoft_azure

RISK ASSESSMENT

4.2.5 Ensure that Vulnerability Assessment (VA) setting 'Also send email notifications to admins and subscription owners' is set for each SQL ServerCIS Microsoft Azure Foundations v2.0.0 L1microsoft_azure

RISK ASSESSMENT

4.4 Ensure images are scanned and rebuilt to include security patchesCIS Docker v1.6.0 L1 Docker LinuxUnix

RISK ASSESSMENT

5.5.2 Ensure Node Auto-Repair is enabled for GKE nodesCIS Google Kubernetes Engine (GKE) v1.5.0 L1GCP

RISK ASSESSMENT

5.5.6 Ensure Integrity Monitoring for Shielded GKE Nodes is EnabledCIS Google Kubernetes Engine (GKE) v1.5.0 L1GCP

RISK ASSESSMENT

5.5.7 Ensure Secure Boot for Shielded GKE Nodes is EnabledCIS Google Kubernetes Engine (GKE) v1.5.0 L2GCP

RISK ASSESSMENT

6.6 Ensure a Vulnerability Protection Profile is set to block attacks against critical and high vulnerabilities, and set to default on medium, low, and informational vulnerabilitiesCIS Palo Alto Firewall 10 v1.1.0 L1Palo_Alto

RISK ASSESSMENT

6.6 Ensure a Vulnerability Protection Profile is set to block attacks against critical and high vulnerabilities, and set to default on medium, low, and informational vulnerabilitiesCIS Palo Alto Firewall 11 v1.0.0 L1Palo_Alto

RISK ASSESSMENT

6.7 Ensure a secure Vulnerability Protection Profile is applied to all security rules allowing trafficCIS Palo Alto Firewall 10 v1.1.0 L1Palo_Alto

RISK ASSESSMENT

6.7 Ensure a secure Vulnerability Protection Profile is applied to all security rules allowing trafficCIS Palo Alto Firewall 11 v1.0.0 L1Palo_Alto

RISK ASSESSMENT

6.7 Ensure a Vulnerability Protection Profile is set to block attacks against critical and high vulnerabilities, and set to default on medium, low, and informational vulnerabilitiesCIS Palo Alto Firewall 9 v1.1.0 L1Palo_Alto

RISK ASSESSMENT

6.8 Ensure a secure Vulnerability Protection Profile is applied to all security rules allowing trafficCIS Palo Alto Firewall 9 v1.1.0 L1Palo_Alto

RISK ASSESSMENT

6.22 Ensure that 'Inline Cloud Analysis' on Vulnerability Protection profiles are enabled if 'Advanced Threat Prevention' is availableCIS Palo Alto Firewall 11 v1.0.0 L1Palo_Alto

RISK ASSESSMENT

7.2 Use FLRTVC regularlyCIS IBM AIX 7.2 L1 v1.1.0Unix

RISK ASSESSMENT

9.1 Apply Applicable UpdatesCIS BIND DNS v1.0.0 L1 Caching Only Name ServerUnix

RISK ASSESSMENT

9.1 Apply Applicable UpdatesCIS BIND DNS v1.0.0 L1 Authoritative Name ServerUnix

RISK ASSESSMENT

18.5.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGONCIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

RISK ASSESSMENT

18.5.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - SYSVOLCIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

RISK ASSESSMENT

18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGONCIS Microsoft Windows 8.1 v2.4.1 L1Windows

RISK ASSESSMENT

18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGON/RequireIntegrityCIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0Windows

RISK ASSESSMENT

18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGON/RequireIntegrityCIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

RISK ASSESSMENT

18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGON/RequireMutualAuthenticationCIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0Windows

RISK ASSESSMENT

18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGON/RequireMutualAuthenticationCIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

RISK ASSESSMENT

18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - SYSVOLCIS Microsoft Windows 8.1 v2.4.1 L1Windows

RISK ASSESSMENT

18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - SYSVOL/RequireIntegrityCIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0Windows

RISK ASSESSMENT

18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - SYSVOL/RequireIntegrityCIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

RISK ASSESSMENT

18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - SYSVOL/RequireMutualAuthenticationCIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0Windows

RISK ASSESSMENT

18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - SYSVOL/RequireMutualAuthenticationCIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0Windows

RISK ASSESSMENT

20.14 Ensure 'Automated mechanisms must be employed to determine the state of system components...'CIS Microsoft Windows Server 2019 STIG DC STIG v1.0.1Windows

RISK ASSESSMENT

20.14 Ensure 'Automated mechanisms must be employed to determine the state of system components...'CIS Microsoft Windows Server 2016 STIG DC STIG v1.1.0Windows

RISK ASSESSMENT

20.14 Ensure 'Automated mechanisms must be employed to determine the state of system components...'CIS Microsoft Windows Server 2016 STIG MS STIG v1.1.0Windows

RISK ASSESSMENT

20.14 Ensure 'Automated mechanisms must be employed to determine the state of system components...'CIS Microsoft Windows Server 2019 STIG MS STIG v1.0.1Windows

RISK ASSESSMENT