Item Search

NameAudit NamePluginCategory
1.2.14 Ensure that the admission control plugin NodeRestriction is setCIS Kubernetes Benchmark v1.9.0 L2 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.2.15 Ensure that the admission control plugin NodeRestriction is setCIS Kubernetes v1.23 Benchmark v1.0.1 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.2.15 Ensure that the admission control plugin NodeRestriction is setCIS Kubernetes v1.24 Benchmark v1.0.0 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.2.16 Ensure that the admission control plugin NodeRestriction is setCIS Kubernetes v1.20 Benchmark v1.0.1 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

1.3.4 Ensure that the --root-ca-file argument is set as appropriateCIS RedHat OpenShift Container Platform 4 v1.5.0 L1OpenShift

SYSTEM AND COMMUNICATIONS PROTECTION

2.1.20 Ensure that Microsoft Defender for Cloud Apps integration with Microsoft Defender for Cloud is SelectedCIS Microsoft Azure Foundations v2.1.0 L2microsoft_azure

RISK ASSESSMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION

2.17 Ensure 'Proxy settings' is set to 'Enabled' and does not contain 'ProxyMode': 'auto_detect'CIS Google Chrome L1 v3.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

4.4.1 Block high risk categories on Application ControlCIS Fortigate 7.0.x v1.3.0 L1FortiGate

ACCESS CONTROL, MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION

4.11 Ensure 'Dynamic IP Address Restrictions' is enabled - Deny By Concurrent RequestsCIS IIS 10 v1.2.1 Level 1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

4.11 Ensure 'Dynamic IP Address Restrictions' is enabled - maxConcurrentRequestsCIS IIS 10 v1.2.1 Level 1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

5.1.1 Ensure allow and deny filters limit access to specific IP addressesCIS NGINX Benchmark v2.0.1 L2 WebserverUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.1.1 Ensure allow and deny filters limit access to specific IP addressesCIS NGINX Benchmark v2.0.1 L2 ProxyUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.1.1 Ensure allow and deny filters limit access to specific IP addressesCIS NGINX Benchmark v2.0.1 L2 LoadbalancerUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.2.2 Minimize the admission of containers wishing to share the host process ID namespaceCIS Kubernetes v1.20 Benchmark v1.0.1 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.2.3 Minimize the admission of containers wishing to share the host IPC namespaceCIS RedHat OpenShift Container Platform 4 v1.5.0 L1OpenShift

SYSTEM AND COMMUNICATIONS PROTECTION

5.2.3 Minimize the admission of containers wishing to share the host process ID namespaceCIS Kubernetes v1.24 Benchmark v1.0.0 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.2.3 Minimize the admission of containers wishing to share the host process ID namespaceCIS Kubernetes v1.23 Benchmark v1.0.1 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.2.3 Minimize the admission of containers wishing to share the host process ID namespaceCIS Kubernetes Benchmark v1.9.0 L1 MasterUnix

SYSTEM AND COMMUNICATIONS PROTECTION

5.17 Ensure HTTP Header Referrer-Policy is set appropriatelyCIS Apache HTTP Server 2.4 L2 v2.1.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

5.17 Ensure HTTP Header Referrer-Policy is set appropriatelyCIS Apache HTTP Server 2.4 L2 v2.1.0 MiddlewareUnix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

5.18 Ensure HTTP Header Permissions-Policy is set appropriatelyCIS Apache HTTP Server 2.4 L2 v2.1.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

7.2 Ensure SSLv2 is DisabledCIS IIS 10 v1.2.1 Level 1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

7.5 Ensure TLS 1.1 is DisabledCIS IIS 10 v1.2.1 Level 1Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.1 Ensure the TimeOut Is Set to 10 or LessCIS Apache HTTP Server 2.4 L1 v2.1.0 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

9.1 Ensure the TimeOut Is Set to 10 or LessCIS Apache HTTP Server 2.4 L1 v2.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

9.2 Configure 'Disable changing Automatic Configuration settings'CIS IE 9 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.3 Configure 'Disable changing connection settings'CIS IE 9 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.4 Configure 'Disable changing proxy settings'CIS IE 9 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.5 Configure 'Make proxy settings per-machine (rather than per-user)'CIS IE 11 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.5 Configure 'Make proxy settings per-machine (rather than per-user)'CIS IE 10 v1.1.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.7 Set 'Prevent changing proxy settings' to 'Enabled'CIS IE 11 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.7 Set 'Prevent changing proxy settings' to 'Enabled'CIS IE 10 v1.1.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.8 Configure 'Disable changing Automatic Configuration settings'CIS IE 10 v1.1.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.8 Configure 'Disable changing Automatic Configuration settings'CIS IE 11 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.11 Configure 'Disable changing connection settings'CIS IE 11 v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

9.11 Configure 'Disable changing connection settings'CIS IE 10 v1.1.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

10.6 Enable strict servlet ComplianceCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

10.6 Enable strict servlet ComplianceCIS Apache Tomcat 9 L2 v1.2.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

10.6 Enable strict servlet ComplianceCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

10.6 Enable strict servlet ComplianceCIS Apache Tomcat 9 L2 v1.2.0 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

18.10.56.3.9.2 (L1) Ensure 'Require secure RPC communication' is set to 'Enabled'CIS Microsoft Windows Server 2022 v3.0.0 L1 Member ServerWindows

SYSTEM AND COMMUNICATIONS PROTECTION

18.10.56.3.9.2 (L1) Ensure 'Require secure RPC communication' is set to 'Enabled'CIS Microsoft Windows Server 2016 v3.0.0 L1 DCWindows

SYSTEM AND COMMUNICATIONS PROTECTION

18.10.56.3.9.2 (L1) Ensure 'Require secure RPC communication' is set to 'Enabled'CIS Microsoft Windows Server 2019 v3.0.1 L1 MSWindows

SYSTEM AND COMMUNICATIONS PROTECTION

18.10.56.3.9.2 (L1) Ensure 'Require secure RPC communication' is set to 'Enabled'CIS Microsoft Windows Server 2016 v3.0.0 L1 MSWindows

SYSTEM AND COMMUNICATIONS PROTECTION

18.10.56.3.9.2 (L1) Ensure 'Require secure RPC communication' is set to 'Enabled'CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain ControllerWindows

SYSTEM AND COMMUNICATIONS PROTECTION

18.10.56.3.9.2 (L1) Ensure 'Require secure RPC communication' is set to 'Enabled'CIS Microsoft Windows Server 2019 v3.0.1 L1 DCWindows

SYSTEM AND COMMUNICATIONS PROTECTION

18.10.56.3.9.2 (L1) Ensure 'Require secure RPC communication' is set to 'Enabled'CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MSWindows

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI305 - Automatic configuration is not disabled -'Autoconfig = 1'.DISA STIG IE 9 v1r5Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI305 - Automatic configuration of Internet Explorer connections must be disallowed.DISA STIG IE 10 V1R16Windows

SYSTEM AND COMMUNICATIONS PROTECTION

DTBI305 - Automatic configuration of Internet Explorer must be disallowed.DISA STIG Microsoft Internet Explorer 9 v1r15Windows

SYSTEM AND COMMUNICATIONS PROTECTION