Item Search

NameAudit NamePluginCategory
2.2 Give the BIND User Account an Invalid ShellCIS BIND DNS v1.0.0 L1 Authoritative Name ServerUnix

ACCESS CONTROL

2.2 Give the BIND User Account an Invalid ShellCIS BIND DNS v1.0.0 L1 Caching Only Name ServerUnix

ACCESS CONTROL

2.3.5.1 Ensure 'Domain controller: Allow server operators to schedule tasks' is set to 'Disabled' (DC only)CIS Microsoft Windows Server 2019 STIG DC L1 v1.0.1Windows

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

2.3.5.1 Ensure 'Domain controller: Allow server operators to schedule tasks' is set to 'Disabled' (DC only)CIS Microsoft Windows Server 2016 STIG DC L1 v1.1.0Windows

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

3.1 Set a nondeterministic Shutdown command valueCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL

3.1 Set a nondeterministic Shutdown command valueCIS Apache Tomcat 8 L1 v1.1.0 MiddlewareUnix

ACCESS CONTROL

3.1 Set a nondeterministic Shutdown command valueCIS Apache Tomcat 10 L1 v1.0.0 MiddlewareUnix

ACCESS CONTROL

3.1 Set a nondeterministic Shutdown command valueCIS Apache Tomcat 10 L1 v1.0.0Unix

ACCESS CONTROL

3.1 Set a nondeterministic Shutdown command valueCIS Apache Tomcat 9 L1 v1.2.0 MiddlewareUnix

ACCESS CONTROL

3.1 Set a nondeterministic Shutdown command valueCIS Apache Tomcat 8 L1 v1.1.0Unix

ACCESS CONTROL

4.1 Ensure That Instances Are Not Configured To Use the Default Service AccountCIS Google Cloud Platform v1.3.0 L1GCP

IDENTIFICATION AND AUTHENTICATION

4.1.4 Minimize access to create podsCIS Google Kubernetes Engine (GKE) v1.3.0 L1GCP

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

4.2 Ensure That Instances Are Not Configured To Use the Default Service Account With Full Access to All Cloud APIsCIS Google Cloud Platform v1.3.0 L1GCP

IDENTIFICATION AND AUTHENTICATION

5.5 Ensure the Default CGI Content printenv Script Is RemovedCIS Apache HTTP Server 2.2 L1 v3.6.0Unix

ACCESS CONTROL

5.5 Ensure the Default CGI Content printenv Script Is RemovedCIS Apache HTTP Server 2.4 L1 v2.0.0 MiddlewareUnix

ACCESS CONTROL

5.5 Ensure the Default CGI Content printenv Script Is RemovedCIS Apache HTTP Server 2.4 L1 v2.0.0Unix

ACCESS CONTROL

5.5 Ensure the Default CGI Content printenv Script Is RemovedCIS Apache HTTP Server 2.2 L2 v3.6.0Unix

ACCESS CONTROL

5.5 Ensure the Default CGI Content printenv Script Is RemovedCIS Apache HTTP Server 2.2 L1 v3.6.0 MiddlewareUnix

ACCESS CONTROL

5.6 Ensure the Default CGI Content test-cgi Script Is RemovedCIS Apache HTTP Server 2.4 L1 v2.0.0 MiddlewareUnix

ACCESS CONTROL

5.6 Ensure the Default CGI Content test-cgi Script Is RemovedCIS Apache HTTP Server 2.4 L1 v2.0.0Unix

ACCESS CONTROL

5.6 Ensure the Default CGI Content test-cgi Script Is RemovedCIS Apache HTTP Server 2.2 L2 v3.6.0Unix

ACCESS CONTROL

5.6 Ensure the Default CGI Content test-cgi Script Is RemovedCIS Apache HTTP Server 2.2 L1 v3.6.0 MiddlewareUnix

ACCESS CONTROL

5.6 Ensure the Default CGI Content test-cgi Script Is RemovedCIS Apache HTTP Server 2.2 L1 v3.6.0Unix

ACCESS CONTROL

6.6.5 Ensure all Custom Login Classes Forbid Shell AccessCIS Juniper OS Benchmark v2.1.0 L1Juniper

ACCESS CONTROL

6.10.3.2 Ensure XNM-SSL Connection Limit is SetCIS Juniper OS Benchmark v2.1.0 L2Juniper

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

6.10.3.3 Ensure XNM-SSL Rate Limit is SetCIS Juniper OS Benchmark v2.1.0 L2Juniper

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

6.10.4.1 Ensure NETCONF Rate Limit is SetCIS Juniper OS Benchmark v2.1.0 L1Juniper

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

6.10.4.2 Ensure NETCONF Connection Limit is SetCIS Juniper OS Benchmark v2.1.0 L1Juniper

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

6.10.5.9 Ensure REST Connection Limit is SetCIS Juniper OS Benchmark v2.1.0 L1Juniper

ACCESS CONTROL

6.10.5.10 Ensure REST Service Address is SetCIS Juniper OS Benchmark v2.1.0 L1Juniper

ACCESS CONTROL, CONFIGURATION MANAGEMENT

6.10.5.11 Ensure REST Service Address is Set to OOB Management OnlyCIS Juniper OS Benchmark v2.1.0 L2Juniper

ACCESS CONTROL

10.2 Restrict access to the web administration applicationCIS Apache Tomcat 8 L2 v1.1.0Unix

ACCESS CONTROL

10.2 Restrict access to the web administration applicationCIS Apache Tomcat 8 L2 v1.1.0 MiddlewareUnix

ACCESS CONTROL

10.2 Restrict access to the web administration applicationCIS Apache Tomcat 9 L1 v1.2.0 MiddlewareUnix

ACCESS CONTROL

10.2 Restrict access to the web administration applicationCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL

10.3 Restrict manager applicationCIS Apache Tomcat 8 L2 v1.1.0 MiddlewareUnix

ACCESS CONTROL

10.3 Restrict manager applicationCIS Apache Tomcat 8 L2 v1.1.0Unix

ACCESS CONTROL

10.3 Restrict manager applicationCIS Apache Tomcat 9 L2 v1.2.0 MiddlewareUnix

ACCESS CONTROL

10.3 Restrict manager applicationCIS Apache Tomcat 9 L2 v1.2.0Unix

ACCESS CONTROL

10.13 Do not run applications as privilegedCIS Apache Tomcat 9 L1 v1.2.0Unix

ACCESS CONTROL

10.13 Do not run applications as privilegedCIS Apache Tomcat 9 L1 v1.2.0 MiddlewareUnix

ACCESS CONTROL

10.14 Do not allow cross context requestsCIS Apache Tomcat 9 L1 v1.2.0 MiddlewareUnix

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

10.14 Do not allow cross context requestsCIS Apache Tomcat 10 L1 v1.0.0 MiddlewareUnix

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

10.14 Do not allow cross context requestsCIS Apache Tomcat 10 L1 v1.0.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

10.14 Do not allow cross context requestsCIS Apache Tomcat 9 L1 v1.2.0Unix

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

10.14 Do not run applications as privilegedCIS Apache Tomcat 8 L1 v1.1.0Unix

ACCESS CONTROL

10.14 Do not run applications as privilegedCIS Apache Tomcat 8 L1 v1.1.0 MiddlewareUnix

ACCESS CONTROL

10.15 Do not allow cross context requestsCIS Apache Tomcat 8 L1 v1.1.0Unix

ACCESS CONTROL

10.15 Do not allow cross context requestsCIS Apache Tomcat 8 L1 v1.1.0 MiddlewareUnix

ACCESS CONTROL