CSCv6|8

Title

Malware Defenses

Description

Malware Defenses

Reference Item Details

Category: Malware Defenses

Family: System

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.3.6.8 Set 'Interactive logon: Do not require CTRL+ALT+DEL' to 'Disabled'WindowsCIS Windows 8 L1 v1.0.0
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Debian 8 Workstation L1 v2.0.2
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Debian 8 Workstation L1 v2.0.1
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 16.04 LTS Workstation L1 v1.1.0
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Debian 8 Server L1 v2.0.2
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 16.04 LTS Server L1 v1.1.0
1.1.19 Ensure noexec option set on removable media partitionsUnixCIS Debian 8 Server L1 v2.0.1
1.1.20 Ensure noexec option set on removable media partitionsUnixCIS Distribution Independent Linux Server L1 v2.0.0
1.1.20 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 18.04 LTS Server L1 v2.0.1
1.1.20 Ensure noexec option set on removable media partitionsUnixCIS Distribution Independent Linux Workstation L1 v2.0.0
1.1.20 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0
1.1.20 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0
1.1.20 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 18.04 LTS Workstation L1 v2.0.1
1.1.21 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 20.04 LTS Server L1 v1.1.0
1.1.21 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 20.04 LTS Workstation L1 v1.1.0
1.1.21 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 18.04 LTS Server L1 v2.1.0
1.1.21 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 18.04 LTS Workstation L1 v2.1.0
1.1.21 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 20.04 LTS Server L1 v1.0.0
1.1.21 Ensure noexec option set on removable media partitionsUnixCIS Ubuntu Linux 20.04 LTS Workstation L1 v1.0.0
1.1.24 Ensure noexec option set on removable media partitionsUnixCIS Distribution Independent Linux Server L1 v1.1.0
1.1.24 Ensure noexec option set on removable media partitionsUnixCIS Distribution Independent Linux Workstation L1 v1.1.0
1.2.3.9 Set 'Choose the boot-start drivers that can be initialized:' to 'Enabled:Good, unknown and bad but critical'WindowsCIS Windows 8 L1 v1.0.0
1.18 Ensure 'Scan device for security threats' is set to 'Enabled'MDMAirWatch - CIS Google Android v1.3.0 L1
1.18 Ensure 'Scan device for security threats' is set to 'Enabled'MDMMobileIron - CIS Google Android v1.3.0 L1
1.18 Ensure 'Scan device for security threats' is set to EnabledMDMMobileIron - CIS Google Android v1.2.0 L1
1.18 Ensure 'Scan device for security threats' is set to EnabledMDMAirWatch - CIS Google Android v1.2.0 L1
1.19 Ensure 'Improve harmful app detection' is set to 'Enabled'MDMAirWatch - CIS Google Android v1.3.0 L1
1.19 Ensure 'Improve harmful app detection' is set to 'Enabled'MDMMobileIron - CIS Google Android v1.3.0 L1
1.19 Ensure 'Improve harmful app detection' is set to EnabledMDMAirWatch - CIS Google Android v1.2.0 L1
1.19 Ensure 'Improve harmful app detection' is set to EnabledMDMMobileIron - CIS Google Android v1.2.0 L1
18.3.9 (L1) Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 1607) v1.2.0 Level 1 Bitlocker
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 MS L1 v1.3.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Windows Server 2012 MS L1 v2.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Windows Server 2012 R2 DC L1 v2.5.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 DC L1 v1.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 DC L1 v1.3.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2008 Member Server Level 1 v3.1.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Windows Server 2012 MS L1 v2.1.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Windows Server 2012 R2 MS L1 v2.4.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Windows Server 2012 R2 MS L1 v2.5.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Windows Server 2012 DC L1 v2.1.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.1.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.1.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 MS L1 v1.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Windows Server 2012 DC L1 v2.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2008 Member Server Level 1 v3.2.0