CSCv6|8

Title

Malware Defenses

Description

Malware Defenses

Reference Item Details

Reference: CIS Critical Security Controls v6

Category: Malware Defenses

Family: System

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
1.1.3.6.8 Set 'Interactive logon: Do not require CTRL+ALT+DEL' to 'Disabled'	Windows	CIS Windows 8 L1 v1.0.0
1.1.19 Ensure noexec option set on removable media partitions	Unix	CIS Debian 8 Workstation L1 v2.0.2
1.1.19 Ensure noexec option set on removable media partitions	Unix	CIS Debian 8 Workstation L1 v2.0.1
1.1.19 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 16.04 LTS Workstation L1 v1.1.0
1.1.19 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0
1.1.19 Ensure noexec option set on removable media partitions	Unix	CIS Debian 8 Server L1 v2.0.2
1.1.19 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 16.04 LTS Server L1 v1.1.0
1.1.19 Ensure noexec option set on removable media partitions	Unix	CIS Debian 8 Server L1 v2.0.1
1.1.19 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0
1.1.20 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0
1.1.20 Ensure noexec option set on removable media partitions	Unix	CIS Distribution Independent Linux Server L1 v2.0.0
1.1.20 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 18.04 LXD Host L1 Server v1.0.0
1.1.20 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 18.04 LTS Server L1 v2.0.1
1.1.20 Ensure noexec option set on removable media partitions	Unix	CIS Distribution Independent Linux Workstation L1 v2.0.0
1.1.20 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 18.04 LTS Workstation L1 v2.0.1
1.1.21 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 18.04 LTS Server L1 v2.1.0
1.1.21 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 20.04 LTS Server L1 v1.1.0
1.1.21 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 18.04 LTS Workstation L1 v2.1.0
1.1.21 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 20.04 LTS Workstation L1 v1.1.0
1.1.21 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 20.04 LTS Server L1 v1.0.0
1.1.21 Ensure noexec option set on removable media partitions	Unix	CIS Ubuntu Linux 20.04 LTS Workstation L1 v1.0.0
1.1.24 Ensure noexec option set on removable media partitions	Unix	CIS Distribution Independent Linux Server L1 v1.1.0
1.1.24 Ensure noexec option set on removable media partitions	Unix	CIS Distribution Independent Linux Workstation L1 v1.1.0
1.2.3.9 Set 'Choose the boot-start drivers that can be initialized:' to 'Enabled:Good, unknown and bad but critical'	Windows	CIS Windows 8 L1 v1.0.0
1.18 Ensure 'Scan device for security threats' is set to 'Enabled'	MDM	AirWatch - CIS Google Android v1.3.0 L1
1.18 Ensure 'Scan device for security threats' is set to 'Enabled'	MDM	MobileIron - CIS Google Android v1.3.0 L1
1.18 Ensure 'Scan device for security threats' is set to Enabled	MDM	MobileIron - CIS Google Android v1.2.0 L1
1.18 Ensure 'Scan device for security threats' is set to Enabled	MDM	AirWatch - CIS Google Android v1.2.0 L1
1.19 Ensure 'Improve harmful app detection' is set to 'Enabled'	MDM	MobileIron - CIS Google Android v1.3.0 L1
1.19 Ensure 'Improve harmful app detection' is set to 'Enabled'	MDM	AirWatch - CIS Google Android v1.3.0 L1
1.19 Ensure 'Improve harmful app detection' is set to Enabled	MDM	AirWatch - CIS Google Android v1.2.0 L1
1.19 Ensure 'Improve harmful app detection' is set to Enabled	MDM	MobileIron - CIS Google Android v1.2.0 L1
18.3.9 (L1) Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows 10 Enterprise (Release 1607) v1.2.0 Level 1 Bitlocker
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Windows Server 2012 R2 DC L1 v2.5.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2016 DC L1 v1.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2016 DC L1 v1.3.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2016 MS L1 v1.3.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Windows Server 2012 MS L1 v2.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.1.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Windows Server 2012 DC L1 v2.1.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.1.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Windows Server 2012 MS L1 v2.1.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Windows Server 2012 R2 MS L1 v2.4.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Windows Server 2012 R2 MS L1 v2.5.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.1.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Windows Server 2012 DC L1 v2.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.2.0
18.4.8 Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2016 MS L1 v1.2.0

Detections

Analytics

CSCv6|8

Title

Description

Reference Item Details

Audit Items