Detections
Analytics

CSCv7|3.2

Title

Perform Authenticated Vulnerability Scanning

Description

Perform authenticated vulnerability scanning with agents running locally on each system or with remote scanners that are configured with elevated rights on the system being tested.

Reference Item Details

Category: Continuous Vulnerability Management

Audit Items

View all Reference Audit Items

NamePluginAudit Name
5.1.1 Ensure Image Vulnerability Scanning is enabledGCPCIS Google Kubernetes Engine (GKE) Autopilot v1.1.0 L2
5.1.1 Ensure Image Vulnerability Scanning is enabledGCPCIS Google Kubernetes Engine (GKE) v1.7.0 L2
5.1.3 Minimize cluster access to read-only for Container Image repositoriesGCPCIS Google Kubernetes Engine (GKE) v1.7.0 L2
5.1.3 Minimize cluster access to read-only for Container Image repositoriesGCPCIS Google Kubernetes Engine (GKE) Autopilot v1.1.0 L2
6.22 Ensure that 'Inline Cloud Analysis' on Vulnerability Protection profiles are enabled if 'Advanced Threat Prevention' is availablePalo_AltoCIS Palo Alto Firewall 10 v1.2.0 L1
6.22 Ensure that 'Inline Cloud Analysis' on Vulnerability Protection profiles are enabled if 'Advanced Threat Prevention' is availablePalo_AltoCIS Palo Alto Firewall 11 v1.1.0 L1
20.14 Ensure 'Automated mechanisms must be employed to determine the state of system components...'WindowsCIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC
20.14 Ensure 'Automated mechanisms must be employed to determine the state of system components...'WindowsCIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS
20.14 Ensure 'Automated mechanisms must be employed to determine the state of system components'WindowsCIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC
20.14 Ensure 'Automated mechanisms must be employed to determine the state of system components'WindowsCIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS