Skip to content

Tags#

Following is a list of relevant tags:

10.3 Disable Autorun and Autoplay for Removable Media#

10.5 Enable Anti-Exploitation Features#

3.10 Encrypt Sensitive Data in Transit#

3.11 Encrypt Sensitive Data at Rest#

3.14 Log Sensitive Data Access#

3.3 Configure Data Access Control Lists#

4.1 Establish and Maintain a Secure Configuration Process#

4.3 Configure Automatic Session Locking on Enterprise Assets#

4.4 Implement and Manage a Firewall on Servers#

4.5 Implement and Manage a Firewall on End-User Devices#

4.8 Uninstall or Disable Unnecessary Services on Enterprise Assets and Software#

5.2 Use Unique Passwords#

5.4 Restrict Administrator Privileges to Dedicated Administrator Accounts#

6.2 Establish an Access Revoking Process#

7.3 Perform Automated Operating System Patch Management#

7.4 Perform Automated Application Patch Management#

8.2 Collect Audit Logs#

8.3 Ensure Adequate Audit Log Storage#

8.4 Standardize Time Synchronization#

8.5 Collect Detailed Audit Logs#

8.9 Centralize Audit Logs#

Access Control#

Automated#

Confgure PAM Arguments#

Configure /dev/shm#

Configure /home#

Configure /tmp#

Configure /var#

Configure /var/log#

Configure /var/log/audit#

Configure /var/tmp#

Configure Additional Process Hardening#

Configure AppArmor#

Configure Bootloader#

Configure Client Services#

Configure Command Line Warning Banners#

Configure Data Retention#

Configure Filesystem Kernel Modules#

Configure GNOME Display Manager#

Configure IPv4 iptables#

Configure IPv6 ip6tables#

Configure Integrity Checking#

Configure Logfiles#

Configure Network Devices#

Configure Network Kernel Modules#

Configure Network Kernel Parameters#

Configure PAM Arguments#

Configure PAM software packages#

Configure SSH Server#

Configure Server Services#

Configure Shadow Password Suite Parameters#

Configure System Accounting (auditd)#

Configure Time Synchronization#

Configure UncomplicatedFirewall#

Configure a single firewall utility#

Configure at#

Configure auditd Service#

Configure auditd file access#

Configure auditd rules#

Configure chrony#

Configure cron#

Configure filesystem partitions#

Configure iptables#

Configure iptables software#

Configure journald#

Configure nftables#

Configure package repositories#

Configure package updates#

Configure pam-auth-update profiles#

Configure pam_faillock module#

Configure pam_pwhistory module#

Configure pam_pwquality module#

Configure pam_unix module#

Configure privilege escalation#

Configure root and system accounts and environment#

Configure rsyslog#

Configure systemd-journald service#

Configure systemd-journald-remote#

Configure systemd-timesyncd#

Configure user default environment#

Ensure time synchronization is in use#

Filesystem#

Filesystem Integrity Checking#

Firewall Configuration#

Host Based Firewall#

IG1#

IG2#

IG3#

Initial Setup#

Job Schedulers#

Job Shedulers#

Level 1#

Level 2#

Local User and Group Settings#

Logging and Auditing#

M1001#

M1012#

M1018#

M1022#

M1026#

M1027#

M1028#

M1029#

M1030#

M1031#

M1033#

M1034#

M1035#

M1036#

M1037#

M1038#

M1040#

M1041#

M1042#

M1046#

M1047#

M1048#

M1050#

M1051#

M1053#

M1057#

MA1027#

Mandatory Access Control#

Manual#

Network#

Network Configuration#

Network Parameters (Host and Router)#

Nothing should be returned#

Package Management#

Pluggable Authentication Modules#

Secure Boot Settings#

Server#

Services#

System Auditing#

System File Permissions#

System Logging#

System Maintenance#

T083#

T1003#

T1003.008#

T1005#

T1011#

T1018#

T1021#

T1021.004#

T1036#

T1036.002#

T1036.003#

T1036.004#

T1036.005#

T1039#

T1040#

T1052#

T1052.001#

T1053#

T1053.003#

T1055#

T1055.008#

T1056#

T1056.001#

T1068#

T1070#

T1070.002#

T1078#

T1078.001#

T1078.002#

T1078.003#

T1078.004#

T1082#

T1083#

T1087#

T1087.001#

T1087.002#

T1091#

T1098#

T1098.004#

T1105#

T1110#

T1110.001#

T1110.002#

T1110.003#

T1110.004#

T1135#

T1152#

T1152.003#

T1152.004#

T1178.001#

T1178.002#

T1178.003#

T1178.004#

T1195#

T1195.001#

T1195.002#

T1200#

T1203#

T1204#

T1204.002#

T1204.02#

T1210#

T1211#

T1212#

T1222#

T1222.001#

T1222.002#

T1456#

T1461#

T1497#

T1498#

T1498.001#

T1498.002#

T1499#

T1499.001#

T1499.002#

T1542#

T1543#

T1543.002#

T1548#

T1548.001#

T1548.003#

T1552#

T1552.004#

T1557#

T1562#

T1562.001#

T1562.004#

T1562.006#

T1565#

T1565.001#

T1565.003#

T1570#

T1590#

T1590.005#

T1592#

T1592.004#

T1595#

T1595.001#

T1595.002#

TA0001#

TA0002#

TA0003#

TA0004#

TA0005#

TA0006#

TA0007#

TA0008#

TA0009#

TA0010#

TA0011#

TA0027#

TA0040#

User Accounts and Environment#

Workstation#