API → UI component mappings · 90,813 documents
| ID | Document | Source |
|---|---|---|
| 6c1a06774479ef24 | SCA Check 19181: Ensure successful and unsuccessful attempts to use the chcon command are recorded. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| f17488860c97048a | SCA Check 19182: Ensure successful and unsuccessful attempts to use the setfacl command are recorded. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 67dd35a26ba32f6d | SCA Check 19183: Ensure successful and unsuccessful attempts to use the chacl command are recorded. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| b244ab70467b2693 | SCA Check 19184: Ensure successful and unsuccessful attempts to use the usermod command are recorded. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 84586c93c7fd1487 | SCA Check 19185: Ensure kernel module loading unloading and modification is collected. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 2b28a2fd1436af83 | SCA Check 19186: Ensure the audit configuration is immutable. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| ae77ed66ef466677 | SCA Check 19187: Ensure the running and on disk configuration is the same. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques: ['T1562', 'T1070',… | wazuh-sca |
| 634590e1e288a536 | SCA Check 19188: Ensure only authorized groups are assigned ownership of audit log files. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005',… | wazuh-sca |
| b16bdcba44180652 | SCA Check 19189: Ensure audit configuration files are 640 or more restrictive. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025',… | wazuh-sca |
| 31d1af863e8c886b | SCA Check 19190: Ensure audit configuration files are owned by root. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| b82f3f5857db8b53 | SCA Check 19191: Ensure audit configuration files belong to group root. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041',… | wazuh-sca |
| c481435b1ef3bd17 | SCA Check 19192: Ensure audit tools are 755 or more restrictive. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| 5e10e3305aee1b6f | SCA Check 19193: Ensure audit tools are owned by root. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567', 'T1573']… | wazuh-sca |
| 59254488aae0e2f0 | SCA Check 19194: Ensure audit tools belong to group root. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567', 'T1573']… | wazuh-sca |
| 5c65572202d0da23 | SCA Check 19195: Ensure cryptographic mechanisms are used to protect the integrity of audit tools. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| 56a9ad747592eaeb | SCA Check 19196: Ensure permissions on /etc/passwd are configured. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| 050597a5ad0cd56e | SCA Check 19197: Ensure permissions on /etc/passwd- are configured. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| fcb5c85261897809 | SCA Check 19198: Ensure permissions on /etc/group are configured. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| dbe4a5d90aed662b | SCA Check 19199: Ensure permissions on /etc/group- are configured. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| 586e646347156534 | SCA Check 19200: Ensure permissions on /etc/shadow are configured. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| c08bc83d02410fb4 | SCA Check 19201: Ensure permissions on /etc/shadow- are configured. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| 357ae7e2db49c869 | SCA Check 19202: Ensure permissions on /etc/gshadow are configured. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| b6cfdedf870fe880 | SCA Check 19203: Ensure permissions on /etc/gshadow- are configured. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| 19e0b59336e72907 | SCA Check 19204: Ensure permissions on /etc/shells are configured. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| 3987c5ba504bbbd8 | SCA Check 19205: Ensure permissions on /etc/opasswd are configured. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| 14c5296c5753b3f0 | SCA Check 19206: Ensure accounts in /etc/passwd use shadowed passwords. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041',… | wazuh-sca |
| 8a43ace900cf5c7e | SCA Check 19207: Ensure /etc/shadow password fields are not empty. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078', 'T1098', 'T1110', 'T1136',… | wazuh-sca |
| ea788ecb861d6de7 | SCA Check 19208: Ensure shadow group is empty. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567', 'T1573'] The shadow… | wazuh-sca |
| df7de26a0336a01b | SCA Check 19209: Ensure root is the only UID 0 account. Policy: CIS Ubuntu Linux 20.04 LTS Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Any account with UID 0 has… | wazuh-sca |
| 60792f1e20b16448 | SCA Check 34500: Ensure 'Enforce password history' is set to '24 or more password(s)'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0006', 'TA0003'] Techniques:… | wazuh-sca |
| d17ab0ebeeb0d485 | SCA Check 34501: Ensure 'Maximum password age' is set to '365 or fewer days, but not 0'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0006', 'TA0003'] Techniques:… | wazuh-sca |
| 43ef9196446e52bc | SCA Check 34502: Ensure 'Minimum password age' is set to '1 or more day(s)'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078',… | wazuh-sca |
| 9aa7e094d46a359c | SCA Check 34503: Ensure 'Minimum password length' is set to '14 or more character(s)'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0006', 'TA0003'] Techniques:… | wazuh-sca |
| 35fb3d1dd50bb629 | SCA Check 34504: Ensure 'Store passwords using reversible encryption' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0009', 'TA0010']… | wazuh-sca |
| 9d18b0f4c5b0d355 | SCA Check 34505: Ensure 'Account lockout duration' is set to '15 or more minute(s)'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0006', 'TA0003'] Techniques:… | wazuh-sca |
| a926d24e1ac00da6 | SCA Check 34506: Ensure 'Account lockout threshold' is set to '5 or fewer invalid logon attempt(s), but not 0'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics:… | wazuh-sca |
| 327d985c9b2d1d5f | SCA Check 34507: Ensure 'Reset account lockout counter after' is set to '15 or more minute(s)'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0006', 'TA0003']… | wazuh-sca |
| 247f2f8f6d2517d9 | SCA Check 34508: Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0.… | wazuh-sca |
| 8904468560f2f65e | SCA Check 34509: Ensure 'Accounts: Guest account status' is set to 'Disabled' (MS only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005'] Techniques: ['T1036',… | wazuh-sca |
| 9c515c97d9b0da46 | SCA Check 34510: Ensure 'Accounts: Limit local account use of blank passwords to console logon only' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics:… | wazuh-sca |
| eca977247cff1075 | SCA Check 34511: Configure 'Accounts: Rename administrator account'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The… | wazuh-sca |
| 1631f67ebe206175 | SCA Check 34512: Configure 'Accounts: Rename guest account'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The built-in local… | wazuh-sca |
| 3f4969cda38e440f | SCA Check 34513: Ensure 'Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings' is set to 'Enabled'. Policy: CIS Microsoft Windows Server… | wazuh-sca |
| eb10f3720ce30940 | SCA Check 34514: Ensure 'Audit: Shut down system immediately if unable to log security audits' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics:… | wazuh-sca |
| 90db169e59a3086d | SCA Check 34515: Ensure 'Devices: Allowed to format and eject removable media' is set to 'Administrators'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0009',… | wazuh-sca |
| e643cc933d0107e6 | SCA Check 34516: Ensure 'Devices: Prevent users from installing printer drivers' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0007']… | wazuh-sca |
| 0cfa6958b1d507ff | SCA Check 34517: Ensure 'Domain controller: Allow server operators to schedule tasks' is set to 'Disabled' (DC only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics:… | wazuh-sca |
| cde3276405315d81 | SCA Check 34518: Ensure 'Domain controller: Allow vulnerable Netlogon secure channel connections' is set to 'Not Configured' (DC Only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark… | wazuh-sca |
| 021eb7642807a875 | SCA Check 34519: Ensure 'Domain controller: LDAP server channel binding token requirements' is set to 'Always' (DC Only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics:… | wazuh-sca |
| fc7798f636bd954f | SCA Check 34520: Ensure 'Domain controller: LDAP server signing requirements' is set to 'Require signing' (DC only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics:… | wazuh-sca |