API → UI component mappings · 90,813 documents
| ID | Document | Source |
|---|---|---|
| 7bfa95d896d7ee79 | SCA Check 13000: Ensure 'Ad Hoc Distributed Queries' Server Configuration Option is set to '0' Policy: CIS Microsoft SQL Server 2016 Benchmark v1.3.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| ef520e97f32cd171 | SCA Check 13500: Ensure 'Ad Hoc Distributed Queries' Server Configuration Option is set to '0' Policy: CIS Microsoft SQL Server 2019 Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| dfd3279f0c7b70ff | SCA Check 11000: Disable MySQL Command History Policy: CIS Oracle MySQL Enterprise Edition 5.6 Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] On Linux/UNIX, the MySQL… | wazuh-sca |
| 5d9a52f4f729427e | SCA Check 14000: PHP - Ensure 'Register globals' are not enabled Policy: System audit for web-related vulnerabilities Tactics: [] Techniques: [] | wazuh-sca |
| ce2cffa34dd93e9c | SCA Check 22000: Ensure web content is on non-system partition Policy: CIS Microsoft IIS 10 Benchmark v1.1.1 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Web resources published… | wazuh-sca |
| c3c4f9a2a8efb662 | SCA Check 12000: Ensure 'Ad Hoc Distributed Queries' Server Configuration Option is set to '0' Policy: CIS Microsoft SQL Server 2014 Benchmark v1.4.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| ffaa93da492d83a7 | SCA Check 11500: Ensure 'Ad Hoc Distributed Queries' Server Configuration Option is set to '0' Policy: CIS Microsoft SQL Server 2012 Benchmark v1.5.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| 7a3a384a3ada3d58 | SCA Check 24000: Ensure systemd Service Files Are Enabled Policy: CIS Benchmark for PostgreSQL 13 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Confirm, and correct if necessary, the… | wazuh-sca |
| af26db1bf8c442ba | SCA Check 10500: Disable MySQL Command History Policy: CIS Oracle MySQL Community Server 5.6 Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] On Linux/UNIX, the MySQL… | wazuh-sca |
| ae9a78566a96208d | SCA Check 10000: Ensure the WebDAV Modules Are Disabled Policy: CIS Apache HTTP Server 2.4 Benchmark v1.5.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The Apache mod_dav and… | wazuh-sca |
| 9314c6ff06595b32 | SCA Check 12500: Ensure 'Ad Hoc Distributed Queries' Server Configuration Option is set to '0' Policy: CIS Microsoft SQL Server 2017 Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| 79f6186a88baf8e1 | SCA Check 24500: Ensure 'extproc' Is Not Present in 'listener.ora'. Policy: CIS Benchmark for Oracle Database 19c v1.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] extproc should be… | wazuh-sca |
| 0071b8916597a5b3 | SCA Check 23000: Ensure HTTP WebDAV module is not installed Policy: CIS NGINX version 1.14.0 Benchmark v1.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The http_dav_module enables… | wazuh-sca |
| ebde6023f0169ca1 | SCA Check 22500: Ensure Authentication is configured. Policy: CIS MongoDB 3.6 Benchmark v1.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] This setting ensures that all clients,… | wazuh-sca |
| d030f771f3e4b738 | SCA Check 36000: Ensure mounting of cramfs filesystems is disabled. Policy: CIS Distribution Independent Linux Benchmark v2.0.0. Tactics: ['TA0005'] Techniques: ['T1110', 'T1003', 'T1072', 'T1495',… | wazuh-sca |
| 27ff7a1021a29eef | SCA Check 37000: Ensure /tmp is a separate partition. Policy: CIS Red Hat Enterprise Linux 10 Benchmark. Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The /tmp directory is a world-writable… | wazuh-sca |
| e38228df943ab3eb | SCA Check 4000: Ensure mounting of cramfs filesystems is disabled Policy: CIS Red Hat Enterprise Linux 6 Benchmark v2.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The cramfs… | wazuh-sca |
| dae094c825f6dcf0 | SCA Check 5000: Ensure mounting of cramfs filesystems is disabled. Policy: CIS Red Hat Enterprise Linux 8 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The cramfs filesystem… | wazuh-sca |
| d58aa3ed978ed828 | SCA Check 28000: Ensure /tmp is a separate partition. Policy: CIS Red Hat Enterprise Linux 9 Benchmark v1.0.0. Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The /tmp directory is a… | wazuh-sca |
| 166a3557501cfd3d | SCA Check 4500: Ensure mounting of cramfs filesystems is disabled. Policy: CIS Red Hat Enterprise Linux 7 Benchmark v3.1.1 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The cramfs filesystem… | wazuh-sca |
| a4534a8b885260ef | SCA Check 21000: Ensure mounting of squashfs filesystems is disabled. Policy: CIS SUSE Linux Enterprise 15 Benchmark v1.1.1 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The squashfs filesystem… | wazuh-sca |
| 7f3aa46d5ef65599 | SCA Check 40500: Ensure mounting of squashfs filesystems is disabled. Policy: CIS SUSE Linux Enterprise 16 Benchmark Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The squashfs filesystem type is… | wazuh-sca |
| a601f9ccdc5e05b1 | SCA Check 7500: Ensure separate partition exists for /tmp Policy: CIS SUSE Linux Enterprise 12 Benchmark v2.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The /tmp directory is a… | wazuh-sca |
| 48b2a0f58398b774 | SCA Check 37500: Ensure mounting of cramfs filesystems is disabled. Policy: CIS CentOS Linux 10 Benchmark Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The cramfs filesystem type is a compressed… | wazuh-sca |
| a4ba9577ee3bcc37 | SCA Check 5500: Ensure mounting of cramfs filesystems is disabled Policy: CIS CentOS Linux 6 Benchmark v2.0.2 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The cramfs filesystem type is… | wazuh-sca |
| 21768144706b00ca | SCA Check 6500: Ensure mounting of cramfs filesystems is disabled. Policy: CIS CentOS Linux 8 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The cramfs filesystem type is a… | wazuh-sca |
| 27d25e3d5fd158ad | SCA Check 39000: Ensure mounting of cramfs filesystems is disabled. Policy: CIS CentOS Linux 9 Benchmark Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The cramfs filesystem type is a compressed… | wazuh-sca |
| ecbd61476ccb1c4b | SCA Check 6000: Ensure mounting of cramfs filesystems is disabled. Policy: CIS CentOS Linux 7 Benchmark v3.1.2. Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The cramfs filesystem type is a… | wazuh-sca |
| 9f4a5c82e596b4fb | SCA Check 38500: Ensure /tmp is a separate partition. Policy: Center for Internet Security Oracle Linux 10. Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The /tmp directory is a world-writable… | wazuh-sca |
| b89852b83b4efd4c | SCA Check 33500: Ensure /tmp is a separate partition. Policy: Center for Internet Security Oracle Linux 9 Benchmark v1.0.0. Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The /tmp directory is a… | wazuh-sca |
| 8fd7845688b35587 | SCA Check 18001: Enable Auto Update. Policy: CIS Apple macOS 11.0 Big Sur Benchmark v2.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Auto Update verifies that your system has the… | wazuh-sca |
| a722eef3e0155504 | SCA Check 8501: Enable Auto Update Policy: CIS Apple macOS 10.11 Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Auto Update verifies that your system has the newest… | wazuh-sca |
| 111e423fbf209024 | SCA Check 35000: Ensure Auto Update Is Enabled. Policy: CIS_Apple_macOS_15.0_Sequoia_Benchmark_v1.0.0 Tactics: ['TA0043', 'TA0007'] Techniques: ['T1595', 'T1190', 'T1203'] Auto Update verifies that… | wazuh-sca |
| 990795b05c5b9e8d | SCA Check 29001: Ensure Auto Update Is Enabled. Policy: CIS Apple macOS 12.0 Monterey Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Auto Update verifies that your… | wazuh-sca |
| 8668d083eb8dcf53 | SCA Check 9501: Enable Auto Update Policy: CIS Apple macOS 10.13 Benchmark v1.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Auto Update verifies that your system has the newest… | wazuh-sca |
| 06192ffbb4c16400 | SCA Check 9001: Enable Auto Update Policy: CIS Apple macOS 10.12 Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Auto Update verifies that your system has the newest… | wazuh-sca |
| f6e0744bf7dfeae5 | SCA Check 30000: Ensure Auto Update Is Enabled. Policy: CIS_Apple_macOS_13.0_Ventura_Benchmark_v1.1.0 Tactics: ['TA0043', 'TA0007'] Techniques: ['T1595', 'T1190', 'T1203'] Auto Update verifies that… | wazuh-sca |
| c2ad8ceab9965735 | SCA Check 34001: Ensure Auto Update Is Enabled. Policy: CIS_Apple_macOS_14.0_Sonoma_Benchmark_v1.0.0 Tactics: ['TA0043', 'TA0007'] Techniques: ['T1595', 'T1190', 'T1203'] Auto Update verifies that… | wazuh-sca |
| 30d8c06ba44f0b9d | SCA Check 17501: Enable Auto Update Policy: CIS Apple macOS 10.15 Benchmark v1.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Auto Update verifies that your system has the newest… | wazuh-sca |
| 5697e12f964df5d7 | SCA Check 41000: Ensure Download New Updates When Available Is Enabled. Policy: CIS_Apple_macOS_26.0_Tahoe_Benchmark_v1.0.0 Tactics: ['TA0043', 'TA0007'] Techniques: ['T1595', 'T1190', 'T1203'] In… | wazuh-sca |
| a440570ea02e3c0b | SCA Check 17001: Enable Auto Update Policy: CIS Apple macOS 10.14 Benchmark v1.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] Auto Update verifies that your system has the newest… | wazuh-sca |
| 4414192639aaabb2 | VQL Plugin: Artifact Category: basic This is the special plugin which automatically runs other artifacts inline. The `Artifact` plugin is more similar to a module in e.g. Python, except it does not… | velociraptor-vql |
| 1e1c145b33ab06c9 | VQL Function: add_client_monitoring Category: server Adds a new artifact to the client monitoring table. | velociraptor-vql |
| 5586a3b417eabf1d | VQL Function: add_server_monitoring Category: server Adds a new artifact to the server monitoring table. | velociraptor-vql |
| 72b160160ea3b4fc | VQL Plugin: adx_upload Category: general Upload rows to Azure Data Explorer (ADX). | velociraptor-vql |
| f2c4dc263e0756e1 | VQL Function: alert Category: general Generate an alert message. ### See also - [log]({{< ref "/vql_reference/popular/log/" >}}): alerts and log messages are similar in concept and use the same… | velociraptor-vql |
| 16951e3a6f0a35ad | VQL Function: all Category: general Returns TRUE if all items are true. | velociraptor-vql |
| 6e1c90daf9f118e8 | VQL Function: amsi Category: windows AMSI is an interface on windows to scan a string for malware. This function submits the string to the AMSI system and receives a determination if it is malware. | velociraptor-vql |
| 839b04a90c075794 | VQL Function: any Category: general Returns TRUE if any items are true. | velociraptor-vql |
| 91f88816af39fd2d | VQL Function: array Category: general Create an array. This function is the array constructor. It can be used to build an array from a number of args (Note that since VQL always uses keyword args… | velociraptor-vql |