CIS Benchmarks October 2021 Update
The following CIS Benchmark updates have been released. We’ve highlighted the major updates below. Each Benchmark includes a full changelog that can be referenced to see all changes made.
CIS SUSE Linux Enterprise 15 Benchmark v1.1.0
- Refined checks to support issue-generator service on SUSE 15
- Refined AAC for SUSE implementation of nftables
- Changes to the review of auditctl output for audit rules checks
Thanks to the CIS SUSE Community for their support and special thanks to: David Spake for bringing the issue-generator additions to our attention and suggestions on refining the recommendations for reviewing auditctl outputs.
Download the SUSE Enterprise 15 PDF
CIS SecureSuite Members can visit CIS WorkBench to download other formats and related resources.
CIS Amazon Linux 2 Benchmark v2.0.0
Prescriptive guidance for establishing a secure configuration posture for Amazon Linux 2 systems running on AWS. This document was tested against Amazon Linux 2. The guidance broadly assumes that operations are being performed as the root user. Operations performed using sudo instead of the root user may produce unexpected results, or fail to make the intended changes to the system. Non-root users may not be able to access certain areas of the system, especially after remediation has been performed. It is advisable to verify root users path integrity and the integrity of any programs being run prior to execution of commands and scripts included in this Benchmark.
Thanks to the CIS Amazon Linux Community for their support.
Download the Amazon Linux 2 PDF
CIS SecureSuite Members can visit CIS WorkBench to download other formats and related resources.
CIS VMware ESXi 6.7 Benchmark v1.2.0
Prescriptive guidance for establishing a secure configuration posture for VMware ESXi 6.7. This guide was tested against VMware ESXi 6.7.
Major items in this release include the following:
- Removal of deprecated settings
- Addition of CIS Controls v8 mappings
- Addition of MITRE ATT&CK mappings
Thanks to the CIS VMWare Community for their support.
Download the VMware ESXi 6.7 PDF
CIS SecureSuite Members can visit CIS WorkBench to download other formats and related resources.
CIS Microsoft Windows Server 2012 R2 Benchmark v2.5.0
Prescriptive guidance for establishing a secure configuration posture for Microsoft Windows Server 2012 R2.
Major items in this release include the following:
- Added 8 new security settings
- Moved several sections due to updated ADMX templates
- Removed 2 outdated settings
- Updated 3 settings
A huge thank you to the Windows Community and Windows Team for making this happen and special thanks to Haemish Edgerton
Download the Microsoft Windows Server 2012 R2 PDF
CIS SecureSuite Members can visit CIS WorkBench to download other formats and related resources.
CIS Microsoft Windows Server 2012 (non-R2) Benchmark v2.3.0
Prescriptive guidance for establishing a secure configuration posture for Microsoft Windows Server 2012 (non-R2).
Major items in this release include the following:
- Added 9 new security settings
- Moved several sections due to updated ADMX templates
- Removed 1 outdated setting
- Updated 3 settings
A huge thank you to the Windows Community and Windows Team for making this happen and special thanks to Haemish Edgerton.
Download the Microsoft Windows Server 2012 (non-R2) PDF
CIS SecureSuite Members can visit CIS WorkBench to download other formats and related resources.
Volunteers Needed for CIS Benchmarks
Get involved by helping us develop content, review recommendations, and test CIS Benchmarks. Join a community today! We’re looking for contributors for the following technologies:
-
- MongoDB
- IBM AIX
- F5
- Fortinet
- Microsoft Windows
- Cisco
Interested in learning more about the CIS Benchmarks development process or how you can get involved? Reach out to us at [email protected]. You can also learn more on the CIS Benchmarks Community page.
