x
Limited Time Offer: Save up to 20% on a new CIS SecureSuite Membership | Learn more
×
Why CIS Solutions Join CIS Resources
CIS WorkBench Sign-in CIS WorkBench Sign In CIS Hardened Images CIS Hardened Images Support CIS Support


Why CIS

Who We Are

CIS is an independent, nonprofit organization with a mission to create confidence in the connected world



About Us Leadership Principles Testimonials

Solutions

secure your organization
Secure Your Organization


secure specific platforms
Secure Specific Platforms


cis securesuite CIS SecureSuite® Learn More      Apply Now  
u s state local tribal and territorial governments
U.S. State, Local, Tribal & Territorial Governments


View All Products & Services  

Join CIS

Get Involved

Join CIS as a member, partner, or volunteer - or explore our career opportunities



CIS SecureSuite® Membership Multi-State ISAC (MS-ISAC®) Elections Infrastructure ISAC (EI-ISAC®) CIS CyberMarket® Vendors CIS Communities Careers

Resources

resources
Resources


learn
Learn


filter by topic
Filter by Topic


View All Resources  
CIS Logo Show Search Expand Menu

CIS Benchmarks October 2021 Update

CIS-Benchmarks

The following CIS Benchmark updates have been released.  We've highlighted the major updates below. Each Benchmark includes a full changelog that can be referenced to see all changes made.

CIS SUSE Linux Enterprise 15 Benchmark v1.1.0

Prescriptive guidance for establishing a secure configuration posture for SUSE Linux Enterprise 15 systems running on x86 or x64 platforms. This document was tested against SUSE Linux Enterprise Server 15 SP3.
Major changes in this release:
  • Refined checks to support issue-generator service on SUSE 15
  • Refined AAC for SUSE implementation of nftables
  • Changes to the review of auditctl output for audit rules checks
Thanks to the CIS SUSE Community for their support and special thanks to: David Spake for bringing the issue-generator additions to our attention and suggestions on refining the recommendations for reviewing auditctl outputs.
Download the SUSE Enterprise 15 PDF
CIS SecureSuite Members can visit CIS WorkBench to download other formats and related resources.

CIS Amazon Linux 2 Benchmark v2.0.0

Prescriptive guidance for establishing a secure configuration posture for Amazon Linux 2 systems running on AWS. This document was tested against Amazon Linux 2. The guidance broadly assumes that operations are being performed as the root user. Operations performed using sudo instead of the root user may produce unexpected results, or fail to make the intended changes to the system. Non-root users may not be able to access certain areas of the system, especially after remediation has been performed. It is advisable to verify root users path integrity and the integrity of any programs being run prior to execution of commands and scripts included in this Benchmark.
Thanks to the CIS Amazon Linux Community for their support.
Download the Amazon Linux 2 PDF
CIS SecureSuite Members can visit CIS WorkBench to download other formats and related resources.

CIS VMware ESXi 6.7 Benchmark v1.2.0

Prescriptive guidance for establishing a secure configuration posture for VMware ESXi 6.7. This guide was tested against VMware ESXi 6.7.

Major items in this release include the following:

  • Removal of deprecated settings
  • Addition of CIS Controls v8 mappings
  • Addition of MITRE ATT&CK mappings
Thanks to the CIS VMWare Community for their support.
Download the VMware ESXi 6.7 PDF
CIS SecureSuite Members can visit CIS WorkBench to download other formats and related resources.

CIS Microsoft Windows Server 2012 R2 Benchmark v2.5.0

Prescriptive guidance for establishing a secure configuration posture for Microsoft Windows Server 2012 R2.
Major items in this release include the following:
  •  Added 8 new security settings
  • Moved several sections due to updated ADMX templates
  • Removed 2 outdated settings
  • Updated 3 settings

A huge thank you to the Windows Community and Windows Team for making this happen and special thanks to Haemish Edgerton.

CIS SecureSuite Members can visit CIS WorkBench to download other formats and related resources.

CIS Microsoft Windows Server 2012 (non-R2) Benchmark v2.3.0

Prescriptive guidance for establishing a secure configuration posture for Microsoft Windows Server 2012 (non-R2).
Major items in this release include the following:
  • Added 9 new security settings
  • Moved several sections due to updated ADMX templates
  • Removed 1 outdated setting
  • Updated 3 settings
A huge thank you to the Windows Community and Windows Team for making this happen and special thanks to Haemish Edgerton.
CIS SecureSuite Members can visit CIS WorkBench to download other formats and related resources.

Volunteers Needed for CIS Benchmarks

CIS_Benchmarks_Community

Get involved by helping us develop content, review recommendations, and test CIS Benchmarks. Join a community today! We're looking for contributors for the following technologies:

    • MongoDB
    • IBM AIX
    • F5
    • Fortinet
    • Microsoft Windows
    • Cisco

Interested in learning more about the CIS Benchmarks development process or how you can get involved? Reach out to us at benchmarkinfo@cisecurity.org. You can also learn more on the CIS Benchmarks Community page.