CIS Benchmarks February 2023 Update
The following CIS Benchmarks have been updated or recently released. We've highlighted the major updates below. Each Benchmark includes a full changelog that references all changes.
New CIS GitHub Benchmark v1.0.0
We are pleased to announce the publication of the new CIS GitHub Benchmark v1.0.0! Highlights include support for:
- GitHub v3
- Source code
- Build pipelines
- Artifacts and packages
- Software dependencies
- Deployments
Special thanks go to author Resheet Kosef and the contributing team from Aqua Security.
CIS SecureSuite Members can visit CIS WorkBench here to download other formats and related resources.
New CIS pfSense Firewall Benchmark v1.0.0
We are pleased to announce the release of the new CIS pfSense Firewall Benchmark v1.0.0!
Special thanks go to Touhid Shaikh and Daniel Brown. Without your hard work and communication, this release would not have been possible.
Download the CIS pfSense Firewall Benchmark in PDF.
CIS SecureSuite Members can visit CIS WorkBench here to download other formats and related resources.
New CIS Microsoft Intune for Windows 11 Benchmark v1.0.0
This Benchmark provides prescriptive guidance for establishing a secure configuration posture for Microsoft Windows 11 running via Intune (Endpoint Manager).
Download the CIS Microsoft Intune for Windows Benchmark in PDF.
CIS SecureSuite Members can visit CIS WorkBench here to download other formats and related resources.
New CIS Azure Compute Microsoft Windows Server 2022 Benchmark v1.0.0
This Benchmark provides prescriptive guidance for establishing a secure configuration posture for Microsoft Windows Server 2022 running in Azure.
Special thanks go to Rick Munck, Kolbe Stevenson, and Guruprasad Venkatesha from Microsoft.
Download the CIS Microsoft Windows Server Benchmark in PDF.
CIS SecureSuite Members can visit CIS WorkBench here to download other formats and related resources.
Updated CIS Docker Benchmark v1.5.0
Highlights of this release include:
- Coverage for Docker version 20.10.16
- Updates and improvements made to various recommendations
Thanks to the entire CIS Docker community for your contributions to this Benchmark update. Special thanks go to Joseph Russo!
Download the CIS Docker Benchmark in PDF.
CIS SecureSuite Members can visit CIS WorkBench here to download other formats and related resources.
Updated CIS Amazon Elastic Kubernetes Service (EKS) Benchmark v1.2.0
Highlights of this release include:
- Support for Kubernetes Engine v1.24
- Improved remediations for control plane endpoint recommendations
- Updated recommendations to address new defaults and hardened configurations
Special thanks go to Daniel Burns, Paavan Mistry, Nick Gibbon, Joe Bowbeer, and James Stocks.
Download the CIS Kubernetes Benchmark in PDF.
CIS SecureSuite Members can visit CIS WorkBench here to download other formats and related resources.
Updated CIS Oracle Cloud Infrastructure for Kubernetes (OKE) Benchmark v1.2.0
Highlights of this release include:
- Support for Kubernetes Engine v1.24
- Improved audit commands
- Updated recommendation for auditing RBAC and Pod Security
Special thanks go to contributors Mark Larinde, Logan Kleier, and Josh Hammer.
Download the CIS Kubernetes Benchmark in PDF.
CIS SecureSuite Members can visit CIS WorkBench here to download other formats and related resources.
Get involved by helping us develop content, review recommendations, and test CIS Benchmarks. Join a community today! We're looking for contributors for the following technologies:
- Cisco (preferred focus on NX-OS, ACI, ASA, iOS, Meraki, Firepower)
- Fortinet (preferred focus on FortiGate)
- F5 Networks
- Juniper Networks (preferred focus on Junos OS)
- MariaDB
- Microsoft SQL Server
- Oracle Solaris
- Palo Alto Networks
- VMware (preferred with EXSI expertise)
If you're interested, please reach out to us at [email protected]. You can also learn more on the CIS Benchmarks Community page.
