277 lines
15 KiB
Plaintext
277 lines
15 KiB
Plaintext
cloud/azure/accesscontrol/azure-custom-admin-role-unrestricted.yaml
|
|
cloud/azure/accesscontrol/azure-custom-owner-role-unrestricted.yaml
|
|
cloud/azure/accesscontrol/azure-iam-role-resource-lock-unassigned.yaml
|
|
cloud/azure/activedirectory/azure-entra-id-guest-users-unmonitored.yaml
|
|
cloud/azure/activedirectory/azure-mfa-not-enabled-privileged-users.yaml
|
|
cloud/azure/activitylog/azure-db-mysql-delete-unalerted.yaml
|
|
cloud/azure/activitylog/azure-delete-lb-alert-unconfigured.yaml
|
|
cloud/azure/activitylog/azure-key-vault-delete-unalerted.yaml
|
|
cloud/azure/activitylog/azure-keyvault-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-lb-create-update-missing.yaml
|
|
cloud/azure/activitylog/azure-mysql-db-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-nsg-create-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-nsg-delete-unalerted.yaml
|
|
cloud/azure/activitylog/azure-nsg-rule-delete-unalerted.yaml
|
|
cloud/azure/activitylog/azure-nsg-rule-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-policy-assignment-create-alert-missing.yaml
|
|
cloud/azure/activitylog/azure-policy-assignment-delete-unalerted.yaml
|
|
cloud/azure/activitylog/azure-postgresql-db-delete-unalerted.yaml
|
|
cloud/azure/activitylog/azure-postgresql-db-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-public-ip-delete-unalerted.yaml
|
|
cloud/azure/activitylog/azure-public-ip-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-security-policy-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-security-solution-delete-unalerted.yaml
|
|
cloud/azure/activitylog/azure-security-solutions-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-sql-database-rename-unalerted.yaml
|
|
cloud/azure/activitylog/azure-sql-db-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-sql-delete-db-unalerted.yaml
|
|
cloud/azure/activitylog/azure-sql-fw-rule-unalerted.yaml
|
|
cloud/azure/activitylog/azure-storage-account-delete-unalerted.yaml
|
|
cloud/azure/activitylog/azure-storage-account-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-vm-create-update-unalerted.yaml
|
|
cloud/azure/activitylog/azure-vm-deallocate-unalerted.yaml
|
|
cloud/azure/activitylog/azure-vm-delete-unalerted.yaml
|
|
cloud/azure/activitylog/azure-vm-poweroff-unalerted.yaml
|
|
cloud/azure/aiservices/azure-openai-cmk-not-enabled.yaml
|
|
cloud/azure/aiservices/azure-openai-managed-identity-not-used.yaml
|
|
cloud/azure/aiservices/azure-openai-private-endpoints-unconfigured.yaml
|
|
cloud/azure/aiservices/azure-openai-public-access-disabled.yaml
|
|
cloud/azure/aks/azure-aks-api-unrestricted.yaml
|
|
cloud/azure/aks/azure-aks-api-version-not-latest.yaml
|
|
cloud/azure/aks/azure-aks-cni-not-configured.yaml
|
|
cloud/azure/aks/azure-aks-entra-id-unintegrated.yaml
|
|
cloud/azure/aks/azure-aks-kubernetes-version-outdated.yaml
|
|
cloud/azure/aks/azure-aks-managed-identity-unassigned.yaml
|
|
cloud/azure/aks/azure-aks-network-contrib-unassigned.yaml
|
|
cloud/azure/aks/azure-aks-not-user-assigned.yaml
|
|
cloud/azure/aks/azure-aks-rbac-unconfigured.yaml
|
|
cloud/azure/aks/azure-aks-use-private-kv.yaml
|
|
cloud/azure/apimanagement/azure-apim-http2-not-enabled.yaml
|
|
cloud/azure/apimanagement/azure-apim-https-enforcement-missing.yaml
|
|
cloud/azure/apimanagement/azure-apim-nv-plaintext-exposure.yaml
|
|
cloud/azure/apimanagement/azure-apim-public-access-disabled.yaml
|
|
cloud/azure/apimanagement/azure-apim-resource-logs-not-configured.yaml
|
|
cloud/azure/apimanagement/azure-apim-system-assigned-identity-unconfigured.yaml
|
|
cloud/azure/apimanagement/azure-apim-tls-config-weak.yaml
|
|
cloud/azure/apimanagement/azure-apim-user-assigned-id-not-used.yaml
|
|
cloud/azure/appservice/azure-appservice-always-on-disabled.yaml
|
|
cloud/azure/appservice/azure-appservice-auth-disabled.yaml
|
|
cloud/azure/appservice/azure-appservice-backup-not-enabled.yaml
|
|
cloud/azure/appservice/azure-appservice-backup-retention-missing.yaml
|
|
cloud/azure/appservice/azure-appservice-client-cert-disabled.yaml
|
|
cloud/azure/appservice/azure-appservice-entra-id-missing.yaml
|
|
cloud/azure/appservice/azure-appservice-ftp-deployment-disabled.yaml
|
|
cloud/azure/appservice/azure-appservice-ftps-only-not-enabled.yaml
|
|
cloud/azure/appservice/azure-appservice-http2-not-enabled.yaml
|
|
cloud/azure/appservice/azure-appservice-https-only-not-enforced.yaml
|
|
cloud/azure/appservice/azure-appservice-insights-not-enabled.yaml
|
|
cloud/azure/appservice/azure-appservice-remote-debugging-enabled.yaml
|
|
cloud/azure/appservice/azure-appservice-tls-latest-version-missing.yaml
|
|
cloud/azure/azure-env.yaml
|
|
cloud/azure/cosmosdb/azure-cosmosdb-auto-failover-missing.yaml
|
|
cloud/azure/cosmosdb/azure-cosmosdb-default-network-access-unrestricted.yaml
|
|
cloud/azure/functions/azure-functionapp-access-keys-missing.yaml
|
|
cloud/azure/functions/azure-functionapp-admin-privileges.yaml
|
|
cloud/azure/functions/azure-functionapp-appinsights-missing.yaml
|
|
cloud/azure/functions/azure-functionapp-public-exposure.yaml
|
|
cloud/azure/functions/azure-functionapp-system-assigned-missing.yaml
|
|
cloud/azure/functions/azure-functionapp-user-assigned-id-missing.yaml
|
|
cloud/azure/functions/azure-functionapp-vnet-integration-missing.yaml
|
|
cloud/azure/keyvault/azure-app-tier-cmk-untagged.yaml
|
|
cloud/azure/keyvault/azure-database-tier-cmk-absent.yaml
|
|
cloud/azure/keyvault/azure-keyvault-audit-not-enabled.yaml
|
|
cloud/azure/keyvault/azure-keyvault-cert-keytype-unapproved.yaml
|
|
cloud/azure/keyvault/azure-keyvault-cert-transparency-missing.yaml
|
|
cloud/azure/keyvault/azure-keyvault-certificate-insufficient-autorenew.yaml
|
|
cloud/azure/keyvault/azure-keyvault-network-unrestricted.yaml
|
|
cloud/azure/keyvault/azure-keyvault-recoverability-unconfigured.yaml
|
|
cloud/azure/keyvault/azure-keyvault-ssl-autorenewal-missing.yaml
|
|
cloud/azure/keyvault/azure-keyvault-trusted-ms-unrestricted.yaml
|
|
cloud/azure/locks/azure-keyvault-resource-lock-check.yaml
|
|
cloud/azure/monitor/azure-diag-logs-not-enabled.yaml
|
|
cloud/azure/monitor/azure-diagnostic-categories-misconfigured.yaml
|
|
cloud/azure/monitor/azure-log-profile-all-activities.yaml
|
|
cloud/azure/monitor/azure-monitor-diagnostic-unrestricted.yaml
|
|
cloud/azure/network/azure-network-watcher.yaml
|
|
cloud/azure/network/azure-nic-ip-forwarding-check.yaml
|
|
cloud/azure/network/azure-nsg-cifs-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-dns-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-ftp-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-http-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-https-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-icmp-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-mongodb-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-mssql-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-mysql-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-netbios-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-oracle-db-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-postgresql-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-rdp-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-rpc-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-smtp-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-ssh-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-telnet-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-udp-unrestricted.yaml
|
|
cloud/azure/network/azure-nsg-unrestricted-port-range.yaml
|
|
cloud/azure/network/azure-vnet-ddos-protection.yaml
|
|
cloud/azure/postgresql/azure-postgres-allow-azure-services-disabled.yaml
|
|
cloud/azure/postgresql/azure-postgres-connection-throttling-disabled.yaml
|
|
cloud/azure/postgresql/azure-postgres-double-encryption-disabled.yaml
|
|
cloud/azure/postgresql/azure-postgres-log-checkpoints-disabled.yaml
|
|
cloud/azure/postgresql/azure-postgres-log-connections-disabled.yaml
|
|
cloud/azure/postgresql/azure-postgres-log-disconnections-disabled.yaml
|
|
cloud/azure/postgresql/azure-postgres-log-duration-disabled.yaml
|
|
cloud/azure/postgresql/azure-postgresql-geo-backup-disabled.yaml
|
|
cloud/azure/postgresql/azure-postgresql-ssl-enforcement.yaml
|
|
cloud/azure/postgresql/azure-postgresql-storage-autogrow-disabled.yaml
|
|
cloud/azure/redis/azure-redis-nonssl-port-disabled.yaml
|
|
cloud/azure/redis/azure-redis-tls-version-outdated.yaml
|
|
cloud/azure/search/azure-search-service-managed-identity-disabled.yaml
|
|
cloud/azure/securitycenter/azure-defender-auto-provisioning-disabled.yaml
|
|
cloud/azure/servicebus/azure-servicebus-public-access-disabled.yaml
|
|
cloud/azure/servicebus/azure-servicebus-tls-version-outdated.yaml
|
|
cloud/azure/sql/azure-sql-auditing-disabled.yaml
|
|
cloud/azure/sql/azure-sql-failover-not-enabled.yaml
|
|
cloud/azure/sql/azure-sql-mi-tde-cmk-not-enabled.yaml
|
|
cloud/azure/sql/azure-sql-mi-tls-version-outdated.yaml
|
|
cloud/azure/sql/azure-sql-tde-cmk-not-used.yaml
|
|
cloud/azure/sql/azure-sql-tde-not-enabled.yaml
|
|
cloud/azure/sql/azure-sql-va-emails-unconfigured.yaml
|
|
cloud/azure/storageaccounts/azure-blob-anonymous-access-disabled.yaml
|
|
cloud/azure/storageaccounts/azure-blob-immutable-not-enabled.yaml
|
|
cloud/azure/storageaccounts/azure-blob-lifecycle-not-enabled.yaml
|
|
cloud/azure/storageaccounts/azure-blob-service-logging-disabled.yaml
|
|
cloud/azure/storageaccounts/azure-blob-soft-delete-disabled.yaml
|
|
cloud/azure/storageaccounts/azure-storage-blob-public-access.yaml
|
|
cloud/azure/storageaccounts/azure-storage-byok-not-used.yaml
|
|
cloud/azure/storageaccounts/azure-storage-cmk-not-used.yaml
|
|
cloud/azure/storageaccounts/azure-storage-cross-tenant-replication-disabled.yaml
|
|
cloud/azure/storageaccounts/azure-storage-encryption-missing.yaml
|
|
cloud/azure/storageaccounts/azure-storage-min-tls-version.yaml
|
|
cloud/azure/storageaccounts/azure-storage-network-unrestricted.yaml
|
|
cloud/azure/storageaccounts/azure-storage-overly-permissive-sap.yaml
|
|
cloud/azure/storageaccounts/azure-storage-private-endpoint-unconfigured.yaml
|
|
cloud/azure/storageaccounts/azure-storage-public-access.yaml
|
|
cloud/azure/storageaccounts/azure-storage-queue-logging-disabled.yaml
|
|
cloud/azure/storageaccounts/azure-storage-secure-transfer.yaml
|
|
cloud/azure/storageaccounts/azure-storage-static-website-review.yaml
|
|
cloud/azure/storageaccounts/azure-storage-table-logging-disabled.yaml
|
|
cloud/azure/storageaccounts/azure-storage-trusted-access-disabled.yaml
|
|
cloud/azure/subscriptions/azure-budget-alerts-missing.yaml
|
|
cloud/azure/subscriptions/azure-policy-not-allowed-types-unassigned.yaml
|
|
cloud/azure/synapse/azure-synapse-sqlpool-tde-disabled.yaml
|
|
cloud/azure/tags/azure-vm-tags-schema-noncompliant.yaml
|
|
cloud/azure/virtualmachines/azure-app-tier-vm-disk-unencrypted.yaml
|
|
cloud/azure/virtualmachines/azure-disk-encryption-unattached-volumes.yaml
|
|
cloud/azure/virtualmachines/azure-lb-unused.yaml
|
|
cloud/azure/virtualmachines/azure-vm-accelerated-networking-disabled.yaml
|
|
cloud/azure/virtualmachines/azure-vm-accelerated-networking-not-enabled.yaml
|
|
cloud/azure/virtualmachines/azure-vm-boot-diagnostics-not-enabled.yaml
|
|
cloud/azure/virtualmachines/azure-vm-boot-disk-unencrypted.yaml
|
|
cloud/azure/virtualmachines/azure-vm-byok-disk-volumes-not-enabled.yaml
|
|
cloud/azure/virtualmachines/azure-vm-endpoint-protection-missing.yaml
|
|
cloud/azure/virtualmachines/azure-vm-entra-id-unenabled.yaml
|
|
cloud/azure/virtualmachines/azure-vm-guest-diagnostics-unenabled.yaml
|
|
cloud/azure/virtualmachines/azure-vm-jit-access-not-enabled.yaml
|
|
cloud/azure/virtualmachines/azure-vm-managed-identity-unassigned.yaml
|
|
cloud/azure/virtualmachines/azure-vm-performance-diagnostics-unenabled.yaml
|
|
cloud/azure/virtualmachines/azure-vm-ssh-auth-type.yaml
|
|
cloud/azure/virtualmachines/azure-vm-standard-ssd-required.yaml
|
|
cloud/azure/virtualmachines/azure-vm-trusted-launch-disabled.yaml
|
|
cloud/azure/virtualmachines/azure-vm-unapproved-image.yaml
|
|
cloud/azure/virtualmachines/azure-vm-unmanaged-disk-volumes.yaml
|
|
cloud/azure/virtualmachines/azure-vm-web-tier-disk-unencrypted.yaml
|
|
cloud/azure/virtualmachines/azure-vmss-auto-os-upgrade-missing.yaml
|
|
cloud/azure/virtualmachines/azure-vmss-auto-repairs-disabled.yaml
|
|
cloud/azure/virtualmachines/azure-vmss-empty-unattached.yaml
|
|
cloud/azure/virtualmachines/azure-vmss-health-monitoring-missing.yaml
|
|
cloud/azure/virtualmachines/azure-vmss-load-balancer-unassociated.yaml
|
|
cloud/azure/virtualmachines/azure-vmss-public-ip-disabled.yaml
|
|
cloud/azure/virtualmachines/azure-vmss-termination-notif-disabled.yaml
|
|
cloud/azure/virtualmachines/azure-vmss-zone-redundancy-missing.yaml
|
|
code/cves/2024/CVE-2024-22120.yaml
|
|
headless/cves/2024/CVE-2024-29882.yaml
|
|
headless/vulnerabilities/retool/retool-dom-xss.yaml
|
|
http/cves/2000/CVE-2000-0760.yaml
|
|
http/cves/2007/CVE-2007-2449.yaml
|
|
http/cves/2014/CVE-2014-4577.yaml
|
|
http/cves/2014/CVE-2014-4941.yaml
|
|
http/cves/2014/CVE-2014-5181.yaml
|
|
http/cves/2014/CVE-2014-5187.yaml
|
|
http/cves/2022/CVE-2022-24637.yaml
|
|
http/cves/2023/CVE-2023-22621.yaml
|
|
http/cves/2023/CVE-2023-3188.yaml
|
|
http/cves/2023/CVE-2023-34105.yaml
|
|
http/cves/2023/CVE-2023-35155.yaml
|
|
http/cves/2023/CVE-2023-38992.yaml
|
|
http/cves/2023/CVE-2023-39024.yaml
|
|
http/cves/2023/CVE-2023-41597.yaml
|
|
http/cves/2023/CVE-2023-41621.yaml
|
|
http/cves/2023/CVE-2023-43654.yaml
|
|
http/cves/2023/CVE-2023-47684.yaml
|
|
http/cves/2023/CVE-2023-6275.yaml
|
|
http/cves/2023/CVE-2023-6329.yaml
|
|
http/cves/2024/CVE-2024-20419.yaml
|
|
http/cves/2024/CVE-2024-20439.yaml
|
|
http/cves/2024/CVE-2024-20440.yaml
|
|
http/cves/2024/CVE-2024-23167.yaml
|
|
http/cves/2024/CVE-2024-28397.yaml
|
|
http/cves/2024/CVE-2024-28987.yaml
|
|
http/cves/2024/CVE-2024-29889.yaml
|
|
http/cves/2024/CVE-2024-3673.yaml
|
|
http/cves/2024/CVE-2024-38472.yaml
|
|
http/cves/2024/CVE-2024-41667.yaml
|
|
http/cves/2024/CVE-2024-41955.yaml
|
|
http/cves/2024/CVE-2024-44849.yaml
|
|
http/cves/2024/CVE-2024-45195.yaml
|
|
http/cves/2024/CVE-2024-45388.yaml
|
|
http/cves/2024/CVE-2024-45622.yaml
|
|
http/cves/2024/CVE-2024-6159.yaml
|
|
http/cves/2024/CVE-2024-6586.yaml
|
|
http/cves/2024/CVE-2024-6846.yaml
|
|
http/cves/2024/CVE-2024-6924.yaml
|
|
http/cves/2024/CVE-2024-6926.yaml
|
|
http/cves/2024/CVE-2024-6928.yaml
|
|
http/cves/2024/CVE-2024-7029.yaml
|
|
http/cves/2024/CVE-2024-7786.yaml
|
|
http/cves/2024/CVE-2024-8503.yaml
|
|
http/cves/2024/CVE-2024-8517.yaml
|
|
http/cves/2024/CVE-2024-8752.yaml
|
|
http/cves/CVE-2024-45507.yaml
|
|
http/default-logins/apache/apache-hertzbeat-default-login.yaml
|
|
http/default-logins/bonita/bonita-default-login.yaml
|
|
http/default-logins/nginx/nginx-proxy-manager-default-login.yaml
|
|
http/exposed-panels/authentik-panel.yaml
|
|
http/exposed-panels/bonita-portal-panel.yaml
|
|
http/exposed-panels/ibm/ibm-api-connect-panel.yaml
|
|
http/exposed-panels/kemp-loadmaster-panel.yaml
|
|
http/exposed-panels/open-web-analytics-panel.yaml
|
|
http/exposures/configs/apache-jspwiki-ip-userenum.yaml
|
|
http/misconfiguration/directory-listing-no-host-header.yaml
|
|
http/misconfiguration/installer/emlog-installer.yaml
|
|
http/misconfiguration/installer/open-web-analytics-installer.yaml
|
|
http/misconfiguration/installer/strapi-admin-installer.yaml
|
|
http/misconfiguration/nginx/nginx-api-traversal.yaml
|
|
http/misconfiguration/repetier-unauth.yaml
|
|
http/technologies/apache/apache-jspwiki-detect.yaml
|
|
http/technologies/domibus-detect.yaml
|
|
http/technologies/ibm/ibm-api-connect-developer-portal-detect.yaml
|
|
http/technologies/torchserve-detect.yaml
|
|
http/technologies/wordpress/plugins/give.yaml
|
|
http/technologies/wordpress/plugins/inpost-for-woocommerce.yaml
|
|
http/technologies/wordpress/plugins/woo-inpost.yaml
|
|
http/technologies/wordpress/plugins/wp-mail-logging.yaml
|
|
http/technologies/writebook-detect.yaml
|
|
http/vulnerabilities/finereport/finereport-sqli-rce.yaml
|
|
http/vulnerabilities/imo/imo-file-download.yaml
|
|
http/vulnerabilities/imo/imo-rce.yaml
|
|
http/vulnerabilities/other/fastbee-arbitrary-file-read.yaml
|
|
http/vulnerabilities/other/fumasoft-sqli.yaml
|
|
http/vulnerabilities/other/fumengyun-sqli.yaml
|
|
http/vulnerabilities/other/motic-dsm-arbitrary-file-read.yaml
|
|
http/vulnerabilities/other/nsfocus-auth-bypass.yaml
|
|
http/vulnerabilities/other/nsfocus-lfi.yaml
|
|
http/vulnerabilities/other/webp-server-lfi.yaml
|
|
http/vulnerabilities/projectsend-auth-bypass.yaml
|
|
http/vulnerabilities/yonyou/yonyou-ufida-nc-cloud-sqli.yaml
|