Security Baselines
STIGs
425 benchmarks available
APACHE 2.2 Site for UNIX Security Technical Implementation Guide
V1All directives specified in this STIG must be specifically set (i.e. the server is not allowed to revert to programmed defaults for these directives). Included files should be reviewed if they are used. Procedures for reviewing included files are included in the overview document. The use of .htaccess files are not authorized for use according to the STIG. However, if they are used, there are procedures for reviewing them in the overview document. The Web Policy STIG should be used in addition to the Apache Site and Server STIGs in order to do a comprehensive web server review.
Dashboard
Severity distribution, finding analysis, and processing overview
Responsible Roles
Occupational roles responsible for remediating findings, scored and grouped by primary / secondary / oversight
Pipeline
COMING SOONAtomization, MWE tagging, and Bloom's classification
Exceptions
COMING SOONReview and manage findings flagged for exception
Finding Detail
COMING SOONDeep-dive into individual findings with full metadata