App extensions Enable or disable extensions for the Overview and Agents tabs
{{ tabNames['pci'] }}

The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle branded credit cards from the major card schemes including Visa, MasterCard, American Express, Discover, and JCB.

The PCI Standard is mandated by the card brands and administered by the Payment Card Industry Security Standards Council. The standard was created to increase controls around cardholder data to reduce credit card fraud.

 More info {{ tabNames['gdpr'] }}

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU.

The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

 More info {{ tabNames['audit'] }}

The Linux Audit system provides a way to track security-relevant information on your system.

Based on pre-configured rules, Audit generates log entries to record as much information about the events that are happening on your system as possible.

 More info {{ tabNames['oscap'] }}

OVAL (Open Vulnerability Assessment Language) interpreter used to check system configuration and detect vulnerable applications.

It is recognized as a standardized compliance and hardening checking solution for enterprise-level infrastructure.

 More info {{ tabNames['ciscat'] }}

CIS (Center for Internet Security) is an entity dedicated to safeguard private and public organizations against cyber threats. This entity provides CIS benchmarks guidelines, which are a recognized global standard and best practices for securing IT systems and data against cyberattacks.

 More info {{ tabNames['aws'] }}

Wazuh provides a way to collect alerts from your AWS machines and store them to an agent. Once the agent reads the message, it sends it to the Wazuh manager which analyses it with decoders and rules.

When a rule matches, an alert is triggered if the rule severity is high enough. Wazuh can be used to alert on specific events from IAM, EC2 and VPC.

 More info {{ tabNames['virustotal'] }}

VirusTotal is an online service that analyzes files and URLs enabling the detection of viruses, worms, trojans and other kinds of malicious content using antivirus engines and website scanners. It also can be used to detect false positives.

 More info