Benchmarks & control frameworks
The backbone of the default audit surface. Every framework check in Cogent maps to a section in one of these documents.
- CIS BenchmarksConsensus-based configuration baselines for Cisco, Juniper, Palo Alto, Fortinet and more. cisecurity.org
- NIST SP 800-53 Rev. 5Security and privacy controls catalog — the reference for federal and regulated environments. csrc.nist.gov
- NIST Cybersecurity FrameworkOutcome-oriented framework we use to organize posture reporting. nist.gov
- PCI DSSRequirement 1 (network security controls) and 2 (secure configurations) drive our PCI check set. pcisecuritystandards.org
- DISA STIGsDoD Security Technical Implementation Guides for network infrastructure devices. public.cyber.mil
Vendor hardening guidance
Vendor-published hardening and best-practice documentation, used to resolve how a control applies to a specific NOS and version.
- Cisco Guide to Harden IOS DevicesManagement plane, control plane and data plane hardening for IOS / IOS-XE. cisco.com
- Juniper TechLibraryJunos OS documentation, including device security and management hardening. juniper.net
- Arista product documentationEOS configuration and security guides. arista.com
- Palo Alto Networks best practicesPAN-OS administrative access, decryption and policy best-practice guides. docs.paloaltonetworks.com
- Fortinet documentation libraryFortiOS hardening and administration guides. docs.fortinet.com
Standards & advisories
Protocol-level standards and the advisory feeds our threat-informed checks track.
- RFC 2827 / BCP-38Network ingress filtering — the source of our uRPF and anti-spoofing checks. rfc-editor.org
- CISA cybersecurity advisoriesActively exploited vulnerabilities and hardening guidance for network infrastructure. cisa.gov
- NSA cybersecurity guidanceNetwork infrastructure security guidance and advisories. nsa.gov
Product documentation is coming. Setup guides, the policy-editor reference, and the findings API are being written alongside early deployments. Until then, contact the team — we'll walk you through anything on a call.