From 0a2abfd5d331272e0028fc703b2f23f7939a0e6d Mon Sep 17 00:00:00 2001
From: JayJersan <jerwin999@hotmail.com>
Date: Wed, 3 Jan 2024 18:48:29 +0530
Subject: [PATCH] added cis linux 1.1.5

---
 cis/system/hsp-block-cis-linux-1-1-5.yaml | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 cis/system/hsp-block-cis-linux-1-1-5.yaml

diff --git a/cis/system/hsp-block-cis-linux-1-1-5.yaml b/cis/system/hsp-block-cis-linux-1-1-5.yaml
new file mode 100644
index 00000000..7adbded1
--- /dev/null
+++ b/cis/system/hsp-block-cis-linux-1-1-5.yaml
@@ -0,0 +1,17 @@
+# KubeArmor is an open source software that enables you to protect your cloud workload at run-time.
+# To learn more about KubeArmor visit: 
+# https://www.accuknox.com/kubearmor/
+
+apiVersion: security.kubearmor.com/v1
+kind: KubeArmorHostPolicy
+metadata:
+  name: hsp-block-cis-linux-1-1-5
+spec:
+  severity: 5
+  tags: ["CIS", "Linux", "Distro-Independent-Linux", "Block", "CIS-1.1.5"]
+  message: "Alert! binary execution attempted inside /tmp"
+  process:
+    matchDirectories:
+    - dir: /tmp/
+      recursive: true
+      action: Block
\ No newline at end of file