Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure Latest SQL Server Service Packs and Hotfixes are Installed	CIS SQL Server 2012 Database L1 DB v1.6.0	MS_SQLDB	CONFIGURATION MANAGEMENT
1.1 Ensure Latest SQL Server Service Packs and Hotfixes are Installed	CIS SQL Server 2012 Database L1 AWS RDS v1.6.0	MS_SQLDB	CONFIGURATION MANAGEMENT
2.2.24 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.25 (L1) Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.25 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.2.25 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.26 (L1) Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.26 (L1) Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.2.26 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.26 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2019 v3.0.1 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.26 (L1) Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.27 (L1) Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.27 (L1) Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.27 (L1) Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.31 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.34 Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.34 Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.35 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.35 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
3.1 Ensure 'Server Authentication' Property is set to 'Windows Authentication Mode'	CIS SQL Server 2008 R2 DB Engine L1 v1.7.0	MS_SQLDB	IDENTIFICATION AND AUTHENTICATION
18.8.2 (L2) Ensure 'Remove Personalized Website Recommendations from the Recommended section in the Start Menu' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v3.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.8.2 (L2) Ensure 'Remove Personalized Website Recommendations from the Recommended section in the Start Menu' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v3.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.9.25.1 (L1) Ensure 'Configure password backup directory' is set to 'Enabled: Active Directory' or 'Enabled: Azure Active Directory'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL	Windows	CONTINGENCY PLANNING
18.9.25.1 (L1) Ensure 'Configure password backup directory' is set to 'Enabled: Active Directory' or 'Enabled: Azure Active Directory'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLocker	Windows	CONTINGENCY PLANNING
18.9.25.1 (L1) Ensure 'Configure password backup directory' is set to 'Enabled: Active Directory' or 'Enabled: Azure Active Directory'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1	Windows	CONTINGENCY PLANNING
18.9.25.1 (L1) Ensure 'Configure password backup directory' is set to 'Enabled: Active Directory' or 'Enabled: Azure Active Directory'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	CONTINGENCY PLANNING
18.9.25.1 (L1) Ensure 'Configure password backup directory' is set to 'Enabled: Active Directory' or 'Enabled: Azure Active Directory'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	CONTINGENCY PLANNING
18.9.25.1 (L1) Ensure 'Configure password backup directory' is set to 'Enabled: Active Directory' or 'Enabled: Azure Active Directory'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2	Windows	CONTINGENCY PLANNING
18.9.25.1 (L1) Ensure 'Configure password backup directory' is set to 'Enabled: Active Directory' or 'Enabled: Azure Active Directory'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG	Windows	CONTINGENCY PLANNING
18.9.25.1 Ensure 'Configure password backup directory' is set to 'Enabled: Active Directory' or 'Enabled: Azure Active Directory'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	CONTINGENCY PLANNING
18.9.25.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.4 (L1) Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.5 Ensure 'Password Settings: Password Length' is set to 'Enabled: 15 or more'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.5 Ensure 'Password Settings: Password Length' is set to 'Enabled: 15 or more'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.6 (L1) Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.6 (L1) Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.7 (L1) Ensure 'Post-authentication actions: Grace period (hours)' is set to 'Enabled: 8 or fewer hours, but not 0'	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.25.8 (L1) Ensure 'Post-authentication actions: Actions' is set to 'Enabled: Reset the password and logoff the managed account' or higher	CIS Microsoft Windows Server 2025 v1.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
18.10.92.2.3 (L1) Ensure 'Enable features introduced via servicing that are off by default' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1 + BL	Windows	CONFIGURATION MANAGEMENT
18.10.93.2.3 (L1) Ensure 'Enable features introduced via servicing that are off by default' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.10.93.2.3 (L1) Ensure 'Enable features introduced via servicing that are off by default' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	CONFIGURATION MANAGEMENT
DISA_STIG_MSSQL_2012_Database_v1r20.audit from DISA Microsoft SQL Server Instance 2012 v1r20 STIG	DISA STIG SQL Server 2012 Database Audit v1r20	MS_SQLDB
WDNS-CM-000003 - The Windows 2012 DNS Server must prohibit recursion on authoritative name servers for which forwarders have not been configured for external queries.	DISA Microsoft Windows 2012 Server DNS STIG v2r7	Windows	CONFIGURATION MANAGEMENT
WDNS-SC-000009 - The Windows 2012 DNS Server must enforce approved authorizations between DNS servers through the use of digital signatures in the RRSet.	DISA Microsoft Windows 2012 Server DNS STIG v2r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WDNS-SC-000011 - The Windows 2012 DNS Server must be configured to validate an authentication chain of parent and child domains via response data.	DISA Microsoft Windows 2012 Server DNS STIG v2r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WDNS-SC-000026 - The Windows 2012 DNS Server must restrict individuals from using it for launching Denial of Service (DoS) attacks against other information systems.	DISA Microsoft Windows 2012 Server DNS STIG v2r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WINER-000008 - The system must be configured to use SSL to forward error reports.	DISA Windows Vista STIG v6r41	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WN10-CC-000080 - Virtualization-based protection of code integrity must be enabled.	DISA Microsoft Windows 10 STIG v3r4	Windows	CONFIGURATION MANAGEMENT
WN12-CC-000139 - Windows 2012 R2 must include command line data in process creation events.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	AUDIT AND ACCOUNTABILITY
WN12-CC-000139 - Windows 2012 R2 must include command line data in process creation events.	DISA Windows Server 2012 and 2012 R2 DC STIG v3r7	Windows	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search