Detections
Analytics

Item Search

NameAudit NamePluginCategory
Allow indexing of encrypted filesMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow loading of XAML files - Internet ZoneMSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Allow log on locallyMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Allow only approved domains to use the TDC ActiveX control - Internet ZoneMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow scripting of Internet Explorer WebBrowser controls - Internet ZoneMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow scriptlets - Restricted Sites ZoneMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow unencrypted traffic - WinRM ServiceMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Allow updates to status bar via script - Internet ZoneMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Always prompt for password upon connectionMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

Audit Security Group ManagementMSCT Windows Server 2019 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit User Account ManagementMSCT Windows Server 2019 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settingsMSCT Windows Server 2019 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Boot-Start Driver Initialization PolicyMSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Configure Attack Surface Reduction rules - 75668c1f-73b5-4cf0-bb93-3ecf5cb7cc84MSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Configure Attack Surface Reduction rules - be9ba2d9-53ea-4cdc-84e5-9b1eeee46550MSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Configure SMB v1 serverMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Create a token objectMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Domain controller: Refuse machine account password changesMSCT Windows Server 2019 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Domain member: Require strong (Windows 2000 or later) session keyMSCT Windows Server 2019 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Don't run antimalware programs against ActiveX controls - Local Machine ZoneMSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Download signed ActiveX controls - Restricted Sites ZoneMSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Enable dragging of content from different domains across windows - Internet ZoneMSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Force shutdown from a remote systemMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Hardened UNC Paths - Network Provider - NETLOGONMSCT Windows Server 2019 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Initialize and script ActiveX controls not marked as safe - Internet ZoneMSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Initialize and script ActiveX controls not marked as safe - Restricted Sites ZoneMSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - Consistent Mime Handling - iexplore.exeMSCT Windows Server 2019 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - Notification bar - explorer.exeMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Internet Explorer Processes - Scripted Window Security Restrictions - iexplore.exeMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Intranet Sites: Include all network paths (UNCs)MSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Internet ZoneMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Local Machine ZoneMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Trusted Sites ZoneMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Join Microsoft MAPSMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Launching applications and files in an IFRAME - Internet ZoneMSCT Windows Server 2019 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Load and unload device driversMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Network access: Restrict anonymous access to Named Pipes and SharesMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Network security: Allow LocalSystem NULL session fallbackMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Perform volume maintenance tasksMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Remote host allows delegation of non-exportable credentialsMSCT Windows Server 2019 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Reset account lockout counter afterMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Restore files and directoriesMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

Specify the maximum log file size (KB) - ApplicationMSCT Windows Server 2019 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Turn on Protected Mode - Internet ZoneMSCT Windows Server 2016 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Turn on SmartScreen Filter scan - Locked-Down Restricted Sites ZoneMSCT Windows Server 2016 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Use Pop-up Blocker - Restricted Sites ZoneMSCT Windows Server 2016 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

User Account Control: Admin Approval Mode for the Built-in Administrator accountMSCT Windows Server 2016 DC v1.0.0Windows

ACCESS CONTROL

User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop.MSCT Windows Server 2016 DC v1.0.0Windows

ACCESS CONTROL

User Account Control: Behavior of the elevation prompt for administrators in Admin Approval ModeMSCT Windows Server 2016 DC v1.0.0Windows

ACCESS CONTROL

User Account Control: Behavior of the elevation prompt for standard usersMSCT Windows Server 2016 DC v1.0.0Windows

ACCESS CONTROL