Detections
Analytics

Item Search

NameAudit NamePluginCategory
Access data sources across domains - Internet ZoneMSCT Windows Server v2004 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Accounts: Limit local account use of blank passwords to console logon onlyMSCT Windows Server v1909 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow active scriptingMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Allow cut, copy or paste operations from the clipboard via script - Restricted Sites ZoneMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow META REFRESHMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow script-initiated windows without size or position constraints - Internet ZoneMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow software to run or install even if the signature is invalidMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Allow VBScript to run in Internet Explorer - Internet ZoneMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Audit Other Account Management EventsMSCT Windows Server v1909 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit PNP ActivityMSCT Windows Server v1909 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit User Account ManagementMSCT Windows Server v1909 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Automatic prompting for file downloads - Restricted Sites ZoneMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure Attack Surface Reduction rules - 92E97FA1-2EDF-4476-BDD6-9DD0B4DDDC7BMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Configure Attack Surface Reduction rules - 7674ba52-37eb-4a4f-a9a1-f0f9a1619a2cMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Configure Attack Surface Reduction rules - ExploitGuard_ASR_RulesMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Debug programsMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

Disallow Autoplay for non-volume devicesMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Disallow WinRM from storing RunAs credentialsMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

Domain member: Require strong (Windows 2000 or later) session keyMSCT Windows Server v1909 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Download unsigned ActiveX controls - Restricted Sites ZoneMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Enable computer and user accounts to be trusted for delegationMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

Enable dragging of content from different domains across windows - Internet ZoneMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Enable dragging of content from different domains within a window - Internet ZoneMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Enumeration policy for external devices incompatible with Kernel DMA ProtectionMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Hardened UNC Paths - \\*\NETLOGONMSCT Windows Server v1909 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Impersonate a client after authenticationMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

Include local path when user is uploading files to a server - Internet ZoneMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Initialize and script ActiveX controls not marked as safe - Restricted Sites ZoneMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Interactive logon: Machine inactivity limitMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

Interactive logon: Smart card removal behaviorMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

Internet Explorer Processes - FEATURE_RESTRICT_ACTIVEXINSTALL - (Reserved)MSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Internet Explorer Processes - FEATURE_RESTRICT_FILEDOWNLOAD - explorer.exeMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Internet Explorer Processes - FEATURE_SECURITYBAND - iexplore.exeMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Internet Explorer Processes - FEATURE_WINDOW_RESTRICTIONS - explorer.exeMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Locked-Down Intranet ZoneMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Java permissions - Locked-Down Restricted Sites ZoneMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Microsoft network client: Digitally sign communications (always)MSCT Windows Server v1909 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Network access: Restrict anonymous access to Named Pipes and SharesMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

Network security: Minimum session security for NTLM SSP based (including secure RPC) clientsMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Network security: Minimum session security for NTLM SSP based (including secure RPC) serversMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Restore files and directoriesMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

Run ActiveX controls and pluginsMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Security Zones: Use only machine settingsMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Sign-in and lock last interactive user automatically after a restartMSCT Windows Server v1909 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Specify the maximum log file size (KB) - SystemMSCT Windows Server v1909 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links)MSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Turn off Crash DetectionMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Turn off multicast name resolutionMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Turn on the auto-complete feature for user names and passwords on forms - MainMSCT Windows Server v1909 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Turn On Virtualization Based Security - HVCIMATRequiredMSCT Windows Server v1909 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY