Item Search

Name	Audit Name	Plugin	Category
1.86 (L1) Ensure 'Enable browser legacy extension point blocking' is set to 'Enabled'	CIS Microsoft Edge v3.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
4.10.9.1.1 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Intune for Windows 11 v4.0.0 BL	Windows	MEDIA PROTECTION
9.1.7.2 Ensure That Microsoft Defender for Open-Source Relational Databases Is Set To 'On'	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	RISK ASSESSMENT, SYSTEM AND SERVICES ACQUISITION
18.8.7.1.3 Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)	CIS Windows 7 Workstation Bitlocker v3.2.0	Windows	MEDIA PROTECTION
18.8.7.1.4 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.8.7.1.6 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.7.1.1 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	MEDIA PROTECTION
18.9.7.1.1 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.9.7.1.3 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)	CIS Microsoft Windows 11 Enterprise v4.0.0 BitLocker	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.3 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.3 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.4 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.9.7.1.6 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)	CIS Microsoft Windows 10 Enterprise v4.0.0 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.1.6 (BL) Ensure 'Prevent installation of devices using drivers that match these device setup classes: Also apply to matching devices that are already installed.' is set to 'True' (checked)	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.92.4.1 Ensure 'Manage preview builds' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT
18.10.93.4.2 (L1) Ensure 'Select when Preview Builds and Feature Updates are received' is set to 'Enabled: 180 or more days'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
18.10.93.4.2 (L1) Ensure 'Select when Preview Builds and Feature Updates are received' is set to 'Enabled: 180 or more days'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
103.2 (L1) Ensure 'Defer Feature Updates Period in Days' is set to 'Enabled: 180 or more days'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY
Intranet Sites: Include all network paths (UNCs)	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Intranet Zone	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Locked-Down Restricted Sites Zone	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Java permissions - Locked-Down Trusted Sites Zone	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Launching applications and files in an IFRAME - Restricted Sites Zone	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Let Windows apps activate with voice while the system is locked	MSCT Windows 10 1909 v1.0.0	Windows	ACCESS CONTROL
Manage auditing and security log	MSCT Windows 10 1909 v1.0.0	Windows	ACCESS CONTROL
Minimum password length	MSCT Windows 10 1909 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
MSS: (NoNameReleaseOnDemand) Allow the computer to ignore NetBIOS name release requests except from WINS servers	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Network security: LDAP client signing requirements	MSCT Windows 10 1909 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Perform volume maintenance tasks	MSCT Windows 10 1909 v1.0.0	Windows	ACCESS CONTROL
Prevent per-user installation of ActiveX controls	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Prohibit use of Internet Connection Sharing on your DNS domain network	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Remote host allows delegation of non-exportable credentials	MSCT Windows 10 1909 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Require a password when a computer wakes (plugged in)	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Run .NET Framework-reliant components signed with Authenticode - Internet Zone	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Scripting of Java applets	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Security Zones: Use only machine settings	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Set client connection encryption level	MSCT Windows 10 1909 v1.0.0	Windows	ACCESS CONTROL
Specify the maximum log file size (KB) - Application	MSCT Windows 10 1909 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
This settings controls whether Network Protection is allowed to be configured into block or audit mode on Windows Server.	MSCT Windows Server 2025 MS v1.0.0	Windows
Turn off Autoplay	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Turn off Crash Detection	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Turn off the Security Settings Check feature	MSCT Windows 10 1909 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Turn on convenience PIN sign-in	MSCT Windows 10 1909 v1.0.0	Windows	ACCESS CONTROL
Turn on Protected Mode - Internet Zone	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Turn On Virtualization Based Security - ConfigureSystemGuardLaunch	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Turn On Virtualization Based Security - HypervisorEnforcedCodeIntegrity	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
User Account Control: Admin Approval Mode for the Built-in Administrator account	MSCT Windows 10 1909 v1.0.0	Windows	ACCESS CONTROL
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode	MSCT Windows 10 1909 v1.0.0	Windows	ACCESS CONTROL
User Account Control: Run all administrators in Admin Approval Mode	MSCT Windows 10 1909 v1.0.0	Windows	ACCESS CONTROL
Userdata persistence - Internet Zone	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search