Item Search

Name	Audit Name	Plugin	Category
1.4.7.2.2.1 Ensure 'Turn Off Protected View For Attachments Opened from Outlook' is set to Disabled	CIS Microsoft Office Excel 2016 v1.0.1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.8.7.2.2.3 Ensure 'Turn Off Protected View for Attachments Opened From Outlook' is set to Disabled	CIS Microsoft Office Word 2013 v1.1.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.8.7.2.2.3 Ensure 'Turn Off Protected View for Attachments Opened From Outlook' is set to Disabled	CIS Microsoft Office Word 2016 v1.1.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.8.7.2.7 Ensure 'Trust Access to Visual Basic Project' to Disabled	CIS Microsoft Office Word 2013 v1.1.0	Windows	CONFIGURATION MANAGEMENT
1.8.7.2.7 Ensure 'Trust Access to Visual Basic Project' to Disabled	CIS Microsoft Office Word 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
2.1.4.1 (L1) Ensure 'Default file format' is set to 'Enabled: Access 2007'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	CONFIGURATION MANAGEMENT
2.1.4.1 Ensure 'Default file format' is set to 'Enabled: Access 2007'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.3.9.1 (L1) Ensure 'Document Information Panel Beaconing UI' is set to 'Enabled: Always show UI'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	CONFIGURATION MANAGEMENT
2.3.19.3 (L1) Ensure 'Always require users to connect to verify permission' is set to 'Enabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	CONFIGURATION MANAGEMENT
2.6.6.6.2.1.2 (L1) Ensure 'Set default file block behavior' to 'Enabled: Blocked files are not opened'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.6.6.6.2.1.2 Ensure 'Set default file block behavior' to 'Enabled: Blocked files are not opened'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.6.6.6.2.2.1 (L1) Ensure 'Do not open files from the Internet zone in Protected View' is set to 'Disabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.2.1 Ensure 'Do not open files from the Internet zone in Protected View' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.2.2 (L1) Ensure 'Do not open files in unsafe locations in Protected View' is set to 'Disabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.2.3 (L1) Ensure 'Set document behavior if file validation fails' is set to 'Enabled: Open in Protected View'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.2.4 (L1) Ensure 'Set document behavior if file validation fails' is set to 'Unchecked: Do not allow edit'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	CONFIGURATION MANAGEMENT
2.6.6.6.2.2.5 (L1) Ensure 'Turn off Protected View for attachments opened from Outlook' is set to 'Disabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.2.5 Ensure 'Turn off Protected View for attachments opened from Outlook' is set to 'Disabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.2.3.1 (L1) Ensure 'Allow Trusted Locations on the network' is set to 'Disabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	CONFIGURATION MANAGEMENT
2.6.6.6.2.3.2 Ensure 'Disable all trusted locations' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L2	Windows	CONFIGURATION MANAGEMENT
2.6.6.6.2.5 (L1) Ensure 'Require that application add-ins are signed by Trusted Publisher' is set to 'Enabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
2.6.6.6.2.8 Ensure 'VBA Macro Notification Settings' is set to 'Enabled: Disable all except digitally signed macros'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.6.6.6.4 (L1) Ensure 'Run Programs' is set to 'Enabled: disable (don't run any programs)'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	CONFIGURATION MANAGEMENT
2.6.6.6.4 Ensure 'Run Programs' is set to 'Enabled: disable (don't run any programs)'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	CONFIGURATION MANAGEMENT
2.7.1 Ensure 'Document Information Panel Beaconing UI' is set to Enabled (Always show UI)	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
2.17.3 Ensure 'Always Require Users to Connect to Verify Permission' is set to Enabled	CIS Microsoft Office 2016 v1.1.0	Windows	CONFIGURATION MANAGEMENT
3.10.30.1 (L1) Ensure 'Enable RPC Endpoint Mapper Client Authentication' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v3.0.1 L1	Windows	CONFIGURATION MANAGEMENT
4.10.31.1 (L1) Ensure 'Enable RPC Endpoint Mapper Client Authentication' is set to 'Enabled'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.1.1 Configure 'Disable All ActiveX'	CIS MS Office Outlook 2010 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
6.7 Set 'Turn off all user customizations: Disallow in Outlook' to 'Enabled:True'	CIS MS Office Outlook 2010 v1.0.0	Windows	CONFIGURATION MANAGEMENT
17.2.5 Ensure 'Audit Other Account Management Events' is set to include 'Success' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
AIX7-00-002057 - AIX audit logs must be rotated daily.	DISA STIG AIX 7.x v3r1	Unix	CONFIGURATION MANAGEMENT
Block Flash activation in Office documents	Microsoft 365 Apps for Enterprise 2306 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Block Flash activation in Office documents	MSCT M365 Apps for enterprise 2312 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Default Protections for Recommended Software - PowerPoint	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	CONFIGURATION MANAGEMENT
Default Protections for Recommended Software - PowerPoint	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
DISA_VMware_vSphere_8.0_vCenter_Appliance_Secure_Token_Service_(STS)_STIG_v2r1.audit from DISA VMware vSphere 8.0 vCenter Appliance Secure Token Service (STS) STIG v2r1	DISA VMware vSphere 8.0 vCenter Appliance Secure Token Service (STS) STIG v2r1	Unix
DISA_VMware_vSphere_8.0_vCenter_Appliance_User_Interface_(UI)_STIG_v2r1.audit from DISA VMware vSphere 8.0 vCenter Appliance User Interface (UI) STIG v2r1	DISA VMware vSphere 8.0 vCenter Appliance User Interface (UI) STIG v2r1	Unix
DTOO146 - Excel - Trust access for VBA must be disallowed.	DISA STIG Office 2010 Excel v1r11	Windows	CONFIGURATION MANAGEMENT
DTOO146 - Trust access for VBA must be disallowed.	DISA STIG Microsoft Word 2013 v1r7	Windows	CONFIGURATION MANAGEMENT
DTOO146 - Trust access for VBA must be disallowed.	DISA STIG Microsoft Excel 2013 v1r8	Windows	CONFIGURATION MANAGEMENT
DTOO146 - Word - Trust access for VBA must be disallowed.	DISA STIG Office 2010 Word v1r12	Windows	CONFIGURATION MANAGEMENT
DTOO304 - Trust access for VBA must be disallowed.	DISA STIG Microsoft Access 2013 v1r7	Windows	CONFIGURATION MANAGEMENT
DTOO417 - The Office Telemetry Agent and Office applications must be configured to collect telemetry data.	DISA STIG Microsoft Office System 2013 v2r2	Windows	CONFIGURATION MANAGEMENT
F5BI-AP-000231 - The F5 BIG-IP appliance must be configured to deny access when revocation data is unavailable using OCSP.	DISA F5 BIG-IP Access Policy Manager STIG v2r4	F5	IDENTIFICATION AND AUTHENTICATION
GEN002860 - Audit logs must be rotated daily.	DISA STIG AIX 5.3 v1r2	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA STIG Solaris 10 X86 v2r4	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA STIG Solaris 10 SPARC v2r4	Unix	CONFIGURATION MANAGEMENT
GEN002860 - Audit logs must be rotated daily.	DISA STIG AIX 6.1 v1r14	Unix	CONFIGURATION MANAGEMENT
O365-WD-000011 - Open/Save of Word 2007 and later binary documents and templates must be blocked.	DISA STIG Microsoft Office 365 ProPlus v3r3	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search