Item Search

Name	Audit Name	Plugin	Category
1.1.3.9.6 Set 'MSS: (AutoReboot) Allow Windows to automatically restart after a system crash' to 'Not Defined'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
2.3.11.4 (L1) Ensure 'Network security: Configure encryption types allowed for Kerberos' is set to 'AES128_HMAC_SHA1, AES256_HMAC_SHA1, Future encryption types'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.4 Ensure 'Network security: Configure encryption types allowed for Kerberos' is set to 'AES128_HMAC_SHA1, AES256_HMAC_SHA1, Future encryption types'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.4 Ensure 'Network security: Configure encryption types allowed for Kerberos' is set to 'AES128_HMAC_SHA1, AES256_HMAC_SHA1, Future encryption types'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.11.4 Ensure 'Network security: Configure encryption types allowed for Kerberos' is set to 'AES128_HMAC_SHA1, AES256_HMAC_SHA1, Future encryption types'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.134 - User Account Control - Elevate UIAccess applications that are in secure locations	DISA Windows Vista STIG v6r41	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
5.5 Disable Raising or Lowering of Windows via Scripts	CIS Mozilla Firefox 102 ESR Linux L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
5.5 Disable Raising or Lowering of Windows via Scripts	CIS Mozilla Firefox 102 ESR Windows L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
5.108 - A Windows system has a writable DCOM configuration.	DISA Windows Vista STIG v6r41	Windows	CONFIGURATION MANAGEMENT
8.1.19 Set 'Use Pop- up Blocker' to 'Enabled:Enable'	CIS IE 9 v1.0.0	Windows	CONFIGURATION MANAGEMENT
8.3.28 Set 'Use Pop- up Blocker' to 'Enabled:Enable'	CIS IE 9 v1.0.0	Windows	CONFIGURATION MANAGEMENT
18.5.11.3 (L1) Ensure 'Prohibit use of Internet Connection Sharing on your DNS domain network' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT, CONTINGENCY PLANNING, PLANNING, PROGRAM MANAGEMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION
18.5.20.2 Ensure 'Prohibit access of the Windows Connect Now wizards' is set to 'Enabled'	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.6.11.3 Ensure 'Prohibit use of Internet Connection Sharing on your DNS domain network' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT
18.8.5.6 (NG) Ensure 'Turn On Virtualization Based Security: Credential Guard Configuration' is set to 'Disabled' (DC Only)	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 NG DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.3 (NG) Ensure 'Turn On Virtualization Based Security: Virtualization Based Protection of Code Integrity' is set to 'Enabled with UEFI lock'	CIS Microsoft Windows 10 Stand-alone v4.0.0 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.6 (NG) Ensure 'Turn On Virtualization Based Security: Credential Guard Configuration' is set to 'Disabled' (DC Only)	CIS Microsoft Windows Server 2025 v1.0.0 NG DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.6 (NG) Ensure 'Turn On Virtualization Based Security: Credential Guard Configuration' is set to 'Disabled' (DC Only)	CIS Microsoft Windows Server 2016 v3.0.0 NG DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.5.6 Ensure 'Turn On Virtualization Based Security: Credential Guard Configuration' is set to 'Disabled' (DC Only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 NG DC	Windows	SYSTEM AND INFORMATION INTEGRITY
Do not suggest third-party content in Windows spotlight	MSCT Windows 10 v21H1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not suggest third-party content in Windows spotlight	MSCT Windows 10 1803 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not suggest third-party content in Windows spotlight	MSCT Windows 10 v20H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not suggest third-party content in Windows spotlight	MSCT Windows 10 1809 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not suggest third-party content in Windows spotlight	MSCT Windows 10 1903 v1.19.9	Windows	CONFIGURATION MANAGEMENT
Do not suggest third-party content in Windows spotlight	MSCT Windows 10 v22H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not suggest third-party content in Windows spotlight	MSCT Windows 11 v23H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not suggest third-party content in Windows spotlight	MSCT Windows 11 v24H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not suggest third-party content in Windows spotlight	MSCT Windows 10 v21H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not suggest third-party content in Windows spotlight	MSCT Windows 11 v1.0.0	Windows	CONFIGURATION MANAGEMENT
GEN005160 - Any X Windows host must write .Xauthority files.	DISA STIG Solaris 10 X86 v2r4	Unix	CONFIGURATION MANAGEMENT
GEN005160 - Any X Windows host must write .Xauthority files.	DISA STIG Solaris 10 SPARC v2r4	Unix	CONFIGURATION MANAGEMENT
Network access: Remotely accessible registry paths and subpaths	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	ACCESS CONTROL
Network security: Allow LocalSystem NULL session fallback	MSCT Windows 10 1809 v1.0.0	Windows	ACCESS CONTROL
Network security: Allow LocalSystem NULL session fallback	MSCT Windows Server 1903 MS v1.19.9	Windows	ACCESS CONTROL
Network security: Allow LocalSystem NULL session fallback	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Network security: Allow LocalSystem NULL session fallback	MSCT Windows 10 v2004 v1.0.0	Windows	ACCESS CONTROL
Network security: Allow LocalSystem NULL session fallback	MSCT Windows 10 v20H2 v1.0.0	Windows	ACCESS CONTROL
Network security: Allow LocalSystem NULL session fallback	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL
Network security: Allow LocalSystem NULL session fallback	MSCT Windows Server 1903 DC v1.19.9	Windows	ACCESS CONTROL
Network security: Allow LocalSystem NULL session fallback	MSCT Windows 11 v22H2 v1.0.0	Windows	ACCESS CONTROL
SOL-11.1-020500 - Any X Windows host must write .Xauthority files.	DISA STIG Solaris 11 SPARC v3r1	Unix	CONFIGURATION MANAGEMENT
SOL-11.1-020500 - Any X Windows host must write .Xauthority files.	DISA STIG Solaris 11 X86 v3r1	Unix	CONFIGURATION MANAGEMENT
SQL6-D0-008000 - Contained databases must use Windows principals.	DISA STIG SQL Server 2016 Instance DB Audit v3r4	MS_SQLDB	IDENTIFICATION AND AUTHENTICATION
System objects: Require case insensitivity for non-Windows subsystems	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	CONFIGURATION MANAGEMENT
System objects: Require case insensitivity for non-Windows subsystems	MSCT Windows Server 2016 MS v1.0.0	Windows	CONFIGURATION MANAGEMENT
System objects: Require case insensitivity for non-Windows subsystems	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
System objects: Require case insensitivity for non-Windows subsystems	MSCT Windows Server 2016 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
System objects: Require case insensitivity for non-Windows subsystems	MSCT Windows 10 v1507 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Turn off real-time protection	MSCT Windows 10 v22H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Windows Compliance Policy - Encryption of data storage on device	Tenable Best Practices for Microsoft Intune Windows v1.0	microsoft_azure	ACCESS CONTROL

Detections

Analytics

Item Search