| 4.2 Ensure excessive administrative privileges are revoked | CIS PostgreSQL 11 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
| 4.3 Ensure excessive function privileges are revoked | CIS PostgreSQL 10 OS v1.0.0 | Unix | ACCESS CONTROL |
| 5.1.1.1 Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'Network' Packages - Network Packages | CIS Oracle Server 18c DB Traditional Auditing v1.1.0 | OracleDB | ACCESS CONTROL |
| 5.1.1.1 Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'Network' Packages - Network Packages | CIS Oracle Server 18c DB Unified Auditing v1.1.0 | OracleDB | ACCESS CONTROL |
| 5.1.3.3 Ensure 'ALL' Is Revoked on 'Sensitive' Tables | CIS Oracle Server 18c DB Traditional Auditing v1.1.0 | OracleDB | ACCESS CONTROL |
| 5.2.2 Ensure 'DBA_SYS_PRIVS.%' Is Revoked from Unauthorized 'GRANTEE' with 'ADMIN_OPTION' Set to 'YES' | CIS Oracle Server 12c DB Unified Auditing v3.0.0 | OracleDB | ACCESS CONTROL |
| 5.2.4 Ensure 'EXECUTE ANY PROCEDURE' Is Revoked from 'DBSNMP' | CIS Oracle Server 18c DB Traditional Auditing v1.1.0 | OracleDB | ACCESS CONTROL |
| 5.2.7 Ensure 'AUDIT SYSTEM' Is Revoked from Unauthorized 'GRANTEE' | CIS Oracle Server 12c DB Unified Auditing v3.0.0 | OracleDB | ACCESS CONTROL |
| 5.2.7 Ensure 'AUDIT SYSTEM' Is Revoked from Unauthorized 'GRANTEE' | CIS Oracle Server 18c DB Traditional Auditing v1.1.0 | OracleDB | ACCESS CONTROL |
| 5.2.11 Ensure 'ALTER SYSTEM' Is Revoked from Unauthorized 'GRANTEE' | CIS Oracle Server 18c DB Traditional Auditing v1.1.0 | OracleDB | ACCESS CONTROL |
| 5.2.12 Ensure 'CREATE ANY LIBRARY' Is Revoked from Unauthorized 'GRANTEE' | CIS Oracle Server 12c DB Unified Auditing v3.0.0 | OracleDB | ACCESS CONTROL |
| 5.2.14 Ensure 'GRANT ANY OBJECT PRIVILEGE' Is Revoked from Unauthorized 'GRANTEE' | CIS Oracle Server 18c DB Traditional Auditing v1.1.0 | OracleDB | ACCESS CONTROL |
| 5.3.4 Ensure 'DBA' Is Revoked from Unauthorized 'GRANTEE' | CIS Oracle Server 12c DB Unified Auditing v3.0.0 | OracleDB | ACCESS CONTROL |
| 6.5 Ensure 'Superuser' Runtime Parameters are Configured | CIS PostgreSQL 10 DB v1.0.0 | PostgreSQLDB | ACCESS CONTROL |
| 6.5 Ensure 'Superuser' Runtime Parameters are Configured | CIS PostgreSQL 11 DB v1.0.0 | PostgreSQLDB | CONFIGURATION MANAGEMENT |
| 6.6 Ensure 'User' Runtime Parameters are Configured | CIS PostgreSQL 9.6 DB v1.0.0 | PostgreSQLDB | ACCESS CONTROL |
| 7.2 Ensure a replication-only user is created and used for streaming replication | CIS PostgreSQL 9.6 DB v1.0.0 | PostgreSQLDB | ACCESS CONTROL |
| Access Credential Manager as a trusted caller | MSCT Windows 10 1903 v1.19.9 | Windows | ACCESS CONTROL |
| Act as part of the operating system | MSCT Windows Server 1903 MS v1.19.9 | Windows | ACCESS CONTROL |
| Act as part of the operating system | MSCT Windows Server v1909 DC v1.0.0 | Windows | ACCESS CONTROL |
| Back up files and directories | MSCT Windows Server v1909 DC v1.0.0 | Windows | ACCESS CONTROL |
| Change the system time | MSCT Windows Server 2012 R2 MS v1.0.0 | Windows | ACCESS CONTROL |
| Create a token object | MSCT Windows 10 1903 v1.19.9 | Windows | ACCESS CONTROL |
| Create a token object | MSCT Windows Server 2012 R2 MS v1.0.0 | Windows | ACCESS CONTROL |
| Create global objects | MSCT Windows Server v2004 DC v1.0.0 | Windows | ACCESS CONTROL |
| Create global objects | MSCT Windows Server 2012 R2 DC v1.0.0 | Windows | ACCESS CONTROL |
| Create permanent shared objects | MSCT Windows 10 1903 v1.19.9 | Windows | ACCESS CONTROL |
| Create permanent shared objects | MSCT Windows Server v1909 DC v1.0.0 | Windows | ACCESS CONTROL |
| Create permanent shared objects | MSCT Windows Server v2004 DC v1.0.0 | Windows | ACCESS CONTROL |
| Debug programs | MSCT Windows 10 1809 v1.0.0 | Windows | ACCESS CONTROL |
| Debug programs | MSCT Windows Server v1909 MS v1.0.0 | Windows | ACCESS CONTROL |
| Enable computer and user accounts to be trusted for delegation | MSCT Windows Server 2012 R2 MS v1.0.0 | Windows | ACCESS CONTROL |
| Force shutdown from a remote system | MSCT Windows 10 1809 v1.0.0 | Windows | ACCESS CONTROL |
| Force shutdown from a remote system | MSCT Windows 10 1903 v1.19.9 | Windows | ACCESS CONTROL |
| Impersonate a client after authentication | MSCT Windows 10 1809 v1.0.0 | Windows | ACCESS CONTROL |
| Impersonate a client after authentication | MSCT Windows Server 1903 MS v1.19.9 | Windows | ACCESS CONTROL |
| Manage auditing and security log | MSCT Windows 10 1803 v1.0.0 | Windows | ACCESS CONTROL |
| Modify firmware environment values | MSCT Windows Server v1909 DC v1.0.0 | Windows | ACCESS CONTROL |
| Modify firmware environment values | MSCT Windows Server v2004 MS v1.0.0 | Windows | ACCESS CONTROL |
| Perform volume maintenance tasks | MSCT Windows 10 1803 v1.0.0 | Windows | ACCESS CONTROL |
| Perform volume maintenance tasks | MSCT Windows Server 2012 R2 DC v1.0.0 | Windows | ACCESS CONTROL |
| Profile single process | MSCT Windows 10 1803 v1.0.0 | Windows | ACCESS CONTROL |
| Profile single process | MSCT Windows Server 1903 DC v1.19.9 | Windows | ACCESS CONTROL |
| Profile single process | MSCT Windows Server v1909 DC v1.0.0 | Windows | ACCESS CONTROL |
| Profile single process | MSCT Windows Server v1909 MS v1.0.0 | Windows | ACCESS CONTROL |
| Profile system performance | MSCT Windows Server 2012 R2 DC v1.0.0 | Windows | ACCESS CONTROL |
| Restore files and directories | MSCT Windows 10 1903 v1.19.9 | Windows | ACCESS CONTROL |
| Restore files and directories | MSCT Windows Server v2004 MS v1.0.0 | Windows | ACCESS CONTROL |
| Restore files and directories | MSCT Windows Server 2012 R2 DC v1.0.0 | Windows | ACCESS CONTROL |
| Shut down the system | MSCT Windows Server 2012 R2 DC v1.0.0 | Windows | ACCESS CONTROL |
