| 1.1.5.2 Ensure 'Hide option to enable or disable updates' is set to 'Enabled' | CIS Microsoft Office Enterprise v1.2.0 L1 | Windows | RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY |
| 2.3.27.14 (L1) Ensure 'Encryption type for password protected Office Open XML files' is set to 'Enabled' | CIS Microsoft Intune for Office v1.1.0 L1 | Windows | IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 2.6.6.6.2.8 Ensure 'VBA Macro Notification Settings' is set to 'Enabled: Disable all except digitally signed macros' | CIS Microsoft Office Enterprise v1.2.0 L1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 2.8.4.1.5 Ensure 'VBA Macro Notification Settings' is set to 'Require macros to be signed by a trusted publisher' | CIS Microsoft Office Enterprise v1.2.0 L1 | Windows | CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY |
| CIS_Microsoft_Exchange_Server_2019_v1.0.0_Level_1_Mailbox.audit from CIS Microsoft Exchange Server 2019 Benchmark v1.0.0 | CIS Microsoft Exchange Server 2019 L1 Mailbox v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| CIS_Microsoft_Exchange_Server_2019_v1.0.0_Level_2_Mailbox.audit from CIS Microsoft Exchange Server 2019 Benchmark v1.0.0 | CIS Microsoft Exchange Server 2019 L2 Mailbox v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| CIS_Microsoft_SQL_Server_2008_R2_v1.7.0_Level_1_OS.audit from CIS Microsoft SQL Server 2008 R2 Database | CIS SQL Server 2008 R2 DB OS L1 v1.7.0 | Windows | |
| CIS_Microsoft_Windows_10_Enterprise_v4.0.0_L1_BL_NG.audit from CIS Microsoft Windows 10 Enterprise Benchmark v4.0.0 | CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG | Windows | |
| CIS_Microsoft_Windows_10_Enterprise_v4.0.0_L1_BL.audit from CIS Microsoft Windows 10 Enterprise Benchmark v4.0.0 | CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL | Windows | |
| CIS_Microsoft_Windows_10_Enterprise_v4.0.0_L1_NG.audit from CIS Microsoft Windows 10 Enterprise Benchmark v4.0.0 | CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG | Windows | |
| CIS_Microsoft_Windows_10_Enterprise_v4.0.0_L2_BL_NG.audit from CIS Microsoft Windows 10 Enterprise Benchmark v4.0.0 | CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NG | Windows | |
| CIS_Microsoft_Windows_10_Enterprise_v4.0.0_L2_NG.audit from CIS Microsoft Windows 10 Enterprise Benchmark v4.0.0 | CIS Microsoft Windows 10 Enterprise v4.0.0 L2 NG | Windows | |
| CIS_Microsoft_Windows_11_Enterprise_v4.0.0_BitLocker.audit from CIS Microsoft Windows 11 Enterprise Benchmark v4.0.0 | CIS Microsoft Windows 11 Enterprise v4.0.0 BitLocker | Windows | |
| CIS_Microsoft_Windows_11_Enterprise_v4.0.0_L1_BitLocker.audit from CIS Microsoft Windows 11 Enterprise Benchmark v4.0.0 | CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker | Windows | |
| CIS_Microsoft_Windows_Server_2016_v3.0.0_L1_DC.audit from CIS Microsoft Windows Server 2016 Benchmark v3.0.0 | CIS Microsoft Windows Server 2016 v3.0.0 L1 DC | Windows | |
| CIS_Microsoft_Windows_Server_2016_v3.0.0_L1_MS.audit from CIS Microsoft Windows Server 2016 Benchmark v3.0.0 | CIS Microsoft Windows Server 2016 v3.0.0 L1 MS | Windows | |
| CIS_Microsoft_Windows_Server_2016_v3.0.0_NG_DC.audit from CIS Microsoft Windows Server 2016 Benchmark v3.0.0 | CIS Microsoft Windows Server 2016 v3.0.0 NG DC | Windows | |
| CIS_Microsoft_Windows_Server_2019_v3.0.1_L1_DC.audit from CIS Microsoft Windows Server 2019 Benchmark v3.0.1 | CIS Microsoft Windows Server 2019 v3.0.1 L1 DC | Windows | |
| CIS_Microsoft_Windows_Server_2019_v3.0.1_L1_MS.audit from CIS Microsoft Windows Server 2019 Benchmark v3.0.1 | CIS Microsoft Windows Server 2019 v3.0.1 L1 MS | Windows | |
| CIS_Microsoft_Windows_Server_2019_v3.0.1_L2_DC.audit from CIS Microsoft Windows Server 2019 Benchmark v3.0.1 | CIS Microsoft Windows Server 2019 v3.0.1 L2 DC | Windows | |
| CIS_Microsoft_Windows_Server_2022_v4.0.0_L2_DC.audit from CIS Microsoft Windows Server 2022 Benchmark v4.0.0 | CIS Microsoft Windows Server 2022 v4.0.0 L2 DC | Windows | |
| CIS_Microsoft_Windows_Server_2025_v1.0.0_L1_DC.audit from CIS Microsoft Windows Server 2025 Benchmark v1.0.0 | CIS Microsoft Windows Server 2025 v1.0.0 L1 DC | Windows | |
| CIS_Microsoft_Windows_Server_2025_v1.0.0_L2_DC.audit from CIS Microsoft Windows Server 2025 Benchmark v1.0.0 | CIS Microsoft Windows Server 2025 v1.0.0 L2 DC | Windows | |
| CIS_Microsoft_Windows_Server_2025_v1.0.0_NG_DC.audit from CIS Microsoft Windows Server 2025 Benchmark v1.0.0 | CIS Microsoft Windows Server 2025 v1.0.0 NG DC | Windows | |
| CIS_MS_Windows_7_v3.2.0_Level_2_Bitlocker.audit from CIS Microsoft Windows 7 Workstation Benchmark v3.2.0 | CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0 | Windows | |
| DKER-EE-001810 - On Linux, a non-AUFS storage driver in the Docker Engine - Enterprise component of Docker Enterprise must be used. | DISA STIG Docker Enterprise 2.x Linux/Unix v2r2 | Unix | CONFIGURATION MANAGEMENT |
| DTOO130 - The configuration for enabling of hyperlinks must be enforced. | DISA STIG Microsoft Access 2013 v1r7 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO159 - Disabling of Fully Trusted Solutions access to computers must be configured. | DISA STIG Microsoft InfoPath 2013 v1r6 | Windows | CONFIGURATION MANAGEMENT |
| DTOO168 - Disabling sending form templates with the email forms must be configured. | DISA STIG Microsoft InfoPath 2013 v1r6 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO176 - Email with InfoPath forms must be configured to show UI to recipients. | DISA STIG Microsoft InfoPath 2013 v1r6 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO202 - Office System - Microsoft passport Service for content must be disallowed. | DISA STIG Office System 2010 v1r13 | Windows | CONFIGURATION MANAGEMENT |
| DTOO210 - PowerPoint - Pre-release versions of file formats new to Office Products must be blocked. | DISA STIG Office 2010 PowerPoint v1r11 | Windows | CONFIGURATION MANAGEMENT |
| DTOO210 - Word - Pre-release versions of file formats new to Office Products must be blocked. | DISA STIG Office 2010 Word v1r12 | Windows | CONFIGURATION MANAGEMENT |
| DTOO221 - Junk Mail UI must be configured. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | CONFIGURATION MANAGEMENT |
| DTOO227 - The ability to add signatures to email messages must be allowed. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO240 - The ability to display level 1 attachments must be disallowed. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO265 - Warning about invalid signatures must be enforced. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | IDENTIFICATION AND AUTHENTICATION |
| DTOO269 - Attachments using generated name for secure temporary folders must be configured. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | CONFIGURATION MANAGEMENT |
| DTOO276 - Always warn on untrusted macros must be enforced. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO281 - RSS feed synchronization with Common Feed List must be disallowed. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | CONFIGURATION MANAGEMENT |
| DTOO283 - Disabling download full text of articles as HTML must be configured. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | CONFIGURATION MANAGEMENT |
| DTOO284 - Automatic download of Internet Calendar appointment attachments must be disallowed. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO286 - User Entries to Server List must be disallowed. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | CONFIGURATION MANAGEMENT |
| DTOO289 - The ability to run programs from a PowerPoint presentation must be disallowed. | DISA STIG Microsoft PowerPoint 2013 v1r7 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO304 - Warning Bar settings for VBA macros must be configured. | DISA STIG Microsoft PowerPoint 2013 v1r7 | Windows | CONFIGURATION MANAGEMENT |
| DTOO307 - Office System - Office Live Workspace Integration must be off. | DISA STIG Office System 2010 v1r13 | Windows | CONFIGURATION MANAGEMENT |
| DTOO316 - Outlook minimum encryption key length settings must be set. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO425 - Text in Outlook that represents Internet and network paths must not be automatically turned into hyperlinks. | DISA STIG Microsoft Outlook 2013 v1r14 | Windows | CONFIGURATION MANAGEMENT |
| DTOO426 - Word must be configured to warn when opening a document with custom XML markup. | DISA STIG Microsoft Word 2013 v1r7 | Windows | CONFIGURATION MANAGEMENT |
| Encryption type for password protected Office 97-2003 files | MSCT Office 2016 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
