Item Search

Name	Audit Name	Plugin	Category
1.6.3 Ensure system wide crypto policy macs are configured	CIS Rocky Linux 10 v1.0.0 L1 Server	Unix	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.189 WN16-MS-000010	CIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT I	Windows	ACCESS CONTROL
2.3.8.2 (L1) Ensure 'Microsoft network client: Digitally sign communications (if server agrees)' is set to 'Enabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.8.2 (L1) Ensure 'Microsoft network client: Digitally sign communications (if server agrees)' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 MS	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.8.2 (L1) Ensure 'Microsoft network client: Digitally sign communications (if server agrees)' is set to 'Enabled'	CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L1 MS	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.8.2 (L1) Ensure 'Microsoft network client: Digitally sign communications (if server agrees)' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	CONFIGURATION MANAGEMENT
2.3.9.3 (L1) Ensure 'Microsoft network server: Digitally sign communications (if client agrees)' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	CONFIGURATION MANAGEMENT
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2025 v1.0.0 L1 Database Engine MS_SQLDB	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2019 v1.5.2 L1 Database Engine	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2022 v1.2.1 L1 Database Engine	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2025 v1.0.0 L1 AWS RDS MS_SQLDB	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS Microsoft SQL Server 2019 v1.5.2 L1 AWS RDS	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS SQL Server 2014 Database L1 AWS RDS v1.5.0	MS_SQLDB	ACCESS CONTROL
18.9.47.11.1 (L2) Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.9.49.11.1 Ensure 'Enable/Disable PerfTrack' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.10.28.2 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.29.2 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.29.2 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.29.2 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.29.2 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.29.2 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.29.2 (L1) Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.29.3 Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.29.3 Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.58.2 Ensure 'Turn on Basic feed authentication over HTTP' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v5.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.58.2 Ensure 'Turn on Basic feed authentication over HTTP' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v5.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
ARDC-CL-000085 - Adobe Reader DC must disable Adobe Send for Signature.	DISA STIG Adobe Acrobat Reader DC Classic Track v2r1	Windows	CONFIGURATION MANAGEMENT
ARDC-CL-000100 - Adobe Reader DC must disable Online SharePoint Access.	DISA STIG Adobe Acrobat Reader DC Classic Track v2r1	Windows	CONFIGURATION MANAGEMENT
ARDC-CL-000345 - Adobe Reader DC must enable FIPS mode.	DISA STIG Adobe Acrobat Reader DC Classic Track v2r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
ARDC-CN-000025 - Adobe Reader DC must Block Websites.	DISA STIG Adobe Acrobat Reader DC Continuous Track v2r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Choose drive encryption method and cipher strength (Windows 10 [Version 1511] and later) - EncryptionMethodWithXtsFdv	MSCT Windows 10 1803 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Choose drive encryption method and cipher strength (Windows 10 [Version 1511] and later) - EncryptionMethodWithXtsOs	MSCT Windows 10 1803 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DISA_VMware_vSphere_8.0_vCenter_Appliance_Secure_Token_Service_(STS)_STIG_v2r1.audit from DISA VMware vSphere 8.0 vCenter Appliance Secure Token Service (STS) STIG v2r1	DISA VMware vSphere 8.0 vCenter Appliance Secure Token Service (STS) STIG v2r1	Unix
F5BI-DM-300046 - The F5 BIG-IP appliance must be configured to use multifactor authentication (MFA) for interactive logins.	DISA F5 BIG-IP TMOS NDM STIG v1r2	F5	AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION
SQL4-00-038000 - SQL Server must generate Trace or Audit records when concurrent logons/connections by the same user from different workstations occur - Event ID 14	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-038000 - SQL Server must generate Trace or Audit records when concurrent logons/connections by the same user from different workstations occur - Event ID 16	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-038000 - SQL Server must generate Trace or Audit records when concurrent logons/connections by the same user from different workstations occur - Event ID 17	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL4-00-038000 - SQL Server must generate Trace or Audit records when concurrent logons/connections by the same user from different workstations occur - SUCCESSFUL_LOGIN_GROUP	DISA STIG SQL Server 2014 Instance DB Audit v2r4	MS_SQLDB	AUDIT AND ACCOUNTABILITY
WN10-CC-000063 - Windows 10 systems must use either Group Policy or an approved Mobile Device Management (MDM) product to enforce STIG compliance.	DISA Microsoft Windows 10 STIG v3r6	Windows	CONFIGURATION MANAGEMENT
WN11-CC-000063 - Windows 11 systems must use either Group Policy or an approved Mobile Device Management (MDM) product to enforce STIG compliance.	DISA Microsoft Windows 11 STIG v2r7	Windows	CONFIGURATION MANAGEMENT
WN16-DC-000280 - Domain controllers must have a PKI server certificate.	DISA Microsoft Windows Server 2016 STIG v2r10	Windows	IDENTIFICATION AND AUTHENTICATION
WN19-DC-000010 - Windows Server 2019 must only allow administrators responsible for the domain controller to have Administrator rights on the system.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	ACCESS CONTROL
WN19-DC-000400 - Windows Server 2019 Deny log on locally user right on domain controllers must be configured to prevent unauthenticated access.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	ACCESS CONTROL
WN22-DC-000010 - Windows Server 2022 must only allow administrators responsible for the domain controller to have Administrator rights on the system.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	ACCESS CONTROL
WN22-DC-000100 - Windows Server 2022 Active Directory Domain Controllers Organizational Unit (OU) object must have the proper access control permissions.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	ACCESS CONTROL
WN22-DC-000200 - Windows Server 2022 Active Directory Domain Controllers Organizational Unit (OU) object must be configured with proper audit settings.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
WN22-DC-000400 - Windows Server 2022 Deny log on locally user right on domain controllers must be configured to prevent unauthenticated access.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	ACCESS CONTROL
WN25-DC-000010 - Windows Server 2025 must only allow administrators responsible for the domain controller to have Administrator rights on the system.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	ACCESS CONTROL
WN25-DC-000050 - Windows Server 2025 Kerberos policy user ticket renewal maximum lifetime must be limited to seven days or less.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	IDENTIFICATION AND AUTHENTICATION
WN25-DC-000200 - Windows Server 2025 Active Directory (AD) Domain Controllers Organizational Unit (OU) object must be configured with proper audit settings.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search