| 1.1.1.8 Ensure usb-storage kernel module is not available | CIS Oracle Linux 9 v2.0.0 L2 Workstation | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.1.8 Ensure usb-storage kernel module is not available | CIS Red Hat Enterprise Linux 7 v4.0.0 L2 Workstation | Unix | MEDIA PROTECTION |
| 1.1.1.8 Ensure usb-storage kernel module is not available | CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Server | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.1.8 Ensure usb-storage kernel module is not available | CIS Red Hat Enterprise Linux 9 v2.0.0 L2 Workstation | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.1.8 Ensure usb-storage kernel module is not available | CIS CentOS Linux 7 v4.0.0 L1 Server | Unix | MEDIA PROTECTION |
| 1.1.1.8 Ensure usb-storage kernel module is not available | CIS Oracle Linux 7 v4.0.0 L1 Server | Unix | MEDIA PROTECTION |
| 1.1.1.8 Ensure usb-storage kernel module is not available | CIS AlmaLinux OS 9 v2.0.0 L1 Server | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.1.8 Ensure usb-storage kernel module is not available | CIS AlmaLinux OS 9 v2.0.0 L2 Workstation | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.1.8 Ensure usb-storage kernel module is not available | CIS Debian Linux 11 v2.0.0 L1 Server | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.1.8 Ensure usb-storage kernel module is not available | CIS Oracle Linux 7 v4.0.0 L2 Workstation | Unix | MEDIA PROTECTION |
| 1.1.1.9 Ensure usb-storage kernel module is not available | CIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.1.9 Ensure usb-storage kernel module is not available | CIS Ubuntu Linux 20.04 LTS v3.0.0 L1 Server | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.1.9 Ensure usb-storage kernel module is not available | CIS Ubuntu Linux 20.04 LTS v3.0.0 L2 Workstation | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.1.9 Ensure usb-storage kernel module is not available | CIS Debian Linux 12 v1.1.0 L1 Server | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.10 Disable USB Storage | CIS Ubuntu Linux 18.04 LTS v2.2.0 L1 Server | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.10 Disable USB Storage | CIS Fedora 28 Family Linux Server L1 v2.0.0 | Unix | MEDIA PROTECTION |
| 1.1.10 Disable USB Storage | CIS CentOS Linux 8 Workstation L2 v2.0.0 | Unix | MEDIA PROTECTION |
| 1.1.10 Disable USB Storage | CIS Debian Linux 10 v2.0.0 L1 Server | Unix | MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 1.1.10 Disable USB Storage | CIS Fedora 28 Family Linux Workstation L2 v2.0.0 | Unix | MEDIA PROTECTION |
| 1.1.23 Disable USB Storage - lsmod | CIS Distribution Independent Linux Workstation L2 v2.0.0 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| 1.1.23 Disable USB Storage - lsmod | CIS Oracle Linux 6 Server L1 v2.0.0 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| 1.1.23 Disable USB Storage - lsmod | CIS Red Hat 6 Server L1 v3.0.0 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| 1.1.23 Disable USB Storage - modprobe | CIS Red Hat 6 Server L1 v3.0.0 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| 1.1.23 Disable USB Storage - modprobe | CIS Oracle Linux 6 Workstation L2 v2.0.0 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| 1.1.23 Disable USB Storage - modprobe | CIS Red Hat 6 Workstation L2 v3.0.0 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| 1.1.28 Disable USB Storage - modprobe | CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION |
| 1.1.28 Disable USB Storage - modprobe | CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L2 Workstation | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION |
| 4.7 (L2) Ensure 'Controls the mode of DNS-over-HTTPS' is set to 'Enabled: DNS-over-HTTPS without insecure fallback' | CIS Google Chrome L2 v3.0.0 | Windows | ACCESS CONTROL, AWARENESS AND TRAINING, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| APPL-14-005130 - The macOS system must enforce installation of XProtect Remediator and Gatekeeper updates automatically. | DISA Apple macOS 14 Sonoma STIG v2r4 | Unix | CONFIGURATION MANAGEMENT |
| Big Sur - Enforce Installation of XProtect, MRT, and Gatekeeper Updates Automatically | NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Big Sur - Enforce Installation of XProtect, MRT, and Gatekeeper Updates Automatically | NIST macOS Big Sur v1.4.0 - All Profiles | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Catalina - Enforce Installation of XProtect, MRT, and Gatekeeper Updates Automatically | NIST macOS Catalina v1.5.0 - 800-53r5 High | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Catalina - Enforce Installation of XProtect, MRT, and Gatekeeper Updates Automatically | NIST macOS Catalina v1.5.0 - All Profiles | Unix | SYSTEM AND INFORMATION INTEGRITY |
| DTAM165 - McAfee VirusScan On-Access Default Processes Policies must be configured to detect unwanted programs. | DISA McAfee VirusScan 8.8 Managed Client STIG v6r1 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Enforce Installation of XProtect, MRT, and Gatekeeper Updates Automatically | NIST macOS Monterey v1.0.0 - 800-53r5 High | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Enforce Installation of XProtect, MRT, and Gatekeeper Updates Automatically | NIST macOS Monterey v1.0.0 - 800-53r5 Low | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Enforce Installation of XProtect, MRT, and Gatekeeper Updates Automatically | NIST macOS Monterey v1.0.0 - All Profiles | Unix | SYSTEM AND INFORMATION INTEGRITY |
| SYMP-AG-000250 - Symantec ProxySG providing intermediary services for FTP must inspect outbound FTP communications traffic for protocol compliance and protocol anomalies. | DISA Symantec ProxySG Benchmark ALG v1r3 | BlueCoat | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| User Account Control: Detect application installations and prompt for elevation | MSCT Windows 10 1903 v1.19.9 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation | MSCT Windows 10 v20H2 v1.0.0 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation | MSCT Windows 11 v1.0.0 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation | MSCT Windows Server 1903 DC v1.19.9 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation | MSCT Windows Server v2004 DC v1.0.0 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation | MSCT Windows Server 2019 MS v1.0.0 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation | MSCT MSCT Windows Server 2022 DC v1.0.0 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation | MSCT Windows Server 2022 v1.0.0 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation | MSCT Windows Server v20H2 DC v1.0.0 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation | MSCT Windows Server v20H2 MS v1.0.0 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation | MSCT Windows 11 v22H2 v1.0.0 | Windows | ACCESS CONTROL |
| User Account Control: Detect application installations and prompt for elevation - EnableInstallerDetection | MSCT Windows Server 2025 MS v1.0.0 | Windows | ACCESS CONTROL |
