Item Search

Name	Audit Name	Plugin	Category
1.42 WN16-00-000430	CIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT II	Windows	CONFIGURATION MANAGEMENT
1.42 WN19-00-000420	CIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT II	Windows	CONFIGURATION MANAGEMENT
1.42 WN22-00-000420	CIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT II	Windows	CONFIGURATION MANAGEMENT
2.2 Ensure Access to Sensitive Site Features Is Restricted To Authenticated Principals Only - Applications	CIS IIS 7 L1 v1.8.0	Windows	ACCESS CONTROL
2.2 Ensure Access to Sensitive Site Features Is Restricted To Authenticated Principals Only - Default	CIS IIS 7 L1 v1.8.0	Windows
2.2.27 Ensure 'Log on as a batch job' is set to 'Administrators'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L2	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.28 (L2) Ensure 'Log on as a batch job' is set to 'Administrators'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NG	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.28 (L2) Ensure 'Log on as a batch job' is set to 'Administrators'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.28 (L2) Ensure 'Log on as a batch job' is set to 'Administrators'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 BL	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.33 Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.34 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.36 Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.41 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.2.41 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.44 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.2.44 Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2025 v2.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.45 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2016 v4.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.45 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.3 Ensure 'forms authentication' require SSL - Applications	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.2 Ensure 'debug' is turned off - Default	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
3.4 Ensure IIS HTTP detailed errors are hidden from displaying remotely - Applications	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
3.9 Ensure 'MachineKey validation method - .Net 4.5' is configured - Applications	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.10 Ensure global .NET trust level is configured - Default	CIS IIS 7 L1 v1.8.0	Windows	ACCESS CONTROL
4.1 Ensure 'maxAllowedContentLength' is configured - Default	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
4.4 Ensure non-ASCII characters in URLs are not allowed - Applications	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
4.4 Ensure non-ASCII characters in URLs are not allowed - Default	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND INFORMATION INTEGRITY
4.5 Configure Solaris Auditing - active audit policies = argv,cnt,zonename	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - active non-attributable flags = lo	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - active non-attributable flags = lo	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - active user flags = cis,ex,aa,ua,as,ss,lo,ft	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit condition = auditing	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit_binfile (active)	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit_binfile attributes: p_minfree=1;	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - audit_flags root = lo,ad,ft,ex,cis:no	CIS Solaris 11.1 L1 v1.0.0	Unix	AUDIT AND ACCOUNTABILITY
4.5 Configure Solaris Auditing - configured audit policies = argv,cnt,zonename	CIS Solaris 11 L1 v1.1.0	Unix	AUDIT AND ACCOUNTABILITY
6.1 Ensure FTP requests are encrypted - Control Channel Sites	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
6.1 Ensure FTP requests are encrypted - Data Channel Sites	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.3 Ensure SSLv3 is disabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.4 Ensure TLS 1.0 is enabled - DisabledByDefault	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.4 Ensure TLS 1.0 is enabled - enabled	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.9 Ensure RC2 Cipher Suites is disabled - RC2 40/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.10 Ensure RC4 Cipher Suites is disabled - RC4 40/128	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.12 Ensure AES 128/128 Cipher Suite is configured	CIS IIS 7 L1 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
7.14 Ensure TLS Cipher Suite ordering is configured	CIS IIS 7 L2 v1.8.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
89.24 (L2) Ensure 'Log On As Batch Job' is set to 'Administrators'	CIS Microsoft Intune for Windows 11 v4.0.0 L2	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
EX19-MB-000007 - Exchange must use encryption for Outlook Web App (OWA) access.	DISA Microsoft Exchange 2019 Mailbox Server STIG v2r3	Windows	ACCESS CONTROL
IIST-SI-000225 - The IIS 10.0 website must be configured to limit the maxURL.	DISA IIS 10.0 Site v2r14	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SV-000136 - The IIS 10.0 web server must augment re-creation to a stable and known baseline.	DISA IIS 10.0 Server v2r10	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
IIST-SV-000205 - The IIS 10.0 web server must enable HTTP Strict Transport Security (HSTS)	DISA IIS 10.0 Server v2r10	Windows	CONFIGURATION MANAGEMENT
WN22-00-000420 - Windows Server 2022 FTP servers must be configured to prevent anonymous logons.	DISA Microsoft Windows Server 2022 STIG v2r8	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search