| 1.7.1 Enabling Post-Quantum (PQ) on IKEv2 VPNs | CIS Palo Alto Firewall 11 v1.1.0 L2 | Palo_Alto | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |
| 2.2.30 Ensure 'Deny log on as a service' to include 'Enterprise Admins Group and Domain Admins Group' (STIG MS only) | CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS | Windows | ACCESS CONTROL |
| 4.4 Defend against Denial of Service Attacks | CIS ISC BIND 9.0/9.5 v2.0.0 | Unix | |
| 4.11.55.1.1 (L1) Ensure 'Allow Basic authentication' is set to 'Disabled' | CIS Microsoft Intune for Windows 10 v4.0.0 L1 | Windows | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow Basic authentication for HTTP | MSCT Edge v114 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Allow Basic authentication for HTTP | MSCT Edge v88 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v128 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Microsoft Edge Version 83 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v86 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v87 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v88 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT edge v96 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v137 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v127 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v131 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| CISC-RT-000392 - The Cisco perimeter router must be configured to drop IPv6 undetermined transport packets. | DISA Cisco IOS XR Router RTR STIG v3r2 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
| Configure Microsoft Defender SmartScreen to block potentially unwanted apps | MSCT Edge v124 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Configure Microsoft Defender SmartScreen to block potentially unwanted apps | MSCT Edge v127 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Configure Microsoft Defender SmartScreen to block potentially unwanted apps | MSCT Edge v128 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Configure Microsoft Defender SmartScreen to block potentially unwanted apps | MSCT Edge v87 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Configure Microsoft Defender SmartScreen to block potentially unwanted apps | MSCT Edge v89 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Configure Microsoft Defender SmartScreen to block potentially unwanted apps | MSCT Edge v137 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Configure Windows Defender SmartScreen - EnabledV9 | MSCT Windows 10 1909 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Default Adobe Flash setting (obsolete) | MSCT Edge v91 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| EDGE-00-000012 - Search suggestions must be disabled. | DISA STIG Edge v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EDGE-00-000015 - Importing of cookies must be disabled. | DISA STIG Edge v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EDGE-00-000018 - Importing of home page settings must be disabled. | DISA STIG Edge v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EDGE-00-000048 - Supported authentication schemes must be configured. | DISA STIG Edge v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EDGE-00-000050 - Microsoft Defender SmartScreen must be enabled. | DISA STIG Edge v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EDGE-00-000065 - Visual Search must be disabled. | DISA STIG Edge v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EX13-CA-000050 - Exchange must have Audit record parameters set. | DISA Microsoft Exchange 2013 Client Access Server STIG v2r2 | Windows | AUDIT AND ACCOUNTABILITY |
| EX13-CA-000070 - Exchange must not send Customer Experience reports to Microsoft. | DISA Microsoft Exchange 2013 Client Access Server STIG v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EX13-CA-000090 - Exchange Local machine policy must require signed scripts. | DISA Microsoft Exchange 2013 Client Access Server STIG v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EX16-MB-000060 - Exchange Audit record parameters must be set. | DISA Microsoft Exchange 2016 Mailbox Server STIG v2r6 | Windows | AUDIT AND ACCOUNTABILITY |
| EX16-MB-000130 - Exchange must not send Customer Experience reports to Microsoft. | DISA Microsoft Exchange 2016 Mailbox Server STIG v2r6 | Windows | CONFIGURATION MANAGEMENT |
| EX16-MB-000170 - Exchange Local machine policy must require signed scripts. | DISA Microsoft Exchange 2016 Mailbox Server STIG v2r6 | Windows | CONFIGURATION MANAGEMENT |
| EX16-MB-002880 - The applications built-in Malware Agent must be disabled. | DISA Microsoft Exchange 2016 Mailbox Server STIG v2r6 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-MB-000061 - Exchange local machine policy must require signed scripts. | DISA Microsoft Exchange 2019 Mailbox Server STIG v2r2 | Windows | CONFIGURATION MANAGEMENT |
| OL07-00-040712 - The Oracle Linux operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | DISA Oracle Linux 7 STIG v3r2 | Unix | ACCESS CONTROL |
| Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads | MSCT Edge v98 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads | MSCT Edge v117 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads | MSCT Edge v88 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads | MSCT Edge v90 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads | MSCT Edge v91 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads | MSCT Edge v136 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| RHEL-07-040712 - The Red Hat Enterprise Linux operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | DISA Red Hat Enterprise Linux 7 STIG v3r15 | Unix | ACCESS CONTROL |
| Show the Reload in Internet Explorer mode button in the toolbar | MSCT Edge v117 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| SLES-15-040450 - The SUSE operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | DISA SUSE Linux Enterprise Server 15 STIG v2r4 | Unix | ACCESS CONTROL |
| Turn off the SmartScreen Filter | MSCT Windows 10 v1507 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| UBTU-22-255060 - Ubuntu 22.04 LTS SSH server must be configured to use only FIPS-validated key exchange algorithms. | DISA Canonical Ubuntu 22.04 LTS STIG v2r4 | Unix | ACCESS CONTROL |
