| 1.2 Ensure Installation of Binary Packages | CIS PostgreSQL 11 OS v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.3.3 (L2) Ensure 'Control use of JavaScript JIT' is set to 'Enabled: Do not allow any site to run JavaScript JIT' | CIS Microsoft Edge v3.0.0 L2 | Windows | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.6.5 Apply Security Context to Your Pods and Containers | CIS Kubernetes 1.11 Benchmark v1.3.0 L2 | Unix | |
| 1.43 (L1) Ensure 'Allow personalization of ads, Microsoft Edge, search, news and other Microsoft services by sending browsing history, favorites and collections, usage and other browsing data to Microsoft' is set to 'Disabled' | CIS Microsoft Edge v3.0.0 L1 | Windows | CONFIGURATION MANAGEMENT |
| 1.78 (L1) Ensure 'Delete old browser data on migration' is set to 'Disabled' | CIS Microsoft Edge v3.0.0 L1 | Windows | CONFIGURATION MANAGEMENT |
| 1.93 (L1) Ensure 'Enable globally scoped HTTP auth cache' is set to 'Disabled' | CIS Microsoft Edge v3.0.0 L1 | Windows | CONFIGURATION MANAGEMENT |
| 1.107 (L1) Ensure 'Enables DALL-E themes generation' is set to 'Disabled' | CIS Microsoft Edge v3.0.0 L1 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| 1.130 (L1) Ensure 'Suppress the unsupported OS warning' is set to 'Disabled' | CIS Microsoft Edge v3.0.0 L1 | Windows | SYSTEM AND SERVICES ACQUISITION |
| 2.2.30 Ensure 'Deny log on as a service' to include 'Enterprise Admins Group and Domain Admins Group' (STIG MS only) | CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS | Windows | ACCESS CONTROL |
| 2.5.1.2.1 Ensure 'Authentication with Exchange server' is set to 'Enabled: Kerberos Password Authentication' | CIS Microsoft Office Enterprise v1.2.0 L1 | Windows | SYSTEM AND SERVICES ACQUISITION |
| 3.1 Ensure a fully-synchronized High Availability peer is configured | CIS Palo Alto Firewall 7 Benchmark L1 v1.0.0 | Palo_Alto | SYSTEM AND INFORMATION INTEGRITY |
| 4.1 Ensure Encryption of Data in Transit TLS/SSL (Transport Encryption) | CIS MongoDB 3.6 L1 Windows Audit v1.1.0 | Windows | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 4.11.55.1.1 (L1) Ensure 'Allow Basic authentication' is set to 'Disabled' | CIS Microsoft Intune for Windows 11 v4.0.0 L1 | Windows | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 5.7.3 Apply Security Context to Your Pods and Containers | CIS Kubernetes v1.20 Benchmark v1.0.1 L2 Master | Unix | CONFIGURATION MANAGEMENT |
| 18.9.97.1.1 (L1) Ensure 'Allow Basic authentication' is set to 'Disabled' | CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker | Windows | IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v89 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v136 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v124 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v107 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v90 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v129 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v135 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Microsoft Edge Version 80 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Microsoft Edge Version 81 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v84 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v85 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v91 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v133 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow users to proceed from the HTTPS warning page | MSCT Edge v134 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow using the deprecated U2F Security Key API (deprecated) | MSCT Edge v98 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Configure Windows Defender SmartScreen | MSCT Windows 10 1809 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Configure Windows Defender SmartScreen | MSCT Windows 10 1803 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Configure Windows Defender SmartScreen - EnabledV9 | MSCT Windows 10 v21H1 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Configure Windows Defender SmartScreen - EnabledV9 | MSCT Windows 10 1903 v1.19.9 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Configure Windows Defender SmartScreen - EnabledV9 | MSCT Windows 10 v20H2 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-MB-000016 - Exchange must have administrator audit logging enabled. | DISA Microsoft Exchange 2019 Mailbox Server STIG v2r2 | Windows | ACCESS CONTROL |
| EX19-MB-000064 - Exchange must not send customer experience reports to Microsoft. | DISA Microsoft Exchange 2019 Mailbox Server STIG v2r2 | Windows | CONFIGURATION MANAGEMENT |
| Prevent bypassing Microsoft Defender SmartScreen prompts for sites | MSCT Edge v98 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing Microsoft Defender SmartScreen prompts for sites | MSCT Microsoft Edge Version 80 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing Microsoft Defender SmartScreen prompts for sites | MSCT Edge v84 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing Microsoft Defender SmartScreen prompts for sites | MSCT Edge v87 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing Microsoft Defender SmartScreen prompts for sites | MSCT Edge v88 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing Microsoft Defender SmartScreen prompts for sites | MSCT Edge v135 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing Windows Defender SmartScreen prompts for files | MSCT Windows 10 1903 v1.19.9 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| Prevent bypassing Windows Defender SmartScreen prompts for files | MSCT Windows 10 v21H1 v1.0.0 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| RHEL-07-040712 - The Red Hat Enterprise Linux operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | DISA Red Hat Enterprise Linux 7 STIG v3r15 | Unix | ACCESS CONTROL |
| SLES-15-040450 - The SUSE operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | DISA SUSE Linux Enterprise Server 15 STIG v2r4 | Unix | ACCESS CONTROL |
| TCAT-AS-000030 - HTTP Strict Transport Security (HSTS) must be enabled. | DISA STIG Apache Tomcat Application Server 9 v3r2 Middleware | Unix | ACCESS CONTROL |
| UBTU-18-010421 - The Ubuntu operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | DISA STIG Ubuntu 18.04 LTS v2r15 | Unix | ACCESS CONTROL |
| UBTU-20-010045 - The Ubuntu operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | DISA Canonical Ubuntu 20.04 LTS STIG v2r2 | Unix | ACCESS CONTROL |
