Item Search

Name	Audit Name	Plugin	Category
1.4.4 Ensure core dump storage is disabled	CIS Amazon Linux 2 v3.0.0 L1	Unix	ACCESS CONTROL
2.3.10.3 (L1) Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts and shares' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	ACCESS CONTROL
2.3.10.3 (L1) Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts and shares' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL
2.3.10.3 Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts' is set to 'Enabled' (STIG DC & MS only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.10.5 (L1) Ensure 'Network access: Let Everyone permissions apply to anonymous users' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
2.3.10.7 Ensure 'Network access: Let Everyone permissions apply to anonymous users' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.9 (L1) Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
2.3.10.12 Ensure 'Network access: Restrict anonymous access to Named Pipes and Shares' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.10.13 Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow' (MS only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.13 Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow' (MS only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.11.2 Ensure 'Network security: Allow LocalSystem NULL session fallback' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.11.2 Ensure 'Network security: Allow LocalSystem NULL session fallback' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.17.2 (L1) Ensure 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' is set to 'Prompt for consent on the secure desktop' or higher	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL
2.3.17.4 (L1) Ensure 'User Account Control: Detect application installations and prompt for elevation' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	ACCESS CONTROL
2.3.17.4 Ensure 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' is set to 'Prompt for consent on the secure desktop or Prompt for credentials on the secure desktop' (STIG only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.17.5 (L1) Ensure 'User Account Control: Only elevate UIAccess applications that are installed in secure locations' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
2.3.17.6 (L1) Ensure 'User Account Control: Run all administrators in Admin Approval Mode' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	ACCESS CONTROL
2.3.17.6 Ensure 'User Account Control: Detect application installations and prompt for elevation' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC	Windows	ACCESS CONTROL
2.3.17.6 Ensure 'User Account Control: Only elevate UIAccess applications that are installed in secure locations' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.17.7 (L1) Ensure 'User Account Control: Switch to the secure desktop when prompting for elevation' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
2.3.17.8 Ensure 'User Account Control: Run all administrators in Admin Approval Mode' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.17.9 Ensure 'User Account Control: Switch to the secure desktop when prompting for elevation' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	ACCESS CONTROL
18.7.10 Ensure 'Point and Print Restrictions: When installing drivers for a new connection' is set to 'Enabled: Show warning and elevation prompt'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.9.28.2 Ensure 'Do not display network selection UI' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC	Windows	ACCESS CONTROL
18.9.28.2 Ensure 'Do not display network selection UI' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
18.9.28.3 Ensure 'Do not enumerate connected users on domain-joined computers' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.9.28.4 (L1) Ensure 'Enumerate local users on domain-joined computers' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.10.15.2 (L1) Ensure 'Enumerate administrator accounts on elevation' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.15.2 (L1) Ensure 'Enumerate administrator accounts on elevation' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	ACCESS CONTROL
18.10.81.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	ACCESS CONTROL
20.40 Ensure 'Only Administrators have Administrator rights on the system' (STIG MS only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	ACCESS CONTROL
Apply UAC restrictions to local accounts on network logons	MSCT Windows 11 v1.0.0	Windows	ACCESS CONTROL
Configure Windows Defender SmartScreen - ShellSmartScreenLevel	MSCT Windows Server 1903 DC v1.19.9	Windows	ACCESS CONTROL
Disallow WinRM from storing RunAs credentials	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	ACCESS CONTROL
Do not show AutoRepublish warning alert	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	ACCESS CONTROL
Do not show AutoRepublish warning alert	MSCT M365 Apps for enterprise 2312 v1.0.0	Windows	ACCESS CONTROL
Do not show AutoRepublish warning alert	MSCT Office 365 ProPlus 1908 v1.0.0	Windows	ACCESS CONTROL
Do not show AutoRepublish warning alert	MSCT M365 Apps for enterprise 2412 v1.0.0	Windows	ACCESS CONTROL
Enumerate local users on domain-joined computers	MSCT Windows 10 v22H2 v1.0.0	Windows	ACCESS CONTROL
Join Microsoft MAPS	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Network access: Do not allow anonymous enumeration of SAM accounts	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	ACCESS CONTROL
Network access: Restrict clients allowed to make remote calls to SAM	MSCT Windows 10 v22H2 v1.0.0	Windows	ACCESS CONTROL
Network access: Restrict clients allowed to make remote calls to SAM	MSCT Windows Server 1903 MS v1.19.9	Windows	ACCESS CONTROL
Network access: Restrict clients allowed to make remote calls to SAM	MSCT Windows Server v1909 MS v1.0.0	Windows	ACCESS CONTROL
Network security: Allow LocalSystem NULL session fallback	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	ACCESS CONTROL
Recovery console: Allow automatic administrative logon	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	ACCESS CONTROL
Turn on PowerShell Script Block Logging - EnableScriptBlockLogging	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	ACCESS CONTROL
User Account Control: Admin Approval Mode for the Built-in Administrator account	MSCT Windows 11 v1.0.0	Windows	ACCESS CONTROL
User Account Control: Detect application installations and prompt for elevation	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	ACCESS CONTROL
User Account Control: Only elevate UIAccess applications that are installed in secure locations	MSCT Windows 10 v22H2 v1.0.0	Windows	ACCESS CONTROL

Detections

Analytics

Item Search