Item Search

Name	Audit Name	Plugin	Category
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
18.10.17.1 (L1) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.10.17.1 (L1) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.10.17.1 (L1) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 DC	Windows	CONFIGURATION MANAGEMENT
18.10.17.1 Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT
18.10.18.1 (L2) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.18.1 (L2) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.18.1 (L2) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.10.18.1 (L2) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.10.18.1 (L2) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 NG	Windows	CONFIGURATION MANAGEMENT
18.10.18.1 (L2) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.18.1 (L2) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.18.1 (L2) Ensure 'Enable App Installer' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.10.66.4 (L2) Ensure 'Turn off the Store application' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.10.66.4 (L2) Ensure 'Turn off the Store application' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 NG	Windows	CONFIGURATION MANAGEMENT
18.10.66.4 (L2) Ensure 'Turn off the Store application' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.10.66.4 (L2) Ensure 'Turn off the Store application' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.91.2 (L1) Ensure 'Allow networking in Windows Sandbox' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
18.10.91.2 (L1) Ensure 'Allow networking in Windows Sandbox' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.10.91.2 (L1) Ensure 'Allow networking in Windows Sandbox' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.91.2 (L1) Ensure 'Allow networking in Windows Sandbox' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.10.91.2 (L1) Ensure 'Allow networking in Windows Sandbox' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.91.2 (L1) Ensure 'Allow networking in Windows Sandbox' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	CONFIGURATION MANAGEMENT
18.10.91.3 (L1) Ensure 'Allow networking in Windows Sandbox' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.10.91.3 (L1) Ensure 'Allow networking in Windows Sandbox' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
80.3 (L1) Ensure 'Allow Telemetry' is set to 'Basic'	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
80.3 (L1) Ensure 'Allow Telemetry' is set to 'Basic'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
Allow certificates signed using SHA-1 when issued by local trust anchors (deprecated)	MSCT Edge v91 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow certificates signed using SHA-1 when issued by local trust anchors (deprecated)	MSCT Edge v88 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow certificates signed using SHA-1 when issued by local trust anchors (deprecated)	MSCT Edge v89 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow certificates signed using SHA-1 when issued by local trust anchors (deprecated)	MSCT Edge v90 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Configure Windows SmartScreen	MSCT Windows Server 2016 MS v1.0.0	Windows	ACCESS CONTROL
Network security: Do not store LAN Manager hash value on next password change	MSCT Windows 10 v22H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: Do not store LAN Manager hash value on next password change	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: Do not store LAN Manager hash value on next password change	MSCT Windows Server 2016 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: Do not store LAN Manager hash value on next password change	MSCT Windows Server 2019 MS v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: Do not store LAN Manager hash value on next password change	MSCT Windows 10 v1507 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: Do not store LAN Manager hash value on next password change	MSCT Windows 10 1909 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: Do not store LAN Manager hash value on next password change	MSCT Windows 11 v22H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
VM Tools: guest-8.tools-enable-syslog	VMware vSphere Security Configuration and Hardening Guide	VMware	CONFIGURATION MANAGEMENT
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server 1903 MS v1.19.9	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server v1909 MS v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WN19-00-000330 - Windows Server 2019 must not have the Microsoft FTP service installed unless required by the organization.	DISA Microsoft Windows Server 2019 STIG v3r4	Windows	CONFIGURATION MANAGEMENT
WN19-SO-000160 - Windows Server 2019 setting Microsoft network client: Digitally sign communications (always) must be configured to Enabled.	DISA Microsoft Windows Server 2019 STIG v3r4	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WN19-SO-000190 - Windows Server 2019 setting Microsoft network server: Digitally sign communications (always) must be configured to Enabled.	DISA Microsoft Windows Server 2019 STIG v3r4	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WN22-00-000330 - Windows Server 2022 must not have the Microsoft FTP service installed unless required by the organization.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	CONFIGURATION MANAGEMENT
WN22-SO-000160 - Windows Server 2022 setting Microsoft network client: Digitally sign communications (always) must be configured to Enabled.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WN22-SO-000190 - Windows Server 2022 setting Microsoft network server: Digitally sign communications (always) must be configured to Enabled.	DISA Microsoft Windows Server 2022 STIG v2r4	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search