Item Search

Name	Audit Name	Plugin	Category
1.26 Set 'Remove file extensions blocked as Level 1' to 'Disabled'	CIS MS Office Outlook 2010 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.4.7.5 (L1) Ensure 'Turn off file validation' is set to 'Disabled'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.2.43 Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' (STIG MS only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.2.44 Ensure 'Impersonate a client after authentication' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE' (STIG MS only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	ACCESS CONTROL
18.6.14.2 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	IDENTIFICATION AND AUTHENTICATION
18.6.14.2 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - 3b576869-a4ec-4529-8536-b80a7769e899	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - 3b576869-a4ec-4529-8536-b80a7769e899	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - 5beb7efe-fd9a-4556-801d-275e5ffc04cc	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - 9e6c4e1f-7d60-472f-ba1a-a39ef669e4b2	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - 7674ba52-37eb-4a4f-a9a1-f0f9a1619a2c	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - 75668c1f-73b5-4cf0-bb93-3ecf5cb7cc84	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - 26190899-1602-49e8-8b27-eb1d0a1ce869	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - 26190899-1602-49e8-8b27-eb1d0a1ce869	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - d3e037e1-3eb8-44c8-a917-57927947596d	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - d3e037e1-3eb8-44c8-a917-57927947596d	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.47.5.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured - d4f940ab-401b-4efc-aadc-ad5f3c50688a	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.42.6.1.2 (L1) Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.42.6.1.2 (L1) Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.42.6.1.2 Ensure 'Configure Attack Surface Reduction rules: Set the state for each ASR rule' is configured	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
20.21 Ensure 'DoD Root Certificate Authority (CA) certificates' are installed in the 'Trusted Root Store'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
20.21 Ensure 'DoD Root Certificate Authority (CA) certificates' are installed in the 'Trusted Root Store'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
20.21 Ensure 'DoD Root Certificate Authority (CA) certificates' are installed in the 'Trusted Root Store'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
20.27 Ensure 'Event Viewer must be protected from unauthorized modification and deletion'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
20.27 Ensure 'Event Viewer must be protected from unauthorized modification and deletion' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
20.48 Ensure 'Permissions for the Application Event Log must prevent access by non-privileged accounts'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
20.62 Ensure 'Telnet Client is not installed' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	CONFIGURATION MANAGEMENT
Block macros from running in Office files from the Internet - blockcontentexecutionfrominternet - visio	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Block macros from running in Office files from the Internet - blockcontentexecutionfrominternet - word	MSCT Office 2016 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO600 - Macros must be blocked from running in Office files from the Internet.	DISA STIG Microsoft Word 2016 v1r1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
JUSX-DM-000166 - The Juniper SRX Services Gateway must be configured to use Junos 12.1 X46 or later to meet the minimum required version for DoD.	DISA Juniper SRX Services Gateway NDM v3r2	Juniper	CONFIGURATION MANAGEMENT
VBA Macro Notification Settings - access - vbarequirelmtrustedpublisher	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - powerpoint - vbadigsigtrustedpublishers	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND SERVICES ACQUISITION
VBA Macro Notification Settings - powerpoint - vbarequirelmtrustedpublisher	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - publisher - vbadigsigtrustedpublishers	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND SERVICES ACQUISITION
VBA Macro Notification Settings - publisher - vbarequiredigsigwithcodesigningeku	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - vbadigsigtrustedpublishers - visio	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - vbarequiredigsigwithcodesigningeku - powerpoint	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - vbarequiredigsigwithcodesigningeku - visio	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - vbarequiredigsigwithcodesigningeku - word	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - vbarequirelmtrustedpublisher - access	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - vbarequirelmtrustedpublisher - publisher	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - vbawarnings - access	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - vbawarnings - powerpoint	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - vbawarnings - publisher	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - visio - vbarequiredigsigwithcodesigningeku	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - visio - vbarequirelmtrustedpublisher	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - word - vbadigsigtrustedpublishers	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND SERVICES ACQUISITION
VBA Macro Notification Settings - word - vbarequiredigsigwithcodesigningeku	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
VBA Macro Notification Settings - word - vbarequirelmtrustedpublisher	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search