Item Search

Name	Audit Name	Plugin	Category
2.2.22 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests, Local account and member of Administrators group' (MS only)	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
5.11 (L1) Ensure 'Microsoft FTP Service (FTPSVC)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	CONFIGURATION MANAGEMENT
5.12 (L1) Ensure 'Microsoft FTP Service (FTPSVC)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
5.12 (L1) Ensure 'Microsoft FTP Service (FTPSVC)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
5.12 (L1) Ensure 'Microsoft FTP Service (FTPSVC)' is set to 'Disabled' or 'Not Installed'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
5.27 Ensure 'Telnet (TlntSvr)' is set to 'Disabled' or 'Not Installed'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	CONFIGURATION MANAGEMENT
5.27 Ensure 'Telnet (TlntSvr)' is set to 'Disabled' or 'Not Installed'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	CONFIGURATION MANAGEMENT
6.1.1 Audit system file permissions	CIS Red Hat 6 Workstation L2 v3.0.0	Unix	ACCESS CONTROL
6.1.1 Audit system file permissions	CIS Red Hat 6 Server L2 v3.0.0	Unix	ACCESS CONTROL
18.5.4.1 Ensure 'Turn off multicast name resolution' is set to 'Enabled' - Enabled	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.9.6.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
18.9.28.3 (L1) Ensure 'Turn off app notifications on the lock screen' is set to 'Enabled'	CIS Microsoft Windows Server 2022 Stand-alone v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.9.28.4 (L1) Ensure 'Turn on convenience PIN sign-in' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
18.9.28.4 Ensure 'Enumerate local users on domain-joined computers' is set to 'Disabled' (MS only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.9.28.5 (L1) Ensure 'Turn off app notifications on the lock screen' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 DC	Windows	CONFIGURATION MANAGEMENT
18.9.28.5 Ensure 'Turn off app notifications on the lock screen' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT
18.9.28.5 Ensure 'Turn off app notifications on the lock screen' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	CONFIGURATION MANAGEMENT
18.9.28.6 (L1) Ensure 'Turn off picture password sign-in' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
18.9.49.1 (L1) Ensure 'Turn off the advertising ID' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.9.49.1 (L2) Ensure 'Turn off the advertising ID' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NG	Windows	CONFIGURATION MANAGEMENT
18.9.49.1 (L2) Ensure 'Turn off the advertising ID' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.9.49.1 (L2) Ensure 'Turn off the advertising ID' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L2 NG	Windows	CONFIGURATION MANAGEMENT
18.9.77.3.1 (L1) Ensure 'Configure local setting override for reporting to Microsoft MAPS' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.77.10.1 Ensure 'Scan removable drives' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
18.10.5.1 Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.6.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	ACCESS CONTROL
18.10.6.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.66.3 (L1) Ensure 'Turn off the offer to update to the latest version of Windows' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.10.66.3 (L1) Ensure 'Turn off the offer to update to the latest version of Windows' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.66.3 (L1) Ensure 'Turn off the offer to update to the latest version of Windows' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
18.10.66.3 (L1) Ensure 'Turn off the offer to update to the latest version of Windows' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.75.2.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.76.2.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.76.2.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.76.2.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.76.2.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.76.2.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.76.2.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.76.2.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1 BL	Windows	SYSTEM AND INFORMATION INTEGRITY
Restrict legacy JScript execution for Office - excel.exe	MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Restrict legacy JScript execution for Office - msaccess.exe	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Restrict legacy JScript execution for Office - mspub.exe	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Restrict legacy JScript execution for Office - onenote.exe	MSCT M365 Apps for enterprise 2412 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Restrict legacy JScript execution for Office - powerpnt.exe	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Restrict legacy JScript execution for Office - powerpnt.exe	Microsoft 365 Apps for Enterprise 2306 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Restrict legacy JScript execution for Office - visio.exe	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Restrict legacy JScript execution for Office - winword.exe	Microsoft 365 Apps for Enterprise 2306 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
This settings controls whether Network Protection is allowed to be configured into block or audit mode on Windows Server.	MSCT Windows Server 2025 DC v1.0.0	Windows

Detections

Analytics

Item Search