Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.2.7 (L1) Ensure 'Allow log on locally' is set to 'Administrators'CIS Windows Server 2012 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.7 (L1) Ensure 'Allow log on locally' is set to 'Administrators'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.12 (L1) Ensure 'Change the time zone' is set to 'Administrators, LOCAL SERVICE'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.14 (L1) Ensure 'Create a token object' is set to 'No One'CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DCWindows

ACCESS CONTROL

2.2.15 (L1) Ensure 'Create global objects' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'CIS Windows Server 2012 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.15 (L1) Ensure 'Create global objects' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MSWindows

ACCESS CONTROL

2.2.16 (L1) Ensure 'Create permanent shared objects' is set to 'No One'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.16 (L1) Ensure 'Create permanent shared objects' is set to 'No One'CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DCWindows

ACCESS CONTROL

2.2.17 (L1) Ensure 'Create symbolic links' is set to 'Administrators' (DC only)CIS Windows Server 2012 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.20 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests' (DC only)CIS Windows Server 2012 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.20 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests' (DC only)CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.22 (L1) Ensure 'Deny log on as a batch job' to include 'Guests'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.23 (L1) Ensure 'Deny log on as a service' to include 'Guests'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.24 (L1) Ensure 'Deny log on locally' to include 'Guests'CIS Windows Server 2012 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.33 (L1) Ensure 'Increase scheduling priority' is set to 'Administrators'CIS Windows Server 2012 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.34 (L1) Ensure 'Load and unload device drivers' is set to 'Administrators'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.35 (L1) Ensure 'Lock pages in memory' is set to 'No One'CIS Windows Server 2012 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.35 (L1) Ensure 'Lock pages in memory' is set to 'No One'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.41 (L1) Ensure 'Replace a process level token' is set to 'LOCAL SERVICE, NETWORK SERVICE'CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DCWindows

ACCESS CONTROL

2.2.43 (L1) Ensure 'Profile system performance' is set to 'Administrators, NT SERVICE\WdiServiceHost'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.2.45 (L1) Ensure 'Restore files and directories' is set to 'Administrators'CIS Windows Server 2012 R2 DC L1 v3.0.0Windows

ACCESS CONTROL

2.3.10.8 (L1) Configure 'Network access: Remotely accessible registry paths' is configuredCIS Microsoft Windows Server 2019 v3.0.1 L1 DCWindows

ACCESS CONTROL

2.3.10.8 (L1) Configure 'Network access: Remotely accessible registry paths' is configuredCIS Microsoft Windows Server 2019 v3.0.1 L1 MSWindows

ACCESS CONTROL

2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configuredCIS Microsoft Windows 11 Enterprise v4.0.0 L1Windows

ACCESS CONTROL

2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configuredCIS Microsoft Windows 11 Stand-alone v4.0.0 L1Windows

ACCESS CONTROL

2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths' is configuredCIS Microsoft Windows Server 2025 v1.0.0 L1 MSWindows

ACCESS CONTROL

Access Credential Manager as a trusted callerMSCT Windows 11 v24H2 v1.0.0Windows

ACCESS CONTROL

Access this computer from the networkMSCT Windows 11 v22H2 v1.0.0Windows

ACCESS CONTROL

Back up files and directoriesMSCT Windows 11 v23H2 v1.0.0Windows

ACCESS CONTROL

Create permanent shared objectsMSCT Windows Server 2025 MS v1.0.0Windows

ACCESS CONTROL

Create permanent shared objectsMSCT Windows 11 v22H2 v1.0.0Windows

ACCESS CONTROL

Create permanent shared objectsMSCT Windows 11 v24H2 v1.0.0Windows

ACCESS CONTROL

Debug programsMSCT Windows 11 v24H2 v1.0.0Windows

ACCESS CONTROL

Deny access to this computer from the networkMSCT Windows 11 v24H2 v1.0.0Windows

ACCESS CONTROL

Deny log on through Remote Desktop ServicesMSCT Windows 11 v22H2 v1.0.0Windows

ACCESS CONTROL

Deny log on through Remote Desktop ServicesMSCT Windows 11 v24H2 v1.0.0Windows

ACCESS CONTROL

Force shutdown from a remote systemMSCT Windows 11 v23H2 v1.0.0Windows

ACCESS CONTROL

Impersonate a client after authenticationMSCT Windows 11 v24H2 v1.0.0Windows

ACCESS CONTROL

Load and unload device driversMSCT Windows Server 2025 DC v1.0.0Windows

ACCESS CONTROL

Load and unload device driversMSCT Windows 11 v22H2 v1.0.0Windows

ACCESS CONTROL

Modify firmware environment valuesMSCT Windows 11 v22H2 v1.0.0Windows

ACCESS CONTROL

Perform volume maintenance tasksMSCT Windows 11 v23H2 v1.0.0Windows

ACCESS CONTROL

Perform volume maintenance tasksMSCT Windows 11 v24H2 v1.0.0Windows

ACCESS CONTROL

Profile single processMSCT Windows 11 v23H2 v1.0.0Windows

ACCESS CONTROL

Profile single processMSCT Windows 11 v22H2 v1.0.0Windows

ACCESS CONTROL

Restore files and directoriesMSCT Windows Server 2025 DC v1.0.0Windows

ACCESS CONTROL

Restore files and directoriesMSCT Windows 11 v22H2 v1.0.0Windows

ACCESS CONTROL

Restore files and directoriesMSCT Windows 11 v24H2 v1.0.0Windows

ACCESS CONTROL

Take ownership of files or other objectsMSCT Windows Server 2025 MS v1.0.0Windows

ACCESS CONTROL

Take ownership of files or other objectsMSCT Windows 11 v23H2 v1.0.0Windows

ACCESS CONTROL