Item Search

Name	Audit Name	Plugin	Category
1.4.7.5 Ensure' Scan Encrypted Macros in Excel Open XML Workbooks' is set to Enable (Scan encrypted macros (default))	CIS Microsoft Office Excel 2013 v1.0.1	Windows	SYSTEM AND INFORMATION INTEGRITY
1.6.6.4 Ensure 'Scan Encrypted Macros in PowerPoint Open XML Presentations' is set to Enabled (Scan Encrypted Macros)	CIS Microsoft Office PowerPoint 2016 v1.0.1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.2.21 Ensure 'Create symbolic links' is set to 'Administrators, NT VIRTUAL MACHINE\Virtual Machines' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
2.3.17.2 Ensure 'User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
2.3.27.12 (L1) Ensure 'Encryption mode for Information Rights Management (IRM)' is set to 'Enabled: Cipher Block Chaining (CBC)'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	SYSTEM AND SERVICES ACQUISITION
2.3.27.16 (L1) Ensure 'Macro Runtime Scan Scope' is set to 'Enabled: Enable for all documents'	CIS Microsoft Intune for Office v1.1.0 L1	Windows	SYSTEM AND INFORMATION INTEGRITY
2.5.10.8.1.2.5 Ensure 'Restrict upload method' is set to 'Enabled'	CIS Microsoft Office Enterprise v1.2.0 L1	Windows	ACCESS CONTROL
2.30.1 Ensure 'Disable Smart Document's Use of Manifests' is set to Enabled	CIS Microsoft Office 2016 v1.1.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
3.9 Set 'Enable automatic forwards to remote domains' to 'False'	CIS Microsoft Exchange Server 2013 Hub v1.1.0	Windows	CONFIGURATION MANAGEMENT
18.9.25.5 (L1) Ensure 'Default Protections for Recommended Software' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.25.5 (L1) Ensure 'Default Protections for Recommended Software' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.51.1.1 Ensure 'Configure Windows NTP Client' is set to 'Enabled: NT5DS' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
18.9.51.1.1 Ensure 'Configure Windows NTP Client' is set to 'Enabled: NT5DS' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	AUDIT AND ACCOUNTABILITY
18.10.24.5 (L1) Ensure 'Default Protections for Recommended Software' is set to 'Enabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
20.2 Ensure 'Active Directory AdminSDHolder object is configured with proper audit settings' (STIG DC only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
20.5 Ensure 'Active Directory Domain object is configured with proper audit settings' (STIG DC only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
20.5 Ensure 'Active Directory Domain object is configured with proper audit settings' (STIG DC only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
20.9 Ensure 'Active Directory RID Manager$ object is configured with proper audit settings' (STIG DC only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
20.9 Ensure 'Active Directory RID Manager$ object is configured with proper audit settings' (STIG DC only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
20.9 Ensure 'Active Directory RID Manager$ object is configured with proper audit settings' (STIG DC only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
20.52 Ensure 'Permissions for the Windows installation directory conform to minimum requirements'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
20.52 Ensure 'Permissions for the Windows installation directory conform to minimum requirements'	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DC	Windows	ACCESS CONTROL
20.56 Ensure 'Separate NSA-approved (Type 1) cryptography is used' (STIG DC only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
20.56 Ensure 'Separate NSA-approved (Type 1) cryptography is used' (STIG DC only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Disable additional security checks on VBA library references that may refer to unsafe locations on the local machine	MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Disable additional security checks on VBA library references that may refer to unsafe locations on the local machine	Microsoft 365 Apps for Enterprise 2306 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Disable additional security checks on VBA library references that may refer to unsafe locations on the local machine	MSCT M365 Apps for enterprise 2312 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Disable additional security checks on VBA library references that may refer to unsafe locations on the local machine	MSCT M365 Apps for enterprise 2412 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not allow Outlook object model scripts to run for public folders	MSCT Office 2016 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not show AutoRepublish warning alert	MSCT Office 2016 v1.0.0	Windows	ACCESS CONTROL
DTOO124 - Scripted Window Security must be enforced.	DISA STIG Microsoft Word 2013 v1r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO124 - Scripted Window Security must be enforced.	DISA STIG Microsoft Publisher 2013 v1r6	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO124 - Scripted Window Security must be enforced.	DISA STIG Microsoft Visio 2013 v1r5	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO124 - Scripted Window Security must be enforced.	DISA STIG Microsoft Outlook 2013 v1r14	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO126 - Add-on Management functionality must be allowed.	DISA STIG Microsoft Visio 2013 v1r5	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO127 - Add-ins to Office applications must be signed by a Trusted Publisher.	DISA STIG Microsoft Publisher 2013 v1r6	Windows	CONFIGURATION MANAGEMENT
DTOO127 - Add-ins to Office applications must be signed by a Trusted Publisher.	DISA STIG Microsoft InfoPath 2013 v1r6	Windows	CONFIGURATION MANAGEMENT
DTOO127 - Add-ins to Office applications must be signed by a Trusted Publisher.	DISA STIG Microsoft Word 2013 v1r7	Windows	CONFIGURATION MANAGEMENT
DTOO209 - Protection from zone elevation must be enforced.	DISA STIG Microsoft Publisher 2013 v1r6	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO209 - Protection from zone elevation must be enforced.	DISA STIG Microsoft OneNote 2013 v1r4	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO505 - Scripted Window Security must be enforced in PowerPoint Viewer.	DISA STIG Microsoft PowerPoint 2013 v1r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
DTOO509 - Protection from zone elevation must be enforced in PowerPoint Viewer.	DISA STIG Microsoft PowerPoint 2013 v1r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Excel 2 worksheets	MSCT Office 2016 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Excel 95 workbooks	MSCT Office 2016 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
PHTN-67-000129 - The Photon operating system must be configured to offload audit logs to a syslog server.	DISA STIG VMware vSphere 6.7 Photon OS v1r6	Unix	AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY
Prevent users from customizing attachment security settings	MSCT Office 2016 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Remove file extensions blocked as Level 1	MSCT Office 2016 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Set default file block behavior - openinprotectedview - powerpoint	MSCT Office 2016 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Set default file block behavior - openinprotectedview - word	MSCT Office 2016 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Word 6.0 binary documents and templates	MSCT Office 2016 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search