Item Search

Name	Audit Name	Plugin	Category
Allow cut, copy or paste operations from the clipboard via script - Restricted Sites Zone	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow scriptlets - Internet Zone	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow scriptlets - Restricted Sites Zone	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow software to run or install even if the signature is invalid	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Allow updates to status bar via script - Restricted Sites Zone	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow user control over installs	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
Audit Detailed File Share	MSCT Windows Server v2004 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Other System Events	MSCT Windows Server v2004 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Security Group Management	MSCT Windows Server v2004 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Security State Change	MSCT Windows Server v2004 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings	MSCT Windows Server v2004 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Configure Attack Surface Reduction rules - 9e6c4e1f-7d60-472f-ba1a-a39ef669e4b2	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Configure enhanced anti-spoofing	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not allow drive redirection	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Do not allow passwords to be saved	MSCT Windows Server v2004 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Don't run antimalware programs against ActiveX controls - Local Machine Zone	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Enable computer and user accounts to be trusted for delegation	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
Enable dragging of content from different domains across windows - Internet Zone	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Enable Structured Exception Handling Overwrite Protection (SEHOP)	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Force shutdown from a remote system	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
Hardened UNC Paths - \\*\SYSVOL	MSCT Windows Server v2004 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Impersonate a client after authentication	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
Include local path when user is uploading files to a server - Restricted Sites Zone	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Initialize and script ActiveX controls not marked as safe - Restricted Sites Zone	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Interactive logon: Machine account lockout threshold	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
Internet Explorer Processes - FEATURE_DISABLE_MK_PROTOCOL - explorer.exe	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Internet Explorer Processes - FEATURE_MIME_HANDLING - explorer.exe	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Internet Explorer Processes - FEATURE_RESTRICT_ACTIVEXINSTALL - iexplore.exe	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Internet Explorer Processes - FEATURE_WINDOW_RESTRICTIONS - iexplore.exe	MSCT Windows Server v2004 DC v1.0.0	Windows	CONFIGURATION MANAGEMENT
Internet Explorer Processes - FEATURE_ZONE_ELEVATION - (Reserved)	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Internet Explorer Processes - FEATURE_ZONE_ELEVATION - explorer.exe	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Internet Explorer Processes - FEATURE_ZONE_ELEVATION - iexplore.exe	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Lock pages in memory	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
MSS: (DisableIPSourceRouting IPv6) IP source routing protection level (protects against packet spoofing)	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Network access: Allow anonymous SID/Name translation	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
Network security: Allow LocalSystem NULL session fallback	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
Network security: LAN Manager authentication level	MSCT Windows Server v2004 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Perform volume maintenance tasks	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
Sign-in and lock last interactive user automatically after a restart	MSCT Windows 10 v20H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Take ownership of files or other objects	MSCT Windows 10 v20H2 v1.0.0	Windows	ACCESS CONTROL
Turn off Autoplay	MSCT Windows 10 v20H2 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Turn off the Security Settings Check feature	MSCT Windows 10 v20H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Turn on the auto-complete feature for user names and passwords on forms - FormSuggest Control Panel	MSCT Windows 10 v20H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Turn On Virtualization Based Security - HypervisorEnforcedCodeIntegrity	MSCT Windows 10 v20H2 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Turn On Virtualization Based Security - RequirePlatformSecurityFeatures	MSCT Windows 10 v20H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
Use Pop-up Blocker - Internet Zone	MSCT Windows 10 v20H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode	MSCT Windows 10 v20H2 v1.0.0	Windows	ACCESS CONTROL
User Account Control: Run all administrators in Admin Approval Mode	MSCT Windows 10 v20H2 v1.0.0	Windows	ACCESS CONTROL
Web sites in less privileged Web content zones can navigate into this zone - Restricted Sites Zone	MSCT Windows 10 v20H2 v1.0.0	Windows	ACCESS CONTROL

Detections

Analytics

Item Search