Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.3.11.7 Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

IDENTIFICATION AND AUTHENTICATION

Access data sources across domains - Internet ZoneMSCT Windows Server 2025 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Access this computer from the networkMSCT Windows Server v20H2 DC v1.0.0Windows

ACCESS CONTROL

Accounts: Limit local account use of blank passwords to console logon onlyMSCT Windows Server v20H2 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Accounts: Limit local account use of blank passwords to console logon only - LimitBlankPasswordUseMSCT Windows Server 2025 DC v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

Allow active scriptingMSCT Windows Server v20H2 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Allow Basic authentication - Service - AllowBasicMSCT Windows Server v20H2 DC v1.0.0Windows

ACCESS CONTROL

Allow indexing of encrypted files - AllowIndexingEncryptedStoresOrItemsMSCT Windows Server 2025 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Allow only approved domains to use ActiveX controls without prompt - Internet ZoneMSCT Windows Server 2025 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Allow unencrypted traffic - Client - AllowUnencryptedTrafficMSCT Windows Server 2025 DC v1.0.0Windows

ACCESS CONTROL

Allow VBScript to run in Internet Explorer - Internet ZoneMSCT Windows Server 2025 DC v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Audit Account LockoutMSCT Windows Server 2025 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Authentication Policy ChangeMSCT Windows Server 2025 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Credential ValidationMSCT Windows Server 2025 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit insecure guest logon - LanmanServer AuditInsecureGuestLogonMSCT Windows Server 2025 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Kerberos Authentication ServiceMSCT Windows Server v20H2 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Kerberos Service Ticket OperationsMSCT Windows Server 2025 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit LogonMSCT Windows Server v20H2 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Other Logon/Logoff EventsMSCT Windows Server v20H2 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Other Object Access EventsMSCT Windows Server v20H2 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Security Group ManagementMSCT Windows Server 2025 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Security State ChangeMSCT Windows Server v20H2 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit Security System ExtensionMSCT Windows Server 2025 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit System IntegrityMSCT Windows Server 2025 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Audit User Account ManagementMSCT Windows Server 2025 DC v1.0.0Windows

AUDIT AND ACCOUNTABILITY

Automatic prompting for file downloads - Internet ZoneMSCT Windows Server v20H2 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Boot-Start Driver Initialization Policy - DriverLoadPolicyMSCT Windows Server 2025 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Configure Attack Surface Reduction rules - e6db77e5-3df2-4cf1-b95a-636979351e5bMSCT Windows Server 2025 DC v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Configure detection for potentially unwanted applicationsMSCT Windows Server 2025 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure enhanced anti-spoofing - EnhancedAntiSpoofingMSCT Windows Server 2025 DC v1.0.0Windows

CONFIGURATION MANAGEMENT

Configure hash algorithms for certificate logon - KDC PKINITSHA1MSCT Windows Server 2025 DC v1.0.0Windows
Configure hash algorithms for certificate logon - Kerberos PKInitSHA256MSCT Windows Server 2025 DC v1.0.0Windows
Configure Windows Defender SmartScreen - EnableSmartScreenMSCT Windows Server 2025 DC v1.0.0Windows

ACCESS CONTROL

Perform volume maintenance tasksMSCT Windows Server v2004 MS v1.0.0Windows

ACCESS CONTROL

Prevent bypassing SmartScreen Filter warnings about files that are not commonly downloaded from the InternetMSCT Windows Server v2004 MS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Prevent enabling lock screen cameraMSCT Windows Server v2004 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

Prevent enabling lock screen slide showMSCT Windows Server v2004 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

Require secure RPC communicationMSCT Windows Server v2004 MS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Reset account lockout counter afterMSCT Windows Server v2004 MS v1.0.0Windows

ACCESS CONTROL

Run ActiveX controls and pluginsMSCT Windows Server v2004 MS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Send file samples when further analysis is requiredMSCT Windows Server v2004 MS v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Set client connection encryption levelMSCT Windows Server v2004 MS v1.0.0Windows

ACCESS CONTROL

Set the default behavior for AutoRunMSCT Windows Server v2004 MS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Show security warning for potentially unsafe files - Restricted Sites ZoneMSCT Windows Server v2004 MS v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

Specify the maximum log file size (KB) - ApplicationMSCT Windows Server v2004 MS v1.0.0Windows

AUDIT AND ACCOUNTABILITY

System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links)MSCT Windows Server v2004 MS v1.0.0Windows

CONFIGURATION MANAGEMENT

Turn on 64-bit tab processes when running in Enhanced Protected Mode on 64-bit versions of WindowsMSCT Windows Server v2004 MS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

Turn On Virtualization Based Security - EnableVirtualizationBasedSecurityMSCT Windows Server v2004 MS v1.0.0Windows

SYSTEM AND INFORMATION INTEGRITY

User Account Control: Behavior of the elevation prompt for standard usersMSCT Windows Server v2004 MS v1.0.0Windows

ACCESS CONTROL

Userdata persistence - Internet ZoneMSCT Windows Server v2004 MS v1.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION