Item Search

Name	Audit Name	Plugin	Category
1.1.3.11.8 Configure 'Network Security: Restrict NTLM: Outgoing NTLM traffic to remote servers'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
2.2.19 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests'	CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.25 Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2025 v2.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.25 Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)	CIS Microsoft Windows Server 2022 v5.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.26 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2025 v2.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.26 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)	CIS Microsoft Windows Server 2022 v5.0.0 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.3.11.1 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v2.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v5.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.11.1 Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	IDENTIFICATION AND AUTHENTICATION
49.21 (L1) Ensure 'Network security: Allow Local System to use computer identity for NTLM' is set to 'Allow'	CIS Microsoft Intune for Windows 11 v4.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION
CIS_MS_Windows_Server_2008_R2_DC_Level_1_v3.3.1.audit from CIS MS Windows Server 2008 R2 Benchmark v3.3.1	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows
CIS_MS_Windows_Server_2008_R2_MS_Level_2_v3.3.1.audit from CIS MS Windows Server 2008 R2 Benchmark v3.3.1	CIS Microsoft Windows Server 2008 R2 Member Server Level 2 v3.3.1	Windows
CIS_MS_Windows_Server_2008_v3.3.1_L1_DC.audit from CIS MS Windows Server 2008 non-R2 Benchmark v3.3.1	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows
WDigest Authentication	MSCT Windows 10 1803 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 10 1809 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 10 v2004 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 10 v20H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 11 v23H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server v2004 DC v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 11 v24H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 11 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server v20H2 DC v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server v20H2 MS v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 10 v22H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server 1903 MS v1.19.9	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server v1909 DC v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 10 1903 v1.19.9	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 10 v21H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 11 v22H2 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server 1903 DC v1.19.9	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server 2022 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 10 1909 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows 10 v21H1 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server v1909 MS v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server v2004 MS v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server 2019 DC v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997)	MSCT Windows Server 2019 MS v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997) - UseLogonCredential	MSCT Windows Server 2025 DC v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
WDigest Authentication (disabling may require KB2871997) - UseLogonCredential	MSCT Windows Server 2025 MS v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY

Detections

Analytics

Item Search