Detections
Analytics

CSCv7|14.3

Title

Disable Workstation to Workstation Communication

Description

Disable all workstation to workstation communication to limit an attacker's ability to move laterally and compromise neighboring systems, through technologies such as Private VLANs or microsegmentation.

Reference Item Details

Category: Controlled Access Based on the Need to Know

Audit Items

View all Reference Audit Items

NamePluginAudit Name
18.3.1 Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)' - Enabled: Disable driver (recommended)WindowsCIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC
18.3.1 Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)' - Enabled: Disable driver (recommended)WindowsCIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS
18.3.2 Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'WindowsCIS Microsoft Windows Server 2016 STIG DC STIG v1.1.0
18.3.2 Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'WindowsCIS Microsoft Windows Server 2016 STIG MS STIG v1.1.0
18.3.2 Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'WindowsCIS Microsoft Windows Server 2019 STIG MS STIG v1.0.1
18.3.2 Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'WindowsCIS Microsoft Windows Server 2016 STIG MS L1 v1.1.0
18.3.2 Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'WindowsCIS Microsoft Windows Server 2019 STIG DC STIG v1.0.1
18.3.2 Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'WindowsCIS Microsoft Windows Server 2016 STIG DC L1 v1.1.0
18.3.2 Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'WindowsCIS Microsoft Windows Server 2019 STIG DC L1 v1.0.1
18.3.2 Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'WindowsCIS Microsoft Windows Server 2019 STIG MS L1 v1.0.1
18.3.2 Ensure 'Configure SMB v1 client' is set to 'Enabled: Bowser, MRxSmb20, NSI'WindowsCIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1
18.3.2 Ensure 'Configure SMB v1 client' is set to 'Enabled: Bowser, MRxSmb20, NSI'WindowsCIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0
18.3.2 Ensure 'Configure SMB v1 client' is set to 'Enabled: Bowser, MRxSmb20, NSI'WindowsCIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1
18.3.2 Ensure 'Configure SMB v1 client' is set to 'Enabled: Bowser, MRxSmb20, NSI'WindowsCIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1
18.3.2 Ensure 'Configure SMB v1 client' is set to 'Enabled: Bowser, MRxSmb20, NSI'WindowsCIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0
18.3.2 Ensure 'Configure SMB v1 client' is set to 'Enabled: Bowser, MRxSmb20, NSI'WindowsCIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1
18.3.2 Ensure 'Configure SMB v1 server' is set to 'Disabled' - DisabledWindowsCIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise v2.0.0 L1 + BL
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Windows Server 2012 MS L1 v3.0.0
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Windows 10 EMS Gateway v2.0.0 L1
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Windows Server 2012 DC L1 v3.0.0
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Windows 11 Enterprise v2.0.0 L1
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Windows 11 Enterprise v2.0.0 L1 + BL
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Windows Server 2012 R2 DC L1 v3.0.0
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise v2.0.0 L1 + NG
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise v2.0.0 L1 + BL + NG
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise v2.0.0 L1
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Windows Server 2012 R2 MS L1 v3.0.0
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows Server 2019 DC L1 v2.0.0
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows Server 2022 v2.0.0 L1 MS
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows Server 2019 MS L1 v2.0.0
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows 11 Stand-alone v2.0.0 L1
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows 10 Stand-alone v2.0.0 L1 + NG
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows Server 2016 MS L1 v2.0.0
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows Server 2019 Standalone DC L1 vCIS Microsoft Windows Server 2019 Standalone DC L1 v1.0.0
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows 11 Stand-alone v2.0.0 L1 + BL
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows Server 2022 v2.0.0 L1 DC
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows 10 Stand-alone v2.0.0 L1
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows 10 Stand-alone v2.0.0 L1 + BL + NG
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows 10 Stand-alone v2.0.0 L1 + BL
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows Server 2016 DC L1 v2.0.0
18.10.89.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows Server 2019 MS Standalone L1 v1.0.0
18.10.90.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Intune for Windows 11 v2.0.0 L1 + NG
18.10.90.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Intune for Windows 11 v2.0.0 L1 + BL + NG
18.10.90.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Intune for Windows 10 v2.0.0 L1 + BL
18.10.90.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Intune for Windows 11 v2.0.0 L1
18.10.90.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Intune for Windows 10 v2.0.0 L1 + NG
18.10.90.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Intune for Windows 10 v2.0.0 L1
18.10.90.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Intune for Windows 10 v2.0.0 L1 + BL + NG
18.10.90.2.4 Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'WindowsCIS Microsoft Intune for Windows 11 v2.0.0 L1 + BL