| 2.2.3 Ensure X Window System is not installed | CIS Amazon Linux 2 STIG v1.0.0 L1 | Unix | CONFIGURATION MANAGEMENT |
| 2.11 Java 6 is not the default Java runtime | CIS Apple OSX 10.9 L2 v1.3.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.11 Java 6 is not the default Java runtime | CIS Apple OSX 10.10 Yosemite L1 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
| 10.16 Enable memory leak listener | CIS Apache Tomcat 10 L1 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 10.16 Enable memory leak listener | CIS Apache Tomcat 9 L1 v1.2.0 Middleware | Unix | CONFIGURATION MANAGEMENT |
| 10.16 Enable memory leak listener | CIS Apache Tomcat 10 L1 v1.1.0 Middleware | Unix | CONFIGURATION MANAGEMENT |
| 10.17 Enable memory leak listener - verify present | CIS Apache Tomcat 8 L1 v1.1.0 Middleware | Unix | CONFIGURATION MANAGEMENT |
| DISA STIG VMware vSphere ESXi 6 Security Technical Implementation Guide Version 1 Release 5 | DISA STIG VMware vSphere 6.x ESXi OS v1r5 | Unix | |
| DISA STIG VMware vSphere ESXi 6 Security Technical Implementation Guide Version 1 Release 5 | DISA STIG VMware vSphere 6.x ESXi v1r5 | VMware | |
| DISA_STIG_Google_Chrome_Windows_v2r9.audit from DISA Google Chrome Current Windows v2r9 STIG | DISA STIG Google Chrome v2r9 | Windows | |
| DISA_STIG_Microsoft_Windows_Server_2022_v2r2.audit from DISA Microsoft Windows Server 2022 v2r2 STIG | DISA Windows Server 2022 STIG v2r2 | Windows | |
| DISA_STIG_MS_Windows_Privileged_Access_Workstation_v3r1.audit from DISA Microsoft Windows PAW v3r1 STIG | DISA MS Windows Privileged Access Workstation v3r1 | Windows | |
| DISA_STIG_Windows_10_v3r2.audit from DISA Microsoft Windows 10 v3r2 STIG | DISA Windows 10 STIG v3r2 | Windows | |
| DISA_STIG_Windows_11_v2r2.audit from DISA Microsoft Windows 11 v2r2 STIG | DISA Windows 11 STIG v2r2 | Windows | |
| Ensure '*\Java\jre*\bin\java.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Windows Server 2012 MS L1 v3.0.0 | Windows | |
| Ensure '*\Java\jre*\bin\java.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Windows Server 2012 R2 MS L1 v3.0.0 | Windows | |
| Ensure '*\Java\jre*\bin\java.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Windows Server 2012 R2 DC L1 v3.0.0 | Windows | |
| Ensure '*\Java\jre*\bin\java.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1 | Windows | |
| Ensure '*\Java\jre*\bin\java.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1 | Windows | |
| Ensure '*\Java\jre*\bin\javaw.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Windows Server 2012 MS L1 v3.0.0 | Windows | |
| Ensure '*\Java\jre*\bin\javaw.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Windows Server 2012 R2 MS L1 v3.0.0 | Windows | |
| Ensure '*\Java\jre*\bin\javaw.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Windows Server 2012 DC L1 v3.0.0 | Windows | |
| Ensure '*\Java\jre*\bin\javaw.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1 | Windows | |
| Ensure '*\Java\jre*\bin\javaw.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Windows Server 2012 R2 DC L1 v3.0.0 | Windows | |
| Ensure '*\Java\jre*\bin\javaw.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1 | Windows | |
| Ensure '*\Java\jre*\bin\javaws.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Windows Server 2012 DC L1 v3.0.0 | Windows | |
| Ensure '*\Java\jre*\bin\javaws.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1 | Windows | |
| Ensure '*\Java\jre*\bin\javaws.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1 | Windows | |
| Ensure '*\Java\jre*\bin\javaws.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Windows Server 2012 R2 DC L1 v3.0.0 | Windows | |
| Ensure '*\Java\jre*\bin\javaws.exe' is 'Windows: Registry Value' to '-HeapSpray' | CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1 | Windows | |
| GEN000100 - The operating system must be a supported release. | DISA STIG Solaris 10 X86 v2r4 | Unix | CONFIGURATION MANAGEMENT |
| JRE8-UX-000020 - Oracle JRE 8 deployment.config file must contain proper keys and values - deployment.system.config | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | CONFIGURATION MANAGEMENT |
| JRE8-UX-000020 - Oracle JRE 8 deployment.config file must contain proper keys and values - deployment.system.config.mandatory | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | CONFIGURATION MANAGEMENT |
| JRE8-UX-000060 - Oracle JRE 8 must default to the most secure built-in setting - deployment.security.level | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | CONFIGURATION MANAGEMENT |
| JRE8-UX-000060 - Oracle JRE 8 must default to the most secure built-in setting - deployment.security.level.locked | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | CONFIGURATION MANAGEMENT |
| JRE8-UX-000070 - Oracle JRE 8 must be set to allow Java Web Start (JWS) applications - deployment.webjava.enabled | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | CONFIGURATION MANAGEMENT |
| JRE8-UX-000070 - Oracle JRE 8 must be set to allow Java Web Start (JWS) applications - deployment.webjava.enabled.locked | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | CONFIGURATION MANAGEMENT |
| JRE8-UX-000100 - Oracle JRE 8 must set the option to enable online certificate validation - deployment.security.validation.ocsp | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | IDENTIFICATION AND AUTHENTICATION |
| JRE8-UX-000100 - Oracle JRE 8 must set the option to enable online certificate validation - deployment.security.validation.ocsp.locked | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | IDENTIFICATION AND AUTHENTICATION |
| JRE8-UX-000110 - Oracle JRE 8 must prevent the download of prohibited mobile code - deployment.security.blacklist.check | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| JRE8-UX-000110 - Oracle JRE 8 must prevent the download of prohibited mobile code - deployment.security.blacklist.check.locked | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| JRE8-UX-000160 - Oracle JRE 8 must lock the option to enable users to check for revocation - deployment.security.revocation.check | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | IDENTIFICATION AND AUTHENTICATION |
| JRE8-UX-000170 - Oracle JRE 8 must prompt the user for action prior to executing mobile code - deployment.insecure.jres | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| JRE8-UX-000170 - Oracle JRE 8 must prompt the user for action prior to executing mobile code - deployment.insecure.jres.locked | DISA STIG Oracle JRE 8 Unix v1r3 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| JRE8-WN-000020 - Oracle JRE 8 deployment.config file must contain proper keys and values - deployment.system.config | DISA STIG Oracle JRE 8 Windows v2r1 | Windows | CONFIGURATION MANAGEMENT |
| JRE8-WN-000020 - Oracle JRE 8 deployment.config file must contain proper keys and values - deployment.system.config.mandatory | DISA STIG Oracle JRE 8 Windows v2r1 | Windows | CONFIGURATION MANAGEMENT |
| JRE8-WN-000030 - Oracle JRE 8 must have a deployment.properties file present. | DISA STIG Oracle JRE 8 Windows v2r1 | Windows | CONFIGURATION MANAGEMENT |
| PHTN-67-000079 - The Photon operating system must ensure root $PATH entries are appropriate. | DISA STIG VMware vSphere 6.7 Photon OS v1r6 | Unix | CONFIGURATION MANAGEMENT |
| WG490 IIS6 - Java software installed on the web server must be limited to class files and the JAVA virtual machine. | DISA STIG IIS 6.0 Site Checklist v6r16 | Windows | CONFIGURATION MANAGEMENT |
| WG490 W22 - Java software on production web servers must be limited to class files and the JAVA virtual machine. - 'ScriptAlias_Match - *.java' | DISA STIG Apache Site 2.2 Windows v1r13 | Windows | CONFIGURATION MANAGEMENT |
