Item Search

Name	Audit Name	Plugin	Category
1.1.4.3 Set 'Deny access to this computer from the network' to 'Guests'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.5 Set 'Create permanent shared objects' to 'No One'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.15 Set 'Create symbolic links' to 'Administrators'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.19 Debug programs = Administrators	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.22 Set 'Profile system performance' to 'NT SERVICE\WdiServiceHost,Administrators'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.28 Set 'Manage auditing and security log' to 'Administrators'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
2.2.1 Ensure 'Access Credential Manager as a trusted caller' is set to 'No One'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.2 Ensure 'Access this computer from the network' is set to 'Administrators, Remote Desktop Users'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.4 Ensure 'Adjust memory quotas for a process' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.6 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators, Remote Desktop Users'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.10 Ensure 'Create a pagefile' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.10 Ensure 'Create a pagefile' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.11 Ensure 'Create a token object' is set to 'No One'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.12 Ensure 'Create global objects' is set to 'Administrators, LOCAL SERVICE, NETWORK SERVICE, SERVICE'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.20 Ensure 'Deny log on through Remote Desktop Services' to include 'Guests, Local account'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.21 Ensure 'Enable computer and user accounts to be trusted for delegation' is set to 'No One'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.26 Ensure 'Load and unload device drivers' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.27 Ensure 'Lock pages in memory' is set to 'No One'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.2.30 Ensure 'Manage auditing and security log' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.31 Ensure 'Modify an object label' is set to 'No One'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.32 Ensure 'Modify firmware environment values' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.34 Ensure 'Profile single process' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.2.39 Ensure 'Take ownership of files or other objects' is set to 'Administrators'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
Access Credential Manager as a trusted caller	MSCT Windows 10 v21H2 v1.0.0	Windows	ACCESS CONTROL
Act as part of the operating system	MSCT Windows 10 v21H2 v1.0.0	Windows	ACCESS CONTROL
Allow log on locally	MSCT Windows 10 v1507 v1.0.0	Windows	ACCESS CONTROL
Back up files and directories	MSCT Windows 10 v21H2 v1.0.0	Windows	ACCESS CONTROL
Back up files and directories	MSCT Windows Server 1903 DC v1.19.9	Windows	ACCESS CONTROL
Create a pagefile	MSCT Windows 10 v21H2 v1.0.0	Windows	ACCESS CONTROL
Create global objects	MSCT Windows 10 v21H2 v1.0.0	Windows	ACCESS CONTROL
Create permanent shared objects	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Create permanent shared objects	MSCT Windows 10 v1507 v1.0.0	Windows	ACCESS CONTROL
Create permanent shared objects	MSCT Windows 10 v20H2 v1.0.0	Windows	ACCESS CONTROL
Deny log on through Remote Desktop Services	MSCT Windows 10 v1507 v1.0.0	Windows	ACCESS CONTROL
Enable computer and user accounts to be trusted for delegation	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Enable computer and user accounts to be trusted for delegation	MSCT Windows 10 v20H2 v1.0.0	Windows	ACCESS CONTROL
Enable computer and user accounts to be trusted for delegation	MSCT Windows Server 1903 DC v1.19.9	Windows	ACCESS CONTROL
Force shutdown from a remote system	MSCT Windows Server 1903 DC v1.19.9	Windows	ACCESS CONTROL
Impersonate a client after authentication	MSCT Windows Server 1903 DC v1.19.9	Windows	ACCESS CONTROL
Load and unload device drivers	MSCT Windows 10 v1507 v1.0.0	Windows	ACCESS CONTROL
Lock pages in memory	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Lock pages in memory	MSCT Windows 10 v2004 v1.0.0	Windows	ACCESS CONTROL
Manage auditing and security log	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Modify firmware environment values	MSCT Windows 10 v1507 v1.0.0	Windows	ACCESS CONTROL
Perform volume maintenance tasks	MSCT Windows 10 v2004 v1.0.0	Windows	ACCESS CONTROL
Perform volume maintenance tasks	MSCT Windows 10 v20H2 v1.0.0	Windows	ACCESS CONTROL
Restore files and directories	MSCT Windows 10 v1507 v1.0.0	Windows	ACCESS CONTROL
Restore files and directories	MSCT Windows 10 v21H2 v1.0.0	Windows	ACCESS CONTROL
Take ownership of files or other objects	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Take ownership of files or other objects	MSCT Windows 10 v1507 v1.0.0	Windows	ACCESS CONTROL

Detections

Analytics

Item Search