| 1.4.9 Ensure Configuration Attribute notListedCgisAllowed set to false | CIS IIS 7.0 L1 v1.7.1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 6.3 Disable the automatic run of safe files in Safari | CIS Apple OSX 10.10 Yosemite L1 v1.1.0 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| 6.3 Disable the automatic run of safe files in Safari | CIS Apple OSX 10.11 El Capitan L1 v1.0.0 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Access data sources across domains - Restricted Sites Zone | MSCT Windows 10 1607 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow file downloads | MSCT Windows 10 v1903 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow META REFRESH | MSCT Windows 10 v1511 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - ActivationFilterOverride - D27CDB6E-AE6D-11CF-96B8-444553540000 - Office - WOW6432Node | MSCT Office 365 ProPlus 1908 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - ActivationFilterOverride - D27CDB6E-AE6D-11CF-96B8-444553540000 - Office 16.0 | MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - ActivationFilterOverride - D27CDB6E-AE6D-11CF-96B8-444553540000 - Office 16.0 - WOW6432Node | MSCT M365 Apps for enterprise 2312 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - ActivationFilterOverride - D27CDB6E-AE6D-11CF-96B8-444553540000 - Office 16.0 - WOW6432Node | MSCT Office 365 ProPlus 1908 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - ActivationFilterOverride - D27CDB70-AE6D-11CF-96B8-444553540000 - Office | MSCT Office 365 ProPlus 1908 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - ActivationFilterOverride - D27CDB70-AE6D-11CF-96B8-444553540000 - Office | Microsoft 365 Apps for Enterprise 2306 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - ActivationFilterOverride - D27CDB70-AE6D-11CF-96B8-444553540000 - Office - WOW6432Node | MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - ActivationFilterOverride - D27CDB70-AE6D-11CF-96B8-444553540000 - Office 16.0 | Microsoft 365 Apps for Enterprise 2306 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - ActivationFilterOverride - D27CDB70-AE6D-11CF-96B8-444553540000 - Office 16.0 | MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - ActivationFilterOverride - D27CDB70-AE6D-11CF-96B8-444553540000 - Office 16.0 - WOW6432Node | MSCT M365 Apps for enterprise 2312 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - Compatibility Flags - D27CDB6E-AE6D-11CF-96B8-444553540000 - office - 64-bit | MSCT Office 2016 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - Compatibility Flags - D27CDB6E-AE6D-11CF-96B8-444553540000 - Office - WOW6432Node | MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - Compatibility Flags - D27CDB6E-AE6D-11CF-96B8-444553540000 - Office 16.0 - WOW6432Node | MSCT M365 Apps for enterprise 2312 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - Compatibility Flags - D27CDB6E-AE6D-11CF-96B8-444553540000 - Office 16.0 - WOW6432Node | MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - Compatibility Flags - D27CDB6E-AE6D-11CF-96B8-444553540000 - Office 16.0 - WOW6432Node | MSCT Microsoft 365 Apps for Enterprise 2206 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - Compatibility Flags - D27CDB70-AE6D-11CF-96B8-444553540000 - Office | MSCT Office 365 ProPlus 1908 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - Compatibility Flags - D27CDB70-AE6D-11CF-96B8-444553540000 - Office 16.0 | MSCT Microsoft 365 Apps for Enterprise 2112 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Block Flash activation in Office documents - Compatibility Flags - D27CDB70-AE6D-11CF-96B8-444553540000 - Office16 | MSCT M365 Apps for enterprise 2312 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Download unsigned ActiveX controls - Internet Zone | MSCT Windows 10 v1903 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Initialize and script ActiveX controls not marked as safe - Intranet Zone | MSCT Windows Server 1903 MS v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Initialize and script ActiveX controls not marked as safe - Intranet Zone | MSCT Windows 10 v1903 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Internet Zone - Disable 'Allow previously unused ActiveX controls to run without prompt' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Internet Zone - Disable 'Display video and animation on a web page that does not use external media player' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Internet Zone - Disable 'Download unsigned ActiveX controls' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Internet Zone - Disable 'Navigate windows and frames across different domains' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Internet Zone - Enable 'Enable XSS filter' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Local intranet Zone - Disable 'Allow META refresh' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Local intranet Zone - Disable 'Allow previously unused ActiveX controls to run without prompt' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Local intranet Zone - Disable 'Display video and animation on a web page that does not use external media player' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Local intranet Zone - Disable 'Download signed ActiveX controls' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Local intranet Zone - Disable 'Navigate windows and frames across different domains' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Local intranet Zone - Disable 'Run ActiveX controls and plug-ins' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Local intranet Zone - Enable 'Only allow approved domains to use ActiveX without prompt' | MS Security Advisory 2963983 Mitigation Settings audit | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Navigate windows and frames across different domains - Restricted Sites Zone | MSCT Windows Server 1903 MS v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Remove 'Run this time' button for outdated ActiveX controls in Internet Explorer | MSCT Windows Server 1903 MS v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Run ActiveX controls and plugins | MSCT Windows Server 1903 MS v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Salesforce.com : Data Access Control - 'Enable CSRF protection on GET requests on non-setup pages = true' | TNS Salesforce Best Practices Audit v1.2.0 | Salesforce.com | SYSTEM AND COMMUNICATIONS PROTECTION |
| Salesforce.com : Setting Session Security - 'Enable clickjack protection for non-setup customer Visualforce pages = true' | TNS Salesforce Best Practices Audit v1.2.0 | Salesforce.com | SYSTEM AND COMMUNICATIONS PROTECTION |
| Salesforce.com : Setting Session Security - 'Enable CSRF protection on POST requests on non-setup pages = true' | TNS Salesforce Best Practices Audit v1.2.0 | Salesforce.com | SYSTEM AND COMMUNICATIONS PROTECTION |
| Script ActiveX controls marked safe for scripting | MSCT Windows Server 1903 MS v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Turn on 64-bit tab processes when running in Enhanced Protected Mode on 64-bit versions of Windows | MSCT Windows 10 v1511 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Turn on Cross-Site Scripting Filter - Restricted Sites Zone | MSCT Windows 10 v1703 v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| Turn on Enhanced Protected Mode | MSCT Windows Server 1903 MS v1.0.0 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WG410 - Interactive scripts do not have proper access controls. - 'Virtual Directories - ASP Default Language set to VBScript' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
