| 1.1.1.1 Ensure cramfs kernel module is not available | CIS SUSE Linux Enterprise 16 v1.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT |
| 3.2.1 Ensure atm kernel module is not available | CIS SUSE Linux Enterprise 16 v1.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT |
| 3.2.2 Ensure can kernel module is not available | CIS Debian Linux 13 v1.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT |
| 3.2.5 Ensure sctp kernel module is not available | CIS Debian Linux 13 v1.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT |
| 3.2.6 Ensure tipc kernel module is not available | CIS Debian Linux 13 v1.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT |
| AIOS-17-010600 - Apple iOS/iPadOS 17 must implement the management setting: not allow automatic completion of Safari browser passcodes. | AirWatch - DISA Apple iOS/iPadOS 17 v2r2 | MDM | CONFIGURATION MANAGEMENT |
| AIOS-17-010800 - Apple iOS/iPadOS 17 must implement the management setting: not allow use of Handoff. | AirWatch - DISA Apple iOS/iPadOS 17 v2r2 | MDM | CONFIGURATION MANAGEMENT |
| AIOS-17-710700 - Apple iOS/iPadOS 17 must implement the management setting: Encrypt backups/Encrypt local backup. | AirWatch - DISA Apple iOS/iPadOS 17 BYOAD v1r2 | MDM | CONFIGURATION MANAGEMENT |
| Big Sur - Disable Calendar.app | NIST macOS Big Sur v1.4.0 - 800-171 | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Big Sur - Disable Calendar.app | NIST macOS Big Sur v1.4.0 - 800-53r4 High | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Big Sur - Disable Calendar.app | NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Big Sur - Disable Mail App | NIST macOS Big Sur v1.4.0 - 800-53r4 High | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Catalina - Disable Calendar.app | NIST macOS Catalina v1.5.0 - 800-53r4 High | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Catalina - Disable Calendar.app | NIST macOS Catalina v1.5.0 - 800-53r4 Moderate | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Catalina - Disable Calendar.app | NIST macOS Catalina v1.5.0 - All Profiles | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Catalina - Disable Mail App | NIST macOS Catalina v1.5.0 - 800-53r4 Low | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Catalina - Disable Mail App | NIST macOS Catalina v1.5.0 - 800-53r5 Low | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Catalina - Disable Mail App | NIST macOS Catalina v1.5.0 - 800-53r5 Moderate | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| DTBC-0021 - The URL protocol schema javascript must be disabled. | DISA Google Chrome Current Windows STIG v2r11 | Windows | CONFIGURATION MANAGEMENT |
| DTBC-0026 - Metrics reporting to Google must be disabled. | DISA Google Chrome Current Windows STIG v2r11 | Windows | CONFIGURATION MANAGEMENT |
| DTBC-0073 - Web Bluetooth API must be disabled. | DISA Google Chrome Current Windows STIG v2r11 | Windows | CONFIGURATION MANAGEMENT |
| DTBI031-IE11 - The Java permissions must be disallowed (Internet zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI036-IE11 - Functionality to drag and drop or copy and paste files must be disallowed (Internet zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI119-IE11 - File downloads must be disallowed (Restricted Sites zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI121-IE11 - Java permissions must be disallowed (Restricted Sites zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI126-IE11 - Functionality to drag and drop or copy and paste files must be disallowed (Restricted Sites zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI128-IE11 - Launching programs and files in IFRAME must be disallowed (Restricted Sites zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI395-IE11 - Scriptlets must be disallowed (Internet zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI415-IE11 - Automatic prompting for file downloads must be disallowed (Internet zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI440-IE11 - Java permissions must be disallowed (Locked Down Trusted Sites zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI495-IE11 - Pop-up Blocker must be enforced (Internet zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI500-IE11 - Pop-up Blocker must be enforced (Restricted Sites zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI630-IE11 - Internet Explorer Processes for Restrict File Download must be enforced (Reserved). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI645-IE11 - Internet Explorer Processes for restricting pop-up windows must be enforced (Reserved). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI649-IE11 - Internet Explorer Processes for restricting pop-up windows must be enforced (iexplore). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI715-IE11 - Crash Detection management must be enforced. | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI840-IE11 - Cross-Site Scripting Filter must be enforced (Internet zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI850-IE11 - Scripting of Internet Explorer WebBrowser Control must be disallowed (Restricted Sites zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI890-IE11 - Cross-Site Scripting Filter property must be enforced (Restricted Sites zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI910-IE11 - Status bar updates via script must be disallowed (Internet zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| DTBI940-IE11 - Scriptlets must be disallowed (Restricted Sites zone). | DISA STIG IE 11 v2r7 | Windows | CONFIGURATION MANAGEMENT |
| F5BI-AP-300045 - The F5 BIG-IP appliance must be configured to prohibit or restrict the use of unnecessary or prohibited functions, ports, protocols, and/or services, including those defined in the PPSM CAL and vulnerability assessments. | DISA F5 BIG-IP TMOS ALG STIG v1r2 | F5 | CONFIGURATION MANAGEMENT |
| Monterey - Disable the Internet Accounts System Preference Pane | NIST macOS Monterey v1.0.0 - 800-53r4 High | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Monterey - Disable the Internet Accounts System Preference Pane | NIST macOS Monterey v1.0.0 - All Profiles | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Monterey - Disable the Internet Accounts System Preference Pane | NIST macOS Monterey v1.0.0 - CNSSI 1253 | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Monterey - Disable the Internet Accounts System Preference Pane | NIST macOS Monterey v1.0.0 - 800-53r5 High | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| OL09-00-002391 - OL 9 must enable mitigations against processor-based vulnerabilities. | DISA Oracle Linux 9 STIG v1r5 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY |
| RHEL-09-212050 - RHEL 9 must enable mitigations against processor-based vulnerabilities. | DISA Red Hat Enterprise Linux 9 STIG v2r8 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY |
| RHEL-09-252025 - RHEL 9 must disable the chrony daemon from acting as a server. | DISA Red Hat Enterprise Linux 9 STIG v2r8 | Unix | CONFIGURATION MANAGEMENT |
| RHEL-10-701020 - RHEL 10 must enable mitigations against processor-based vulnerabilities. | DISA Red Hat Enterprise Linux 10 STIG v1r1 | Unix | CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY |
