Item Search

Name	Audit Name	Plugin	Category
1.2.4.2.2.27 Set 'Allow Secure Boot for integrity validation' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.6.3 Ensure 'Domain member: Digitally sign secure channel data (when possible)' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.6.3 Ensure 'Domain member: Digitally sign secure channel data (when possible)' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.6.6 Ensure 'Domain member: Require strong (Windows 2000 or later) session key' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.6.6 Ensure 'Domain member: Require strong (Windows 2000 or later) session key' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.6.6 Ensure 'Domain member: Require strong (Windows 2000 or later) session key' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.6.6 Ensure 'Domain member: Require strong (Windows 2000 or later) session key' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.8.2 Ensure 'Microsoft network client: Digitally sign communications (if server agrees)' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.9.3 (L1) Ensure 'Microsoft network server: Digitally sign communications (if client agrees)' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG DC	Windows	IDENTIFICATION AND AUTHENTICATION
18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGON	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
18.6.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication', 'Require Integrity', and 'Require Privacy' set for all NETLOGON and SYSVOL shares'	CIS Microsoft Windows Server 2019 v3.0.1 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION
18.7.6 (L1) Ensure 'Configure RPC listener settings: Authentication protocol to use for incoming RPC connections:' is set to 'Enabled: Negotiate' or higher	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION
18.7.6 (L1) Ensure 'Configure RPC listener settings: Authentication protocol to use for incoming RPC connections:' is set to 'Enabled: Negotiate' or higher	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	IDENTIFICATION AND AUTHENTICATION
18.7.6 (L1) Ensure 'Configure RPC listener settings: Authentication protocol to use for incoming RPC connections:' is set to 'Enabled: Negotiate' or higher	CIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.23.1 (L2) Ensure 'Support device authentication using certificate' is set to 'Enabled: Automatic'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L2 MS	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.23.1 (L2) Ensure 'Support device authentication using certificate' is set to 'Enabled: Automatic'	CIS Microsoft Windows Server 2022 v3.0.0 L2 Member Server	Windows	IDENTIFICATION AND AUTHENTICATION
Configure RPC listener settings - ForceKerberosForRpc	MSCT Windows 11 v22H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain controller: LDAP server signing requirements	MSCT Windows Server 1903 DC v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Domain controller: LDAP server signing requirements	MSCT Windows Server 2019 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally encrypt or sign secure channel data (always)	MSCT Windows Server 2022 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally encrypt or sign secure channel data (always)	MSCT Windows Server v1909 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally encrypt or sign secure channel data (always)	MSCT Windows 10 1903 v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally encrypt or sign secure channel data (always)	MSCT Windows 10 v20H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally encrypt secure channel data (when possible)	MSCT Windows 10 v21H1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally encrypt secure channel data (when possible)	MSCT Windows Server 1903 DC v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally encrypt secure channel data (when possible)	MSCT Windows 10 v1507 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally encrypt secure channel data (when possible)	MSCT Windows 10 v2004 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally sign secure channel data (when possible)	MSCT Windows 11 v23H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally sign secure channel data (when possible)	MSCT Windows Server 1903 MS v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally sign secure channel data (when possible)	MSCT Windows Server v1909 MS v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Digitally sign secure channel data (when possible)	MSCT Windows 10 1909 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Domain member: Require strong (Windows 2000 or later) session key	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Enable insecure guest logons	MSCT Windows 10 1803 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Enable insecure guest logons	MSCT Windows Server 1903 DC v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Enable insecure guest logons	MSCT Windows Server 2016 MS v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Enable insecure guest logons	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
ESXi : enable-chap-auth	VMWare vSphere 6.0 Hardening Guide	VMware	IDENTIFICATION AND AUTHENTICATION
Hardened UNC Paths - \\*\NETLOGON	MSCT Windows 11 v22H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Hardened UNC Paths - \\*\NETLOGON	MSCT Windows Server 2022 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Hardened UNC Paths - \\*\SYSVOL	MSCT Windows 10 v21H1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Hardened UNC Paths - Network Provider - SYSVOL	MSCT Windows 10 1809 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Microsoft network client: Digitally sign communications (always)	MSCT Windows Server 1903 DC v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Microsoft network client: Digitally sign communications (always)	MSCT Windows Server 1903 MS v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Microsoft network client: Digitally sign communications (always)	MSCT Windows 10 1903 v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Microsoft network client: Digitally sign communications (always)	MSCT Windows 10 v2004 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Microsoft network client: Digitally sign communications (if server agrees)	MSCT Windows 10 v1507 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Microsoft network server: Digitally sign communications (always)	MSCT MSCT Windows Server 2022 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
Microsoft network server: Digitally sign communications (always)	MSCT Windows Server 1903 DC v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Microsoft network server: Digitally sign communications (always)	MSCT Windows Server 1903 MS v1.19.9	Windows	IDENTIFICATION AND AUTHENTICATION
Microsoft network server: Digitally sign communications (always)	MSCT Windows Server v1909 DC v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search