Item Search

Name	Audit Name	Plugin	Category
1.1.1.3 Set 'Reset account lockout counter after' to '15 minute(s)'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.1.6 Set 'Password must meet complexity requirements' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
1.1.2.1 Set 'Audit Policy: Privilege Use: Sensitive Privilege Use' to 'Success and Failure'	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.1.2.6 Set 'Audit Policy: Policy Change: MPSSVC Rule-Level Policy Change' to 'No Auditing'	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.1.2.7 Set 'Audit Policy: Account Management: Distribution Group Management' to 'No Auditing'	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.1.2.16 Set 'Audit Policy: System: IPsec Driver' to 'Success and Failure'	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.1.2.17 Set 'Audit Policy: Account Management: Security Group Management' to 'Success and Failure'	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.1.2.42 Set 'Audit Policy: Privilege Use: Non Sensitive Privilege Use' to 'No Auditing'	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.1.2.44 Set 'Audit Policy: Logon-Logoff: Special Logon' to 'Success'	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.1.2.49 Set 'Audit Policy: Account Logon: Kerberos Service Ticket Operations' to 'No Auditing'	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.1.2.53 Set 'Audit Policy: Object Access: SAM' to 'No Auditing'	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.1.3.1.6 Set 'Accounts: Limit local account use of blank passwords to console logon only' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
1.1.3.2.3 Configure Audit: Audit the use of Backup and Restore privilege	CIS Windows 8 L1 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
1.1.3.4.2 Configure 'Devices: Restrict floppy access to locally logged-on user only'	CIS Windows 8 L1 v1.0.0	Windows	MEDIA PROTECTION
1.1.3.6.1 Set 'Interactive logon: Machine account lockout threshold' to 10 or fewer invalid logon attempts	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.3.6.7 Set 'Interactive logon: Prompt user to change password before expiration' to '14 or more day(s)'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.1.3.6.9 Configure 'Interactive logon: Message text for users attempting to log on'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.3.6.11 Configure 'Interactive logon: Message title for users attempting to log on'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.3.7.1 Set 'Microsoft network client: Send unencrypted password to third-party SMB servers' to 'Disabled'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
1.1.3.7.2 Set 'Microsoft network client: Digitally sign communications (always)' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.7.3 Set 'Microsoft network client: Digitally sign communications (if server agrees)' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.9.7 Configure 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted (3 recommended, 5 is default)'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.9.9 Configure 'MSS: (NoDefaultExempt) Configure IPSec exemptions for various types of network traffic.'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.9.10 Configure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.9.12 Configure 'MSS: (NoNameReleaseOnDemand) Allow the computer to ignore NetBIOS name release requests except from WINS servers'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
1.1.3.11.3 Set 'Network security: Allow Local System to use computer identity for NTLM' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
1.1.3.11.12 Set 'Network Security: Allow PKU2U authentication requeststo this computer to use online identities' to 'Disabled'	CIS Windows 8 L1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
1.1.3.11.16 Set 'Network security: LDAP client signing requirements' to 'Negotiate signing'	CIS Windows 8 L1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
1.1.3.11.17 Configure 'Network security: Force logoff when logon hours expire'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.3.14.2 Set 'System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.1.3.15.2 Set 'System objects: Require case insensitivity for nonWindows subsystems' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.1.3.17.4 Set 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' to 'Prompt for consent'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.12 Set 'Profile single process' to 'Administrators'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.13 Set 'Shut down the system' to 'Administrators, Users'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.4.26 Configure 'Log on as a batch job'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.2.4.2.2.5 Set 'Recovery Password' to 'Require 48-digit recovery password'	CIS Windows 8 L1 v1.0.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.2.7 Set 'Restrict crypto algorithms or cipher suites to the following:' to '2.16.840.1.101.3.4.1.2;2.16.840.1.101.3.4.1.42'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.2.9 Set 'Allow data recovery agent' to 'False'	CIS Windows 8 L1 v1.0.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.2.14 Set 'Omit recovery options from the BitLocker setup wizard' to 'True'	CIS Windows 8 L1 v1.0.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.2.19 Set 'Configure TPM startup:' to 'Do not allow TPM'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.2.22 Configure 'Enable use of BitLocker authentication requiring preboot keyboard input on slates'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.2.23 Configure 'Configure TPM platform validation profile for BIOS-based firmware configurations'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.2.4.2.3.5 Set 'Recovery Password' to 'Do not allow 48-digit recovery password'	CIS Windows 8 L1 v1.0.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.3.11 Set 'Do not enable BitLocker until recovery information is stored to AD DS for removable data drives' to 'False'	CIS Windows 8 L1 v1.0.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.3.12 Set 'Configure storage of BitLocker recovery information to AD DS:' to 'Backup recovery passwords and key packages'	CIS Windows 8 L1 v1.0.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.3.14 Set 'Omit recovery options from the BitLocker setup wizard' to 'True'	CIS Windows 8 L1 v1.0.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.5.1 Set 'Do not allow drive redirection' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
1.2.4.5.3 Set 'Encryption Level' to 'Enabled:High Level'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
2.3 Set 'Notify antivirus programs when opening attachments' to 'Enabled'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT
2.5 Configure 'Hide mechanisms to remove zone information'	CIS Windows 8 L1 v1.0.0	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search