| AOSX-09-000835 - System must employ automated mechanisms to determine the state of system components with regard to flaw remediation. | DISA STIG Apple Mac OSX 10.9 v1r2 | Unix | |
| AOSX-10-000835 - System must employ automated mechanisms to determine the state of system components with regard to flaw remediation. | DISA STIG Apple Mac OSX 10.10 v1r5 | Unix | |
| AOSX-11-000835 - The system must employ auto mechanisms to determine the state of system components with regard to flaw remediation. | DISA STIG Apple Mac OSX 10.11 v1r6 | Unix | |
| AOSX-12-000835 - The OS X system must employ automated mechanisms to determine the state of system components with regard to flaw remediation using the following frequency: continuously where HBSS is used; 30 days for any additional internal network scans not covered by HBSS; and annually for external scans by Computer Network Defense Service Provider (CNDSP). | DISA STIG Apple Mac OSX 10.12 v1r6 | Unix | |
| APPL-11-000015 - The macOS system must utilize an Endpoint Security Solution (ESS) and implement all DoD required modules. | DISA STIG Apple macOS 11 v1r7 | Unix | |
| APPL-11-000015 - The macOS system must utilize an Endpoint Security Solution (ESS) and implement all DoD required modules. | DISA STIG Apple macOS 11 v1r6 | Unix | |
| APPL-12-000015 - The macOS system must utilize an ESS solution and implement all DoD required modules - ESS and implement all DoD required modules. | DISA STIG Apple macOS 12 v1r4 | Unix | |
| APPL-12-000015 - The macOS system must utilize an ESS solution and implement all DoD required modules - ESS and implement all DoD required modules. | DISA STIG Apple macOS 12 v1r5 | Unix | |
| APPL-12-000015 - The macOS system must utilize an ESS solution and implement all DoD required modules - ESS and implement all DoD required modules. | DISA STIG Apple macOS 12 V1R2 | Unix | |
| APPL-13-000015 - The macOS system must use an Endpoint Security Solution (ESS) and implement all DOD required modules. | DISA STIG Apple macOS 13 v1r3 | Unix | |
| Big Sur - Configure Automated Flaw Remediation | NIST macOS Big Sur v1.4.0 - 800-53r5 High | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Big Sur - Configure Automated Flaw Remediation | NIST macOS Big Sur v1.4.0 - 800-53r4 High | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Big Sur - Configure Automated Flaw Remediation | NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Big Sur - Configure Automated Flaw Remediation | NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Big Sur - Configure Automated Flaw Remediation | NIST macOS Big Sur v1.4.0 - All Profiles | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Big Sur - Configure Automated Flaw Remediation | NIST macOS Big Sur v1.4.0 - CNSSI 1253 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Catalina - Must Use HBSS | NIST macOS Catalina v1.5.0 - All Profiles | Unix | SYSTEM AND INFORMATION INTEGRITY |
| GEN008820 - The system package management tool must not automatically obtain updates | DISA STIG HP-UX 11.31 v1r19 | Unix | |
| Monterey - Configure Automated Flaw Remediation | NIST macOS Monterey v1.0.0 - CNSSI 1253 | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Configure Automated Flaw Remediation | NIST macOS Monterey v1.0.0 - All Profiles | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Configure Automated Flaw Remediation | NIST macOS Monterey v1.0.0 - 800-53r5 Moderate | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Configure Automated Flaw Remediation | NIST macOS Monterey v1.0.0 - 800-53r4 High | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Configure Automated Flaw Remediation | NIST macOS Monterey v1.0.0 - 800-53r5 High | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Configure Automated Flaw Remediation | NIST macOS Monterey v1.0.0 - 800-53r4 Moderate | Unix | SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Must Use HBSS | NIST macOS Monterey v1.0.0 - All Profiles | Unix | SYSTEM AND INFORMATION INTEGRITY |
| OL08-00-010001 - The OL 8 operating system must implement the Endpoint Security for Linux Threat Prevention tool. | DISA Oracle Linux 8 STIG v1r6 | Unix | |
| OL08-00-010001 - The OL 8 operating system must implement the Endpoint Security for Linux Threat Prevention tool. | DISA Oracle Linux 8 STIG v1r1 | Unix | |
| RHEL-08-010001 - The RHEL 8 operating system must implement the Endpoint Security for Linux Threat Prevention tool. | DISA Red Hat Enterprise Linux 8 STIG v1r9 | Unix | |
| RHEL-08-010001 - The RHEL 8 operating system must implement the Endpoint Security for Linux Threat Prevention tool. | DISA Red Hat Enterprise Linux 8 STIG v1r7 | Unix | |
| RHEL-08-010001 - The RHEL 8 operating system must implement the Endpoint Security for Linux Threat Prevention tool. | DISA Red Hat Enterprise Linux 8 STIG v1r8 | Unix | |
| RHEL-08-010001 - The RHEL 8 operating system must implement the Endpoint Security for Linux Threat Prevention tool. | DISA Red Hat Enterprise Linux 8 STIG v1r11 | Unix | |
| RHEL-08-010001 - The RHEL 8 operating system must implement the Endpoint Security for Linux Threat Prevention tool. | DISA Red Hat Enterprise Linux 8 STIG v1r3 | Unix | |
| RHEL-08-010001 - The RHEL 8 operating system must implement the Endpoint Security for Linux Threat Prevention tool. | DISA Red Hat Enterprise Linux 8 STIG v1r5 | Unix | |
| RHEL-09-211025 - RHEL 9 must implement the Endpoint Security for Linux Threat Prevention tool. | DISA Red Hat Enterprise Linux 9 STIG v1r2 | Unix | |
| SLES-15-010001 - The SUSE operating system must deploy Endpoint Security for Linux Threat Prevention (ENSLTP) - active | DISA SLES 15 STIG v1r1 | Unix | |
| SLES-15-010001 - The SUSE operating system must implement the Endpoint Security for Linux Threat Prevention tool | DISA SLES 15 STIG v1r10 | Unix | |
| SLES-15-010001 - The SUSE operating system must implement the Endpoint Security for Linux Threat Prevention tool - installed | DISA SLES 15 STIG v1r6 | Unix | |
| SLES-15-010001 - The SUSE operating system must implement the Endpoint Security for Linux Threat Prevention tool - installed | DISA SLES 15 STIG v1r3 | Unix | |
| SLES-15-010001 - The SUSE operating system must implement the Endpoint Security for Linux Threat Prevention tool - installed | DISA SLES 15 STIG v1r9 | Unix | |
| SLES-15-010001 - The SUSE operating system must implement the Endpoint Security for Linux Threat Prevention tool - running | DISA SLES 15 STIG v1r9 | Unix | |
| SLES-15-010001 - The SUSE operating system must implement the Endpoint Security for Linux Threat Prevention tool - running | DISA SLES 15 STIG v1r3 | Unix | |
| SLES-15-010001 - The SUSE operating system must implement the Endpoint Security for Linux Threat Prevention tool. | DISA SLES 15 STIG v1r13 | Unix | |
| UBTU-20-010415 - The Ubuntu operating system must deploy Endpoint Security for Linux Threat Prevention (ENSLTP) | DISA STIG Ubuntu 20.04 LTS v1r9 | Unix | |
| UBTU-20-010415 - The Ubuntu operating system must deploy Endpoint Security for Linux Threat Prevention (ENSLTP) - ENSLTP | DISA STIG Ubuntu 20.04 LTS v1r10 | Unix | |
| UBTU-20-010415 - The Ubuntu operating system must deploy Endpoint Security for Linux Threat Prevention (ENSLTP) - installed | DISA STIG Ubuntu 20.04 LTS v1r1 | Unix | |
| UBTU-20-010415 - The Ubuntu operating system must deploy Endpoint Security for Linux Threat Prevention (ENSLTP) - running | DISA STIG Ubuntu 20.04 LTS v1r1 | Unix | |
| UBTU-22-211010 - Ubuntu 22.04 LTS must deploy an Endpoint Security Solution. | DISA STIG Canonical Ubuntu 22.04 LTS v1r1 | Unix | |
| WN08-GE-000028 - The system must employ automated mechanisms or must have an application installed that, on an organization defined frequency determines the state of information system components with regard to flaw remediation. | DISA Windows 8/8.1 STIG v1r23 | Windows | |
| WN11-00-000025 - Windows 11 must employ automated mechanisms to determine the state of system components with regard to flaw remediation using the following frequency: continuously, where ESS is used; 30 days, for any additional internal network scans not covered by ESS; and annually, for external scans by Computer Network Defense Service Provider (CNDSP). | DISA Windows 11 STIG v1r5 | Windows | |
| WN22-00-000290 - Windows Server 2022 must employ automated mechanisms to determine the state of system components with regard to flaw remediation using the following frequency: continuously, where Endpoint Security Solution (ESS) is used; 30 days, for any additional internal network scans not covered by ESS; and annually, for external scans by Computer Network Defense Service Provider (CNDSP). | DISA Windows Server 2022 STIG v1r1 | Windows | |
