| 2.1 Ensure that Azure Defender is set to On for Servers | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
| 2.2 Ensure that Azure Defender is set to On for App Service | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
| 2.3 Ensure that Azure Defender is set to On for Azure SQL database servers | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
| 2.4 Ensure that Azure Defender is set to On for SQL servers on machines | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
| 2.5 Ensure that Azure Defender is set to On for Storage | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
| 2.6 Ensure that Azure Defender is set to On for Kubernetes | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
| 2.7 Ensure that Azure Defender is set to On for Container Registries | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
| 2.8 Ensure that Azure Defender is set to On for Key Vault | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
| 2.9 Ensure that Windows Defender ATP (WDATP) integration with Security Center is selected | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
| 2.10 Ensure that Microsoft Cloud App Security (MCAS) integration with Security Center is selected | CIS Microsoft Azure Foundations v1.3.1 L2 | microsoft_azure | |
| 2.12 Automatic Actions for Optical Media | CIS Apple macOS 11 v1.2.0 L1 | Unix | |
| 2.12 Automatic Actions for Optical Media | CIS Apple macOS 10.14 v1.4.0 L1 | Unix | |
| 2.12 Automatic Actions for Optical Media | CIS Apple macOS 10.15 v1.3.0 L1 | Unix | |
| 2.12 Automatic Actions for Optical Media | CIS Apple macOS 10.15 v1.4.0 L1 | Unix | |
| 2.12 Automatic Actions for Optical Media | CIS Apple macOS 10.14 v1.3.0 L1 | Unix | |
| 5.1 Ensure that WildFire file size upload limits are maximized | CIS Palo Alto Firewall 10 v1.0.0 L1 | Palo_Alto | |
| 5.1 Ensure that WildFire file size upload limits are maximized | CIS Palo Alto Firewall 11 v1.0.0 L1 | Palo_Alto | |
| 5.1 Ensure that WildFire file size upload limits are maximized | CIS Palo Alto Firewall 9 v1.0.1 L1 | Palo_Alto | |
| 5.2 Ensure a WildFire Analysis profile is enabled for all security policies | CIS Palo Alto Firewall 11 v1.0.0 L1 | Palo_Alto | |
| 5.2 Ensure forwarding is enabled for all applications and file types in WildFire file blocking profiles | CIS Palo Alto Firewall 10 v1.0.0 L1 | Palo_Alto | |
| 5.2 Ensure forwarding is enabled for all applications and file types in WildFire file blocking profiles | CIS Palo Alto Firewall 9 v1.0.1 L1 | Palo_Alto | |
| 5.3 Ensure a WildFire Analysis profile is enabled for all security policies | CIS Palo Alto Firewall 10 v1.0.0 L1 | Palo_Alto | |
| 5.3 Ensure a WildFire Analysis profile is enabled for all security policies | CIS Palo Alto Firewall 9 v1.0.1 L1 | Palo_Alto | |
| 6.1 Ensure that antivirus profiles are set to block on all decoders except 'imap' and 'pop3' | CIS Palo Alto Firewall 9 v1.0.1 L1 | Palo_Alto | |
| 6.1 Ensure that antivirus profiles are set to block on all decoders except 'imap' and 'pop3' | CIS Palo Alto Firewall 10 v1.0.0 L1 | Palo_Alto | |
| 6.1 Ensure that antivirus profiles are set to reset-both on all decoders except 'imap' and 'pop3' | CIS Palo Alto Firewall 11 v1.0.0 L1 | Palo_Alto | |
| 6.2 Ensure a secure antivirus profile is applied to all relevant security policies | CIS Palo Alto Firewall 10 v1.0.0 L1 | Palo_Alto | |
| 6.2 Ensure a secure antivirus profile is applied to all relevant security policies | CIS Palo Alto Firewall 11 v1.0.0 L1 | Palo_Alto | |
| 6.2 Ensure a secure antivirus profile is applied to all relevant security policies | CIS Palo Alto Firewall 9 v1.0.1 L1 | Palo_Alto | |
| 6.3 Ensure an anti-spyware profile is configured to block on all spyware severity levels, categories, and threats | CIS Palo Alto Firewall 11 v1.0.0 L1 | Palo_Alto | |
| 6.3 Ensure an anti-spyware profile is configured to block on all spyware severity levels, categories, and threats | CIS Palo Alto Firewall 9 v1.0.1 L1 | Palo_Alto | |
| 6.3 Ensure an anti-spyware profile is configured to block on all spyware severity levels, categories, and threats | CIS Palo Alto Firewall 10 v1.0.0 L1 | Palo_Alto | |
| 6.5 Ensure a secure anti-spyware profile is applied to all security policies permitting traffic to the Internet | CIS Palo Alto Firewall 11 v1.0.0 L1 | Palo_Alto | |
| 6.6 Ensure a secure anti-spyware profile is applied to all security policies permitting traffic to the Internet | CIS Palo Alto Firewall 9 v1.0.1 L1 | Palo_Alto | |
| 6.6 Ensure a secure anti-spyware profile is applied to all security policies permitting traffic to the Internet | CIS Palo Alto Firewall 10 v1.0.0 L1 | Palo_Alto | |
| 18.9.45.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 2004) v1.9.1 L1 + BL | Windows | |
| 18.9.45.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 2004) v1.9.1 L1 + BL + NG | Windows | |
| 18.9.45.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 2004) v1.9.1 L1 + NG | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 L1 | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1903) v1.7.1 L1 + BL | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 L1 + BL + NG | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 L1 + NG | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1903) v1.7.1 L1 | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1909) v1.8.1 L1 | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1903) v1.7.1 L1 + BL + NG | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1909) v1.8.1 L1 + BL + NG | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1903) v1.7.1 L1 + NG | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1909) v1.8.1 L1 + BL | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1909) v1.8.1 L1 + NG | Windows | |
| 18.9.77.14 Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block' | CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 L1 + BL | Windows | |
