API → UI component mappings · 90,813 documents
| ID | Document | Source |
|---|---|---|
| 55d993b23d71df67 | SCA Check 27128: Ensure 'Audit Removable Storage' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 10a1ce44d028ca7e | SCA Check 27129: Ensure 'Audit Audit Policy Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 7b84a88fb599c4bf | SCA Check 27130: Ensure 'Audit Authentication Policy Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| ee5779b376f91c65 | SCA Check 27131: Ensure 'Audit Authorization Policy Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 89cf8bc1f9068075 | SCA Check 27132: Ensure 'Audit MPSSVC Rule-Level Policy Change' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 3c5ffaf33f21d878 | SCA Check 27133: Ensure 'Audit Other Policy Change Events' is set to include 'Failure'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| a6609c53ea48a4c2 | SCA Check 27134: Ensure 'Audit Sensitive Privilege Use' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 703dcff0523e9109 | SCA Check 27135: Ensure 'Audit IPsec Driver' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques: ['T1562',… | wazuh-sca |
| b96822f69ff87262 | SCA Check 27136: Ensure 'Audit Other System Events' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 83365d5743aa35ce | SCA Check 27137: Ensure 'Audit Security State Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| e8f524fbc5abb2b4 | SCA Check 27138: Ensure 'Audit Security System Extension' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 48f46b65adc5835f | SCA Check 27139: Ensure 'Audit System Integrity' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 05aea265000952e5 | SCA Check 27140: Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046',… | wazuh-sca |
| ac448c6f43ae9a00 | SCA Check 27141: Ensure 'Prevent enabling lock screen slide show' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046',… | wazuh-sca |
| 24a5085695a3e8d1 | SCA Check 27142: Ensure 'Allow users to enable online speech recognition services' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques:… | wazuh-sca |
| e4311c1f86c8f6e4 | SCA Check 27143: Ensure 'Allow Online Tips' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0001', 'TA0011'] Techniques: ['T1133', 'T1200', 'T1046',… | wazuh-sca |
| 5436debe8a1577a5 | SCA Check 27144: Ensure LAPS AdmPwd GPO Extension / CSE is installed (MS only). Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078', 'T1098',… | wazuh-sca |
| 6a3c4066e72cca7f | SCA Check 27145: Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| 14cad94ab5976d28 | SCA Check 27146: Ensure 'Enable Local Admin Password Management' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques:… | wazuh-sca |
| 88dd54774e42a0cb | SCA Check 27147: Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters' (MS only). Policy: CIS Microsoft Windows Server 2022… | wazuh-sca |
| 1e568511d7bca537 | SCA Check 27148: Ensure 'Password Settings: Password Length' is set to 'Enabled: 15 or more' (MS only). Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003']… | wazuh-sca |
| e1ff9207b7211d00 | SCA Check 27149: Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer' (MS only). Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003']… | wazuh-sca |
| 58f3e4106a0a4306 | SCA Check 27150: Ensure 'Apply UAC restrictions to local accounts on network logons' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0006',… | wazuh-sca |
| 766cde071405b7ad | SCA Check 27151: Ensure 'Configure RPC packet level privacy setting for incoming connections' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0007']… | wazuh-sca |
| 1bdc084363823c93 | SCA Check 27152: Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques:… | wazuh-sca |
| b1738b163fb84921 | SCA Check 27153: Ensure 'Configure SMB v1 server' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This setting… | wazuh-sca |
| 094f18dcc4a4c2ec | SCA Check 27154: Ensure 'Enable Structured Exception Handling Overwrite Protection (SEHOP)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0002',… | wazuh-sca |
| 4f4fa366813fba19 | SCA Check 27155: Ensure 'NetBT NodeType configuration' is set to 'Enabled: P-node (recommended)'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036',… | wazuh-sca |
| 98e46e845bb2b7c3 | SCA Check 27156: Ensure 'WDigest Authentication' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041',… | wazuh-sca |
| 951682b45f714c9e | SCA Check 27157: Ensure 'MSS: (AutoAdminLogon) Enable Automatic Logon (not recommended)' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010']… | wazuh-sca |
| c86ea5bc47bce6d5 | SCA Check 27158: Ensure 'MSS: (DisableIPSourceRouting IPv6) IP source routing protection level (protects against packet spoofing)' is set to 'Enabled: Highest protection, source routing is completely… | wazuh-sca |
| 1b305010ff3c08a8 | SCA Check 27159: Ensure 'MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)' is set to 'Enabled: Highest protection, source routing is completely… | wazuh-sca |
| 480cfee68d8aabc8 | SCA Check 27160: Ensure 'MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| 2897dbc4e39261d9 | SCA Check 27161: Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes (recommended)'. Policy: CIS Microsoft Windows Server 2022… | wazuh-sca |
| 21d27b4b2a72ff3c | SCA Check 27162: Ensure 'MSS: (NoNameReleaseOnDemand) Allow the computer to ignore NetBIOS name release requests except from WINS servers' is set to 'Enabled'. Policy: CIS Microsoft Windows Server… | wazuh-sca |
| 0f07783fe847aeae | SCA Check 27163: Ensure 'MSS: (PerformRouterDiscovery) Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS)' is set to 'Disabled'. Policy: CIS Microsoft Windows Server… | wazuh-sca |
| 37a7966de08fdfe6 | SCA Check 27164: Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0002',… | wazuh-sca |
| 6c3343e53a638740 | SCA Check 27165: Ensure 'MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires (0 recommended)' is set to 'Enabled: 5 or fewer seconds'. Policy: CIS Microsoft… | wazuh-sca |
| 6fd61f75a8657eba | SCA Check 27166: Ensure 'MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0… | wazuh-sca |
| 27f621e54ad55666 | SCA Check 27167: Ensure 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0… | wazuh-sca |
| f7309693680f965d | SCA Check 27168: Ensure 'MSS: (WarningLevel) Percentage threshold for the security event log at which the system will generate a warning' is set to 'Enabled: 90% or less'. Policy: CIS Microsoft… | wazuh-sca |
| ac7ca25e1958adf6 | SCA Check 27169: Ensure 'Configure DNS over HTTPS (DoH) name resolution' is set to 'Enabled: Allow DoH' or higher. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0009',… | wazuh-sca |
| fec39be924cf2c9e | SCA Check 27170: Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| b2324fcfdcf1053e | SCA Check 27171: Ensure 'Turn off multicast name resolution' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] LLMNR… | wazuh-sca |
| 87fb2812a2be55dc | SCA Check 27172: Ensure 'Enable Font Providers' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0001', 'TA0002'] Techniques: ['T1190', 'T1059', 'T1204']… | wazuh-sca |
| c37e854a92912bab | SCA Check 27173: Ensure 'Enable insecure guest logons' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0001', 'TA0011'] Techniques: ['T1133', 'T1200',… | wazuh-sca |
| 400810fc7d567d2c | SCA Check 27174: Ensure 'Turn on Mapper I/O (LLTDIO) driver' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This… | wazuh-sca |
| eb933745957f4b25 | SCA Check 27175: Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This… | wazuh-sca |
| 2a11cfead0d750bc | SCA Check 27176: Ensure 'Turn off Microsoft Peer-to-Peer Networking Services' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036',… | wazuh-sca |
| 29dfddb796724447 | SCA Check 27177: Ensure 'Prohibit installation and configuration of Network Bridge on your DNS domain network' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics:… | wazuh-sca |