API → UI component mappings · 90,813 documents
| ID | Document | Source |
|---|---|---|
| a576ff7664f2f4f2 | SCA Check 16519: Ensure 'Domain controller: Refuse machine account password changes' is set to 'Disabled' (DC only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0005']… | wazuh-sca |
| b97ce69e952b5b8b | SCA Check 16520: Ensure 'Domain member: Digitally encrypt or sign secure channel data (always)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0009',… | wazuh-sca |
| b6e68fb22fbf18a3 | SCA Check 16521: Ensure 'Domain member: Digitally encrypt secure channel data (when possible)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0009',… | wazuh-sca |
| 4c8908f628c74d5e | SCA Check 16522: Ensure 'Domain member: Digitally sign secure channel data (when possible)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007']… | wazuh-sca |
| 691f256662c0a507 | SCA Check 16523: Ensure 'Domain member: Disable machine account password changes' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques:… | wazuh-sca |
| e8a4f76b7f9bbe24 | SCA Check 16524: Ensure 'Domain member: Maximum machine account password age' is set to '30 or fewer days, but not 0'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007']… | wazuh-sca |
| 66eae6ec7cfba27b | SCA Check 16525: Ensure 'Domain member: Require strong (Windows 2000 or later) session key' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007']… | wazuh-sca |
| 384eacf99721cbf3 | SCA Check 16526: Ensure 'Interactive logon: Do not require CTRL+ALT+DEL' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| ef98c02dbc7df47f | SCA Check 16527: Ensure 'Interactive logon: Don't display last signed-in' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036',… | wazuh-sca |
| b89b743b830f88ba | SCA Check 16528: Ensure 'Interactive logon: Machine inactivity limit' is set to '900 or fewer second(s), but not 0'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0006',… | wazuh-sca |
| 20f7d9d5e335a808 | SCA Check 16529: Configure 'Interactive logon: Message text for users attempting to log on'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| ef52798bce2e678e | SCA Check 16530: Configure 'Interactive logon: Message title for users attempting to log on'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| 047966bf1d6ea953 | SCA Check 16846: Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' (MS only). Policy: CIS Microsoft Windows… | wazuh-sca |
| fcdf46ecd71a0173 | SCA Check 16531: Ensure 'Interactive logon: Prompt user to change password before expiration' is set to 'between 5 and 14 days'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| f37f7e3b026296b2 | SCA Check 16532: Ensure 'Interactive logon: Require Domain Controller Authentication to unlock workstation' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0… | wazuh-sca |
| cc93f7718b0018e8 | SCA Check 16533: Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or higher. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0006',… | wazuh-sca |
| 3936ab121367682c | SCA Check 16534: Ensure 'Microsoft network client: Digitally sign communications (always)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007']… | wazuh-sca |
| 0636c5594278aa24 | SCA Check 16535: Ensure 'Microsoft network client: Digitally sign communications (if server agrees)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| 45563f5d359f3009 | SCA Check 16536: Ensure 'Microsoft network client: Send unencrypted password to third-party SMB servers' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| 6e27c85418f1c1d9 | SCA Check 16537: Ensure 'Microsoft network server: Amount of idle time required before suspending session' is set to '15 or fewer minute(s)'. Policy: CIS Microsoft Windows Server 2019 Benchmark… | wazuh-sca |
| 4f720594a1847575 | SCA Check 16538: Ensure 'Microsoft network server: Digitally sign communications (always)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007']… | wazuh-sca |
| 28259e3c4b9957e7 | SCA Check 16539: Ensure 'Microsoft network server: Digitally sign communications (if client agrees)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| 9273a32b507c056c | SCA Check 16540: Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0006',… | wazuh-sca |
| 942dd822119c52e0 | SCA Check 16541: Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only). Policy: CIS Microsoft Windows Server 2019… | wazuh-sca |
| cf6170ed882461d4 | SCA Check 16542: Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| c4c37812546c3ab8 | SCA Check 16543: Ensure 'Network access: Do not allow anonymous enumeration of SAM accounts and shares' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0… | wazuh-sca |
| 79b1687ce93e11f6 | SCA Check 16544: Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0… | wazuh-sca |
| b0490382e6ab83f6 | SCA Check 16545: Ensure 'Network access: Let Everyone permissions apply to anonymous users' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007']… | wazuh-sca |
| 4f139c64a8e79f41 | SCA Check 16546: Configure 'Network access: Named Pipes that can be accessed anonymously' (DC only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques:… | wazuh-sca |
| 42bc9e8aca213396 | SCA Check 16547: Configure 'Network access: Named Pipes that can be accessed anonymously' (MS only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques:… | wazuh-sca |
| d8c65159e6784761 | SCA Check 16548: Configure 'Network access: Remotely accessible registry paths' is configured. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| 0d27bf138c6c94cf | SCA Check 16549: Configure 'Network access: Remotely accessible registry paths and sub-paths' is configured. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques:… | wazuh-sca |
| 8707fef3873cfd76 | SCA Check 36500: Ensure 'Enforce password history' is set to '24 or more password(s)'. Policy: CIS Microsoft Windows Server 2025 Benchmark Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078', 'T1098',… | wazuh-sca |
| 069693607086aafc | SCA Check 26000: Ensure 'Enforce password history' is set to '24 or more password(s)'. Policy: CIS Microsoft Windows 11 Enterprise Benchmark v3.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078',… | wazuh-sca |
| 4bf8687cafb88a27 | SCA Check 38000: Ensure mounting of squashfs filesystems is disabled. Policy: CIS Benchmark for Alma Linux 10 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The squashfs filesystem type is a… | wazuh-sca |
| 0612653d19155305 | SCA Check 32000: Ensure mounting of cramfs filesystems is disabled. Policy: CIS Alma Linux 8 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The cramfs filesystem type is a… | wazuh-sca |
| c5af352dad168c1f | SCA Check 32500: Ensure mounting of squashfs filesystems is disabled. Policy: CIS Benchmark for Alma Linux 9 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The squashfs filesystem type is a… | wazuh-sca |
| 7f6afec6640e539c | SCA Check 1000: Create Separate Partition for /tmp Policy: CIS Debian Linux 7 Benchmark v1.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The /tmp directory is a world-writable… | wazuh-sca |
| 90dab1bf27db8d7c | SCA Check 29500: Ensure /tmp is a separate partition. Policy: CIS Debian Linux 11 Benchmark v1.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567', 'T1573'] The /tmp… | wazuh-sca |
| a29419a354d93ab1 | SCA Check 33010: Ensure /tmp is a separate partition. Policy: Center for Internet Security Debian Linux 12 Benchmark v1.1.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The /tmp directory is a… | wazuh-sca |
| 70f3ed3e12f878f8 | SCA Check 2000: Ensure mounting of freevxfs filesystems is disabled Policy: CIS Debian Linux 9 Benchmark v1.0.1 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The freevxfs filesystem… | wazuh-sca |
| 70259f55dd026be3 | SCA Check 33010: Ensure /tmp is a separate partition. Policy: Center for Internet Security Debian Linux 13 Benchmark Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The /tmp directory is a… | wazuh-sca |
| fe4efe2f587e715b | SCA Check 2500: Ensure mounting of cramfs filesystems is disabled. Policy: CIS Debian Linux 10 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The cramfs filesystem type is a… | wazuh-sca |
| 1f8687b8bd5944a6 | SCA Check 1500: Ensure mounting of cramfs filesystems is disabled Policy: CIS Debian Linux 8 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The cramfs filesystem type is… | wazuh-sca |
| f1e3c0f5d1784021 | SCA Check 30500: Ensure mounting of cramfs filesystems is disabled. Policy: CIS Rocky Linux 8 Benchmark v1.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The cramfs filesystem type is a… | wazuh-sca |
| 0db95768c222de52 | SCA Check 40000: Ensure mounting of squashfs filesystems is disabled. Policy: CIS Rocky Linux 10 Benchmark v1.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The squashfs filesystem type is a… | wazuh-sca |
| 20be8ac36f70b550 | SCA Check 31500: Ensure mounting of squashfs filesystems is disabled. Policy: CIS Rocky Linux 9 Benchmark v1.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The squashfs filesystem type is a… | wazuh-sca |
| e033c701d13f8499 | SCA Check 20500: Ensure mounting of cramfs filesystems is disabled. Policy: CIS Amazon Linux 2 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The cramfs filesystem type is a… | wazuh-sca |
| d130f18f28e7e1b1 | SCA Check 20000: Ensure mounting of cramfs filesystems is disabled. Policy: CIS Amazon Linux Benchmark v2.1.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] The cramfs filesystem type is… | wazuh-sca |
| 61c3eebbdd92c78c | SCA Check 31000: Ensure mounting of squashfs filesystems is disabled. Policy: CIS Benchmark for Amazon Linux 2023 Benchmark v1.0.0. Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The squashfs… | wazuh-sca |