PingSentry   |   Discord   |   System32   |   GitHub   |   Free tools

EventSentry

Validation Scripts

Scripts

30

Tag

bestpractice-desktop


Accounts: Automatic logons must be disabled
5db60bfa-0318-430e-ab7e-c2ff3e749ae9
Accounts: Block Microsoft accounts
6e815a39-7aa8-42e4-88d3-1778dfe85333
Accounts: Local accounts with blank passwords must be restricted to prevent access from the network
3ef29cdc-8018-48a9-b210-13e18cf14d07
Accounts: Lockout duration must be configured to 15 minutes or greater
d9b675fb-1bb2-4ff3-88ea-0e74ab40e2a7
Accounts: Must have the period of time before the bad logon counter is reset configured to 15 minutes or greater
56655e04-3824-4810-9be4-aaa6e1c1c2ac
Accounts: The number of allowed bad logon attempts must be configured to three or less
409871a1-6b58-45ab-9dfd-8b40e948ecd2
Auditing: Command line data must be included in process creation events
c787dcd2-355b-4ff5-8265-3eb860f11670
Autoplay: Must be turned off for non-volume devices
d2ac90ea-b1de-49bb-aa59-fe8b271c7c2b
Autoplay: Should be disabled for all drives
2cb75d59-8ef3-4fa3-90e1-8bec9e51c703
Autorun: behavior must be configured to prevent Autorun commands
746184bf-3f96-4365-8bb4-c7abf8a772ac
File System: Local volumes must be formatted with NTFS
b6493fb9-ad83-494c-93e3-3dbfaeb9b303
File System: Windows must prevent Indexing of encrypted files
138956a4-8987-4f7f-b830-bf58e4ca7778
General: AntiVirus/Antimalware Status
6d48a68a-3e44-4a00-8d42-670e41c9942c
General: Windows Defender SmartScreen must be enabled (Desktop)
4d189e65-af8b-463f-95d1-3880b7c459ec
General: Windows firewall status
1f229f09-4c15-4bfe-b9f7-ed63d03cd70e
Health: Directory Size: WinSxs\Temp\PendingDeletes
233b6308-be50-487f-ad61-dec44a3d4402
Logon: Enable Display Last Logon Info
a108b75a-f851-4e02-b377-1bc6a2698949
Logon: Require CTRL+ALT+DEL for interactive logons
d2d523f6-4e7a-46e3-b553-ab395a7563e4
Microsoft Office: Application Guard for Office should be enabled
b4297f3f-27aa-48bb-ae0c-a996d8db5b70
Network Access: Do not allow anonymous enumeration of Security Account Manager (SAM) accounts
752e0588-decf-451b-9fef-cc3235765d54
Network Access: Do not allow anonymous enumeration of shares
0d97c353-2198-4a09-a41b-9df3498067dc
Network Access: LAN Manager authentication level must be configured to send NTLMv2 response only and refuse LM and NTLM
2718ea3f-5f25-4e6d-a693-3c426f14357f
PowerShell: Script block logging must be enabled
ab3e18c8-5f9b-4a08-8474-ff10619965bd
Threat Intel: Attack Vector: Disable LLMNR
3724e477-bdea-4a74-96b7-7ac79e157087
Threat Intel: Attack Vector: Disable WinRM (Windows Remote Management)
1c1e3c39-98a3-41cb-8bf1-1a5f36a6c950
Tracking: Windows Telemetry must not be set to Full
0001b667-c79a-4486-802c-32d860cae99e
Windows OS: Build Version Check (End Of Life)
07b6c273-cdb3-4a4d-889d-d1d54dc0eb5f
Windows OS: Build Version Check (OS Updated)
c7b058ab-6360-4b5d-9cd2-45eafef8c489
Windows OS: Windows Activation Status
de96957d-bcf1-4d41-be46-aa14b00135f3
Windows Update: Windows Recovery Partition Size
d80aa4e9-fdce-477d-bd3a-ee056191d4ee
Full tag list
compliance-server (133) server (112) compliance-desktop (112) stig-medium-server (110) desktop (108) security-server (104) nist800-53-server (99) nist800-53-desktop (96) security-desktop (87) stig-medium-desktop (86) nist800-171-server (85) nist800-171-desktop (69) cmmc2-l2-server (64) cmmc2-l2-desktop (54) pci-dss-v4-server (37) cis-csc-server (37) cis-csc-desktop (33) bestpractice-desktop (30) pci-dss-v4-desktop (30) mitre-att-server (29) mitre-att-desktop (28) bestpractice-server (25) stig-high-desktop (22) cmmc2-l1-server (22) stig-high-server (21) cmmc2-l1-desktop (19) pci-dss-v3.2-server (18) domaincontroller (16) tisax (16) domainmember (16) pci-dss-v3.2-desktop (13) cmmc2-l3-server (12) sig-server (10) nist-privacy-server (10) threat-intel-server (9) threat-intel-desktop (8) sec-hardening-server (8) sec-hardening-desktop (8) cmmc2-l3-desktop (8) remote-desktop (7) health (7) nist-privacy-desktop (7) csa-cmm-server (7) privacy-server (6) privacy-desktop (6) owasptop-server (6) stig-low-desktop (6) stig-low-server (5) owasptop-desktop (5) stig-medium-ie (4) cce-desktop (3) cce-server (3) niap-server (3) niap-desktop (3) bestpractice-domaincontroller (3) fips140-2 (3) sig-desktop (3) msoffice (2) hyper-v (1) iis-stig-high (1) bitlocker-security-desktop (1) fedramp-server (1) fedramp-desktop (1) cjis-server (1) cjis-desktop (1) ul2900-1-server (1) ul2900-1-desktop (1) csf-server (1) csf-desktop (1) info-desktop (1) csa-cmm-desktop (1) exchange-security (1) domainmember-health (1) domaincontroller-health (1)

CMMC v2.0 Compliance STIG CIS NIST 800-171 Servers Desktops

Your Privacy Choices

Manage your cookie preferences below:

Helps us improve website performance and understand how visitors use our site.

Allows us to collect feedback about our products and improve them based on your input.

To learn more about our use of cookies, please see our
Privacy Policy.