System32
Sysmon
Events
Compliance
Validator
TLS/SSL
GeoIP
Tools
Security Technical Implementation Guides (STIGs)
Product
Microsoft Windows Server 2016
(23)
Severity
Medium
(17)
High
(5)
Low
(1)
SRG
SRG-OS-000480-GPOS-00227
(8)
SRG-OS-000104-GPOS-00051
(3)
SRG-OS-000312-GPOS-00122
(3)
SRG-OS-000076-GPOS-00044
(2)
SRG-OS-000080-GPOS-00048
(2)
SRG-OS-000078-GPOS-00046
(1)
SRG-OS-000138-GPOS-00069
(1)
SRG-OS-000324-GPOS-00125
(1)
SRG-OS-000363-GPOS-00150
(1)
SRG-OS-000370-GPOS-00155
(1)
CCIs
CCI-000366
(8)
CCI-002165
(3)
CCI-000199
(2)
CCI-000213
(2)
CCI-000764
(2)
CCI-000205
(1)
CCI-000764,CCI-000795
(1)
CCI-001090
(1)
CCI-001744
(1)
CCI-001774
(1)
CCI-002235
(1)
STIG IDs
WN16-00-000010
(1)
WN16-00-000030
(1)
WN16-00-000040
(1)
WN16-00-000050
(1)
WN16-00-000060
(1)
WN16-00-000070
(1)
WN16-00-000080
(1)
WN16-00-000090
(1)
WN16-00-000100
(1)
WN16-00-000110
(1)
WN16-00-000120
(1)
WN16-00-000140
(1)
WN16-00-000150
(1)
WN16-00-000160
(1)
WN16-00-000170
(1)
WN16-00-000180
(1)
WN16-00-000190
(1)
WN16-00-000200
(1)
WN16-00-000210
(1)
WN16-00-000220
(1)
WN16-00-000230
(1)
WN16-00-000240
(1)
WN16-00-000250
(1)
Rule IDs
Tags
AppLocker
All AppLocker events
EventSentry
All EventSentry events
Security
All Windows Security events
stig
All stig events
Vulnerability ID
Severity
Description
V-224819
High
Users with Administrative privileges must have separate accounts for administrative duties and no...
V-224820
Medium
Passwords for the built-in Administrator account must be changed at least every 60 days
V-224821
High
Administrative accounts must not be used with applications that access the Internet, such as web ...
V-224822
Medium
Members of the Backup Operators group must have separate accounts for backup duties and normal op...
V-224823
Medium
Manually managed application account passwords must be at least 14 characters in length
V-224824
Medium
Manually managed application account passwords must be changed at least annually or when a system...
V-224825
Medium
Shared user accounts must not be permitted on the system
V-224826
Medium
Windows Server 2016 must employ a deny-all, permit-by-exception policy to allow the execution of ...
V-224827
Medium
Windows Server 2016 domain-joined systems must have a Trusted Platform Module (TPM) enabled and r...
V-224828
High
Systems must be maintained at a supported servicing level
V-224829
High
The Windows Server 2016 system must use an anti-virus program
V-224830
Medium
Servers must have a host-based intrusion detection or prevention system
V-224831
High
Local volumes must use a format that supports NTFS attributes
V-224832
Medium
Permissions for the system drive root directory (usually C:\) must conform to minimum requirements
V-224833
Medium
Permissions for program file directories must conform to minimum requirements
V-224834
Medium
Permissions for the Windows installation directory must conform to minimum requirements
V-224835
Medium
Default permissions for the HKEY_LOCAL_MACHINE registry hive must be maintained
V-224836
Low
Non-administrative accounts or groups must only have print permissions on printer shares
V-224837
Medium
Outdated or unused accounts must be removed from the system or disabled
V-224838
Medium
Windows Server 2016 accounts must require passwords
V-224839
Medium
Passwords must be configured to expire
V-224840
Medium
System files must be monitored for unauthorized changes
V-224841
Medium
Non-system-created file shares on a system must limit access to groups that require it