System32
Sysmon
Events
Compliance
Validator
TLS/SSL
GeoIP
Tools
Security Technical Implementation Guides (STIGs)
Product
Microsoft Windows Server 2019
(109)
Severity
Medium
(90)
High
(16)
Low
(3)
SRG
SRG-OS-000480-GPOS-00227
(30)
SRG-OS-000095-GPOS-00049
(15)
SRG-OS-000423-GPOS-00187
(8)
SRG-OS-000134-GPOS-00068
(6)
SRG-OS-000324-GPOS-00125
(6)
SRG-OS-000373-GPOS-00157
(4)
SRG-OS-000080-GPOS-00048
(3)
SRG-OS-000341-GPOS-00132
(3)
SRG-OS-000368-GPOS-00154
(3)
SRG-OS-000021-GPOS-00005
(2)
SRG-OS-000042-GPOS-00020
(2)
SRG-OS-000057-GPOS-00027
(2)
SRG-OS-000073-GPOS-00041
(2)
SRG-OS-000138-GPOS-00069
(2)
SRG-OS-000023-GPOS-00006
(1)
SRG-OS-000028-GPOS-00009
(1)
SRG-OS-000062-GPOS-00031
(1)
SRG-OS-000067-GPOS-00035
(1)
SRG-OS-000069-GPOS-00037
(1)
SRG-OS-000074-GPOS-00042
(1)
SRG-OS-000075-GPOS-00043
(1)
SRG-OS-000076-GPOS-00044
(1)
SRG-OS-000076-GPOS-00044
(1)
SRG-OS-000077-GPOS-00045
(1)
SRG-OS-000078-GPOS-00046
(1)
SRG-OS-000104-GPOS-00051
(1)
SRG-OS-000120-GPOS-00061
(1)
SRG-OS-000121-GPOS-00062
(1)
SRG-OS-000134-GPOS-00068
(1)
SRG-OS-000257-GPOS-00098
(1)
SRG-OS-000329-GPOS-00128
(1)
SRG-OS-000379-GPOS-00164
(1)
SRG-OS-000474-GPOS-00219
(1)
SRG-OS-000480-GPOS-00227
(1)
SRG-OS-000480-GPOS-00229
(1)
CCIs
CCI-000366
(29)
CCI-000381
(15)
CCI-002418,CCI-002421
(8)
CCI-001084
(6)
CCI-002235
(6)
CCI-002038
(4)
CCI-000213
(3)
CCI-001764
(3)
CCI-001849
(3)
CCI-000135
(2)
CCI-000162,CCI-000163,CCI-000164
(2)
CCI-000366
(2)
CCI-001090
(2)
CCI-004062,CCI-000196
(2)
CCI-004066,CCI-000199
(2)
CCI-000044
(1)
CCI-000044,CCI-002238
(1)
CCI-000048,CCI-000050,CCI-001384,CCI-001385,CCI-001386,CCI-001387,CCI-001388
(1)
CCI-000056,CCI-000057,CCI-000060
(1)
CCI-000169
(1)
CCI-000172
(1)
CCI-000186
(1)
CCI-000197
(1)
CCI-000366,CCI-002080
(1)
CCI-000764
(1)
CCI-000803
(1)
CCI-000804
(1)
CCI-001084
(1)
CCI-001494,CCI-001495
(1)
CCI-001967
(1)
CCI-002238
(1)
CCI-004061
(1)
CCI-004066,CCI-000192,CCI-000193,CCI-000194,CCI-001619
(1)
CCI-004066,CCI-000198
(1)
CCI-004066,CCI-000205
(1)
STIG IDs
WN19-00-000100
(1)
WN19-00-000110
(1)
WN19-00-000130
(1)
WN19-00-000200
(1)
WN19-00-000210
(1)
WN19-00-000280
(1)
WN19-00-000350
(1)
WN19-00-000380
(1)
WN19-00-000390
(1)
WN19-00-000400
(1)
WN19-00-000410
(1)
WN19-AC-000010
(1)
WN19-AC-000020
(1)
WN19-AC-000030
(1)
WN19-AC-000040
(1)
WN19-AC-000050
(1)
WN19-AC-000060
(1)
WN19-AC-000070
(1)
WN19-AC-000080
(1)
WN19-AC-000090
(1)
WN19-AU-000040
(1)
WN19-AU-000050
(1)
WN19-AU-000060
(1)
WN19-AU-000240
(1)
WN19-CC-000010
(1)
WN19-CC-000020
(1)
WN19-CC-000030
(1)
WN19-CC-000040
(1)
WN19-CC-000070
(1)
WN19-CC-000080
(1)
WN19-CC-000090
(1)
WN19-CC-000100
(1)
WN19-CC-000130
(1)
WN19-CC-000140
(1)
WN19-CC-000150
(1)
WN19-CC-000160
(1)
WN19-CC-000170
(1)
WN19-CC-000180
(1)
WN19-CC-000190
(1)
WN19-CC-000200
(1)
WN19-CC-000210
(1)
WN19-CC-000220
(1)
WN19-CC-000230
(1)
WN19-CC-000240
(1)
WN19-CC-000250
(1)
WN19-CC-000270
(1)
WN19-CC-000280
(1)
WN19-CC-000290
(1)
WN19-CC-000300
(1)
WN19-CC-000330
(1)
WN19-CC-000360
(1)
WN19-CC-000390
(1)
WN19-CC-000400
(1)
WN19-CC-000410
(1)
WN19-CC-000450
(1)
WN19-CC-000460
(1)
WN19-DC-000080
(1)
WN19-DC-000320
(1)
WN19-DC-000330
(1)
WN19-DC-000400
(1)
WN19-DC-000420
(1)
WN19-DC-000430
(1)
WN19-MS-000020
(1)
WN19-MS-000030
(1)
WN19-MS-000050
(1)
WN19-MS-000060
(1)
WN19-MS-000110
(1)
WN19-MS-000130
(1)
WN19-MS-000140
(1)
WN19-SO-000010
(1)
WN19-SO-000020
(1)
WN19-SO-000030
(1)
WN19-SO-000040
(1)
WN19-SO-000050
(1)
WN19-SO-000060
(1)
WN19-SO-000070
(1)
WN19-SO-000080
(1)
WN19-SO-000090
(1)
WN19-SO-000100
(1)
WN19-SO-000120
(1)
WN19-SO-000130
(1)
WN19-SO-000160
(1)
WN19-SO-000170
(1)
WN19-SO-000180
(1)
WN19-SO-000190
(1)
WN19-SO-000200
(1)
WN19-SO-000220
(1)
WN19-SO-000230
(1)
WN19-SO-000240
(1)
WN19-SO-000250
(1)
WN19-SO-000260
(1)
WN19-SO-000270
(1)
WN19-SO-000290
(1)
WN19-SO-000300
(1)
WN19-SO-000310
(1)
WN19-SO-000320
(1)
WN19-SO-000330
(1)
WN19-SO-000340
(1)
WN19-SO-000350
(1)
WN19-SO-000380
(1)
Rule IDs
SV-205629r958388_rule
(1)
SV-205630r958388_rule
(1)
SV-205631r958390_rule
(1)
SV-205633r958400_rule
(1)
SV-205638r958422_rule
(1)
SV-205639r958422_rule
(1)
SV-205641r958434_rule
(1)
SV-205642r958434_rule
(1)
SV-205644r958442_rule
(1)
SV-205651r958450_rule
(1)
SV-205652r1051061_rule
(1)
SV-205653r1051062_rule
(1)
SV-205654r1051063_rule
(1)
SV-205655r987796_rule
(1)
SV-205656r1051064_rule
(1)
SV-205658r1051066_rule
(1)
SV-205659r1051067_rule
(1)
SV-205660r1000129_rule
(1)
SV-205662r1051069_rule
(1)
SV-205663r958472_rule
(1)
SV-205670r958472_rule
(1)
SV-205675r958472_rule
(1)
SV-205680r958478_rule
(1)
SV-205682r958478_rule
(1)
SV-205683r958478_rule
(1)
SV-205684r958478_rule
(1)
SV-205685r958478_rule
(1)
SV-205686r958478_rule
(1)
SV-205687r958478_rule
(1)
SV-205688r958478_rule
(1)
SV-205689r958478_rule
(1)
SV-205690r958478_rule
(1)
SV-205691r958478_rule
(1)
SV-205692r958478_rule
(1)
SV-205693r958478_rule
(1)
SV-205694r958478_rule
(1)
SV-205696r958478_rule
(1)
SV-205708r971535_rule
(1)
SV-205709r958504_rule
(1)
SV-205714r958518_rule
(1)
SV-205715r958518_rule
(1)
SV-205716r958518_rule
(1)
SV-205717r958518_rule
(1)
SV-205718r958518_rule
(1)
SV-205719r958518_rule
(1)
SV-205720r958518_rule
(1)
SV-205724r958524_rule
(1)
SV-205725r958524_rule
(1)
SV-205731r991558_rule
(1)
SV-205740r958726_rule
(1)
SV-205745r958726_rule
(1)
SV-205747r958726_rule
(1)
SV-205748r958726_rule
(1)
SV-205751r958726_rule
(1)
SV-205757r958726_rule
(1)
SV-205795r958736_rule
(1)
SV-205796r958752_rule
(1)
SV-205797r958752_rule
(1)
SV-205798r958752_rule
(1)
SV-205804r958804_rule
(1)
SV-205805r958804_rule
(1)
SV-205806r958804_rule
(1)
SV-205809r1051081_rule
(1)
SV-205811r1051083_rule
(1)
SV-205812r1051084_rule
(1)
SV-205813r1051085_rule
(1)
SV-205815r971545_rule
(1)
SV-205820r958908_rule
(1)
SV-205821r958908_rule
(1)
SV-205822r958908_rule
(1)
SV-205823r958908_rule
(1)
SV-205825r958908_rule
(1)
SV-205826r958908_rule
(1)
SV-205827r958908_rule
(1)
SV-205828r958908_rule
(1)
SV-205840r991583_rule
(1)
SV-205849r991589_rule
(1)
SV-205850r991589_rule
(1)
SV-205858r991589_rule
(1)
SV-205859r991589_rule
(1)
SV-205861r991589_rule
(1)
SV-205862r991589_rule
(1)
SV-205863r991589_rule
(1)
SV-205865r991589_rule
(1)
SV-205866r991589_rule
(1)
SV-205867r991589_rule
(1)
SV-205868r991589_rule
(1)
SV-205869r991589_rule
(1)
SV-205872r991589_rule
(1)
SV-205873r991589_rule
(1)
SV-205876r991589_rule
(1)
SV-205877r991589_rule
(1)
SV-205906r991589_rule
(1)
SV-205907r991589_rule
(1)
SV-205908r991589_rule
(1)
SV-205909r991589_rule
(1)
SV-205910r991589_rule
(1)
SV-205911r991589_rule
(1)
SV-205914r991589_rule
(1)
Tags
AppLocker
All AppLocker events
EventSentry
All EventSentry events
Security
All Windows Security events
stig
All stig events
Vulnerability ID
Severity
Description
V-205849
High
Windows Server 2019 must be maintained at a supported servicing level
V-205714
Medium
Windows Server 2019 administrator accounts must not be enumerated during elevation
V-205751
Medium
Windows Server 2019 back up files and directories user right must only be assigned to the Adminis...
V-205659
Medium
Windows Server 2019 maximum password age must be configured to 60 days or less
V-205909
Medium
Windows Server 2019 built-in administrator account must be renamed
V-205662
Medium
Windows Server 2019 minimum password length must be configured to 14 characters
V-205656
Medium
Windows Server 2019 minimum password age must be configured to at least one day.
V-205691
Low
Windows Server 2019 Application Compatibility Program Inventory must be prevented from collecting...
V-205910
Medium
Windows Server 2019 built-in guest account must be renamed
V-205670
Medium
Windows Server 2019 Deny log on locally user right on domain controllers must be configured to pr...
V-205675
Medium
Windows Server 2019 Deny log on locally user right on domain-joined member servers must be config...
V-205748
Medium
Windows Server 2019 "Enable computer and user accounts to be trusted for delegation" user right m...
V-205745
Medium
Windows Server 2019 Enable computer and user accounts to be trusted for delegation user right mus...
V-205908
High
Windows Server 2019 must prevent local accounts with blank passwords from being used from the net...
V-205715
Medium
Windows Server 2019 local administrator accounts must have their privileged token filtered to pre...
V-205709
Medium
Windows Server 2019 must have the built-in guest account disabled
V-205663
High
Windows Server 2019 local volumes must use a format that supports NTFS attributes
V-205694
Medium
Windows Server 2019 must prevent Indexing of encrypted files
V-205840
Medium
Windows Server 2019 must be configured to audit Object Access - Removable Storage successes
V-205795
Medium
Windows Server 2019 account lockout duration must be configured to 15 minutes or greater
V-205863
Medium
Windows Server 2019 must be configured to enable Remote host allows delegation of non-exportable ...
V-205925
Medium
Windows Server 2019 must disable automatically signing in the last interactive user after a syste...
V-205652
Medium
Windows Server 2019 must have the built-in Windows password complexity policy enabled
V-205630
Medium
Windows Server 2019 must have the period of time before the bad logon counter is reset configured...
V-205700
Medium
Windows Server 2019 accounts must require passwords
V-205653
High
Windows Server 2019 reversible password encryption must be disabled
V-205815
Medium
Windows Server 2019 computer account password must not be prevented from being reset
V-205629
Medium
Windows Server 2019 must have the number of allowed bad logon attempts configured to three or less
V-205716
Medium
Windows Server 2019 UIAccess applications must not be allowed to prompt for elevation without usi...
V-205811
Medium
Windows Server 2019 User Account Control approval mode for the built-in Administrator must be ena...
V-205812
Medium
Windows Server 2019 User Account Control must automatically deny standard user requests for eleva...
V-205813
Medium
Windows Server 2019 User Account Control must run all administrators in Admin Approval Mode, enab...
V-205718
Medium
Windows Server 2019 User Account Control must be configured to detect application installations a...
V-205720
Medium
Windows Server 2019 User Account Control (UAC) must virtualize file and registry write failures t...
V-205717
Medium
Windows Server 2019 User Account Control must, at a minimum, prompt administrators for consent on...
V-205719
Medium
Windows Server 2019 User Account Control (UAC) must only elevate UIAccess applications that are i...
V-205867
Medium
Windows Server 2019 users must be prompted to authenticate when the system wakes from sleep (on b...
V-205868
Medium
Windows Server 2019 users must be prompted to authenticate when the system wakes from sleep (plug...
V-205651
Medium
Windows Server 2019 users must be required to enter a password to access private keys stored on t...
V-205638
Medium
Windows Server 2019 command line data must be included in process creation events
V-205731
Medium
Windows Server 2019 Event Viewer must be protected from unauthorized modification and deletion
V-205796
Medium
Windows Server 2019 Application event log size must be configured to 32768 KB or greater
V-205797
Medium
Windows Server 2019 Security event log size must be configured to 196608 KB or greater
V-205798
Medium
Windows Server 2019 System event log size must be configured to 32768 KB or greater
V-205644
Medium
Windows Server 2019 must force audit policy subcategory settings to override audit policy categor...
V-205641
Medium
Windows Server 2019 permissions for the Security event log must prevent access by non-privileged ...
V-205642
Medium
Windows Server 2019 permissions for the System event log must prevent access by non-privileged ac...
V-205804
High
Windows Server 2019 Autoplay must be turned off for non-volume devices
V-205806
High
Windows Server 2019 AutoPlay must be disabled for all drives
V-205805
High
Windows Server 2019 default AutoRun behavior must be configured to prevent AutoRun commands
V-205687
Medium
Windows Server 2019 must have WDigest Authentication disabled
V-205757
High
Windows Server 2019 Debug programs: user right must only be assigned to the Administrators group
V-205876
Medium
Windows Server 2019 domain controllers must be configured to allow reset of machine account passw...
V-205820
Medium
Windows Server 2019 domain controllers must require LDAP access signing
V-205740
High
Windows Server 2019 Active Directory SYSVOL directory must have the proper access control permiss...
V-205877
Medium
The password for the krbtgt account on a domain must be reset at least every 180 days
V-205907
High
Windows Server 2019 must be running Credential Guard on domain-joined member servers
V-205906
Medium
Windows Server 2019 must limit the caching of logon credentials to four or less on domain-joined ...
V-205821
Medium
Windows Server 2019 setting Domain member: Digitally encrypt or sign secure channel data (always)...
V-205822
Medium
Windows Server 2019 setting Domain member: Digitally encrypt secure channel data (when possible) ...
V-205823
Medium
Windows Server 2019 setting Domain member: Digitally sign secure channel data (when possible) mus...
V-205866
Medium
Windows Server 2019 group policy objects must be reprocessed even if they have not changed
V-205862
Medium
Windows Server 2019 hardened Universal Naming Convention (UNC) paths must be defined to require m...
V-205696
Medium
Windows Server 2019 local users on domain-joined member servers must not be enumerated
V-205911
Medium
Windows Server 2019 maximum age for machine account passwords must be configured to 30 days or less
V-205920
Medium
Windows Server 2019 must be configured to at least negotiate signing for LDAP client signing
V-205872
Medium
Windows Server 2019 File Explorer shell protocol must run in protected mode
V-205850
High
Windows Server 2019 must use an anti-virus program
V-205688
Medium
Windows Server 2019 downloading print driver packages over HTTP must be turned off
V-205865
Medium
Windows Server 2019 Early Launch Antimalware, Boot-Start Driver Initialization Policy must preven...
V-205633
Medium
Windows Server 2019 machine inactivity limit must be set to 15 minutes or less, locking the syste...
V-205689
Medium
Windows Server 2019 printing over HTTP must be turned off
V-205692
Medium
Windows Server 2019 Windows Defender SmartScreen must be enabled
V-205686
Medium
Windows Server 2019 must prevent the display of slide shows on the lock screen
V-214936
Medium
Windows Server 2019 must have a host-based firewall installed and enabled
V-205693
Medium
Windows Server 2019 must disable Basic authentication for RSS feeds over HTTP
V-205690
Medium
Windows Server 2019 network selection user interface (UI) must not be displayed on the logon screen
V-205873
Medium
Windows Server 2019 must prevent attachments from being downloaded from RSS feeds
V-205631
Medium
Windows Server 2019 required legal notice must be configured to display before console logon
V-205914
High
Windows Server 2019 must not allow anonymous enumeration of Security Account Manager (SAM) accounts
V-205724
High
Windows Server 2019 must not allow anonymous enumeration of shares
V-205861
Medium
Windows Server 2019 insecure logons to an SMB server must be disabled
V-205708
Medium
Windows Server 2019 Kerberos encryption types must be configured to prevent the use of DES and RC...
V-205825
Medium
Windows Server 2019 setting Microsoft network client: Digitally sign communications (always) must...
V-205919
High
Windows Server 2019 LAN Manager authentication level must be configured to send NTLMv2 response o...
V-205826
Medium
Windows Server 2019 setting Microsoft network client: Digitally sign communications (if server ag...
V-205827
Medium
Windows Server 2019 setting Microsoft network server: Digitally sign communications (always) must...
V-205828
Medium
Windows Server 2019 setting Microsoft network server: Digitally sign communications (if client ag...
V-205915
Medium
Windows Server 2019 must be configured to prevent anonymous users from having the same permission...
V-205684
Medium
Windows Server 2019 must have the Server Message Block (SMB) v1 protocol disabled on the SMB client
V-205683
Medium
Windows Server 2019 must have the Server Message Block (SMB) v1 protocol disabled on the SMB server
V-205917
Medium
Windows Server 2019 must prevent NTLM from falling back to a Null session
V-205725
High
Windows Server 2019 must restrict anonymous access to Named Pipes and Shares
V-205747
Medium
Windows Server 2019 must restrict remote calls to the Security Account Manager (SAM) to Administr...
V-205916
Medium
Windows Server 2019 services using Local System that use Negotiate when reverting to NTLM authent...
V-205921
Medium
Windows Server 2019 session security for NTLM SSP-based clients must be configured to require NTL...
V-205922
Medium
Windows Server 2019 session security for NTLM SSP-based servers must be configured to require NTL...
V-205655
Medium
Windows Server 2019 unencrypted passwords must not be sent to third-party Server Message Block (S...
V-205682
Medium
Windows Server 2019 must not have the Server Message Block (SMB) v1 protocol installed
V-205858
Low
Windows Server 2019 Internet Protocol version 6 (IPv6) source routing must be configured to the h...
V-205680
Medium
Windows Server 2019 must not have Simple TCP/IP Services installed
V-205859
Low
Windows Server 2019 source routing must be configured to the highest protection level to prevent ...
V-205660
Medium
Windows Server 2019 password history must be configured to 24 passwords remembered
V-205658
Medium
Windows Server 2019 passwords must be configured to expire
V-205654
High
Windows Server 2019 must be configured to prevent the storage of the LAN Manager hash of passwords
V-205639
Medium
Windows Server 2019 PowerShell script block logging must be enabled
V-205685
Medium
Windows Server 2019 must not have Windows PowerShell 2.0 installed
V-205869
Medium
Windows Server 2019 Telemetry must be configured to Security or Basic
V-205809
Medium
Windows Server 2019 Remote Desktop Services must always prompt a client for passwords upon connec...