Closed chemamartinez closed 4 years ago
chemamartinez
commented
4 years ago Today it has been reviewed the policy CIS Benchmark for Red Hat Enterprise Linux 7 from the check ID 6500 to 6549. The commit https://github.com/wazuh/wazuh-ruleset/pull/406/commits/437f9da9a0b4a39df4aaf0a8609dfa8c222db596 adds the necessary fixes to adapt the policy to the CIS benchmarks.
Skeptor
commented
4 years ago I've been testing and changing the policy CIS Distribution Independent Linux Benchmark v1.1.0. It only needs the change to wm_exec to test the command rules.
Also I've been testing the polcy CIS Apple macOS 10.13 Benchmark. The commit https://github.com/wazuh/wazuh-ruleset/pull/406/commits/e0604ab529d32e6502f10730113fa50a34182c63 adds a check to the rule 14029 to look if the option exist.
Also the changes on the Linux policy are in the commit: https://github.com/wazuh/wazuh-ruleset/pull/406/commits/4b2c11a5664aff12486adf2cb320180096b34043
cristgl
commented
4 years ago I have been reviewing the policy CIS Debian Linux 7-8. Some of the rules have been changed, but it needs some more testing. The commit is https://github.com/wazuh/wazuh-ruleset/commit/374baf009e5680c7f4b06f3b4e364c70cdf8403c.
Reviewed the cis_debian_linux_rcl.yml file: https://github.com/wazuh/wazuh-ruleset/commit/d3da6ea78e728567bb8c01fac057ffa7721cdfca.
Skeptor
commented
4 years ago I have been reviewing the CIS macOS policies. The commits https://github.com/wazuh/wazuh-ruleset/commit/49d5fbec622dd1db07320b59fa4fd1dc7913551e , https://github.com/wazuh/wazuh-ruleset/commit/8e4c2450a0056e81245a8e2c756f76a4540d69ba and https://github.com/wazuh/wazuh-ruleset/commit/92425f711a6342876d703d6a7c8081efb5aec1a3 fix some rules and adapt others to match the CIS benchmarks checks.
The only not applicable check is Verify all Apple provided software is current when it overcomes the timeout of wm_exec.
cristgl
commented
4 years ago Reviewing policies cis_debian_linux_rcl.yml, cis_debianlinux7-8_L1_rcl.yml and cis_debianlinux7-8_L2_rcl.yml (https://github.com/wazuh/wazuh-ruleset/commit/788fb8108598da06c1a3394e88b8e17ca323e0b8, https://github.com/wazuh/wazuh-ruleset/commit/913e8ebd5306b6878cc71cc1b4a51407bf0728d8). Unified every duplicated rule in them and fixed some commands that might fail, for example, chkconfig is not supported in every system, which means that if there are more than one rule, it will return to be a Not applicable check if the command is not found.
Skeptor
commented
4 years ago I have been reviewing the CIS Solaris 11 Policy. The commit https://github.com/wazuh/wazuh-ruleset/commit/c4bf317fd9d36c5af714741c2f288dec55b481cd removes the wildcards in home directory and checks if the files exist before checking their content.
chemamartinez
commented
4 years ago Finished the policy for RHEL7. It remains the testing with the SCA module. https://github.com/wazuh/wazuh-ruleset/blob/404-adapt-sca-rules-to-new-syntax/sca/rhel/7/cis_rhel7_linux_rcl.yml
cristgl
commented
4 years ago Reviewed the policy CIS SUSE 11: https://github.com/wazuh/wazuh-ruleset/commit/9a4ded29e939e2664a9226449015fcdc4b538842. Testing it with SCA.
Also made some changes to CIS Debian Linux 7-8: https://github.com/wazuh/wazuh-ruleset/commit/1c9da3f1ce0d3eae5cc3c1f6cda4d02f067adffd
cristgl
commented
4 years ago Updated policies for Debian (https://github.com/wazuh/wazuh-ruleset/commit/2275f8f49cd4c11842d09abbaa5b6a3ce22d5197). Some changes were made to adapt rules to the CIS policy PDF. Testing it with the SCA module.
JuantAldea
commented
4 years ago Updated Suse12 policy. Several checks changed so that parameters are checked by running commands
JuantAldea
commented
4 years ago cristgl
commented
4 years ago Reviewing Windows 2012 R2 Domain L1 policies (https://github.com/wazuh/wazuh-ruleset/commit/79ff3542ebd67b867c1528c37d07927c22a044f5). Updated: https://github.com/wazuh/wazuh-ruleset/commit/cd33d95f221f9e32dad6d2cc973e92a7b0c27217
Reviewing Windows 2012 R2 Domain L2 policies (https://github.com/wazuh/wazuh-ruleset/commit/21c7dae38529526e88a136e5cc85e7f54b7c2756).
Reviewing Windows 2012 R2 Member L1 policies (https://github.com/wazuh/wazuh-ruleset/commit/4fd48cf1f3e47db0d6356d8aa862e088d2d98cf2)
cristgl
commented
4 years ago Updated policies for Windows 2012 R2 Member L1 and L2 and Domain L1 and L2. (https://github.com/wazuh/wazuh-ruleset/commit/bc75ae24d5bfd6014d8c315543f2a28798a4c6cb and https://github.com/wazuh/wazuh-ruleset/commit/ca40ca6e9441eb8121907b3f6fdb175c3ab2bc2c)
Reviewing policy win_audit_rcl.
Skeptor
commented
4 years ago Updated Windows 10 Enterprise L1 policy. The commits: https://github.com/wazuh/wazuh-ruleset/commit/086808e8c7ef21217c7a57657a954aa7d5cb65f2 and https://github.com/wazuh/wazuh-ruleset/commit/bfb1c8b337cd9a7d60b33acb89fd25a1b1981a57 update the policy from version 1.4.0 to version 1.5.0
cristgl
commented
4 years ago Updated Windows 10 Enterprise L2 policy and review for 2012 R2 Domain L1 and L2. (https://github.com/wazuh/wazuh-ruleset/commit/eeb72d5b2236c0f2f3179869edfa6df9461902b9 and https://github.com/wazuh/wazuh-ruleset/commit/2400f64f1babadb0da0df8889d15f139ba4824fe)
Skeptor
commented
4 years ago Im testing the RHEL 7 policies with the new SCA development:
Scan summary:
Checks results:
In Centos 7 the file /etc/redhat-release is a symbolic link to /etc/centos-release, so the requeriments needs to be changes due to SCA doesn't follow symbolic links.
Skeptor
commented
4 years ago Testing of the RHEL 6 policy:
Summary of the checks:
Checks results:
JuantAldea
commented
4 years ago RHEL5: Changed configuration to PASS for every check but those involving new partitions & SSH access
Result for check id: 5500 'Create Separate Partition for /tmp' -> 0
Result for check id: 5501 'Set nodev option for /tmp Partition' -> 0
Result for check id: 5502 'Set nosuid option for /tmp Partition' -> 0
Result for check id: 5503 'Set noexec option for /tmp Partition' -> 0
Result for check id: 5504 'Create Separate Partition for /var' -> 0
Result for check id: 5505 'Bind Mount the /var/tmp directory to /tmp' -> 1
Result for check id: 5506 'Create Separate Partition for /var/log' -> 0
Result for check id: 5507 'Create Separate Partition for /var/log/audit' -> 0
Result for check id: 5508 'Create Separate Partition for /home' -> 0
Result for check id: 5509 'Add nodev Option to /home' -> 0
Result for check id: 5513 'Add nodev Option to /dev/shm Partition' -> 0
Result for check id: 5514 'Add nosuid Option to /dev/shm Partition' -> 0
Result for check id: 5515 'Add noexec Option to /dev/shm Partition' -> 0
Result for check id: 5516 'Disable yum-updatesd' -> 1
Result for check id: 5517 'Enable SELinux in /etc/grub.conf' -> 2
Result for check id: 5518 'Set the SELinux State' -> 0
Result for check id: 5519 'Set the SELinux Policy' -> 1
Result for check id: 5520 'Remove SETroubleshoot' -> 1
Result for check id: 5521 'Disable MCS Translation Service (mcstrans)' -> 1
Result for check id: 5538 'Disable NFS and RPC' -> 1
Result for check id: 5522 'Set Boot Loader Password' -> 2
Result for check id: 5523 'Require Authentication for Single-User Mode' -> 1
Result for check id: 5524 'Disable Interactive Boot' -> 1
Result for check id: 5525 'Restrict Core Dumps' -> 1
Result for check id: 5526 'Enable Randomized Virtual Memory Region Placement' -> 1
Result for check id: 5527 'Configure ExecShield' -> 1
Result for check id: 5528 'Disable Prelink' -> 1
Result for check id: 5529 'Remove telnet-server' -> 1
Result for check id: 5530 'Remove rsh-server' -> 1
Result for check id: 5531 'Remove NIS Client' -> 1
Result for check id: 5532 'Remove NIS Server' -> 1
Result for check id: 5533 'Remove tftp-server' -> 1
Result for check id: 5534 'Remove talk-server' -> 1
Result for check id: 5535 'Set Daemon umask' -> 1
Result for check id: 5536 'Remove X Windows' -> 1
Result for check id: 5537 'Disable Avahi Server' -> 1
Result for check id: 5539 'Remove FTP Server' -> 1
Result for check id: 5540 'Remove HTTP Server' -> 1
Result for check id: 5541 'Remove Dovecot' -> 1
Result for check id: 5543 'Remove Samba' -> 1
Result for check id: 5544 'Remove HTTP Proxy Server' -> 1
Result for check id: 5545 'Remove SNMP Server' -> 1
Result for check id: 5546 'Disable IP Forwarding' -> 1
Result for check id: 5547 'Disable Send Packet Redirects' -> 1
Result for check id: 5548 'Disable Source Routed Packet Acceptance' -> 1
Result for check id: 5549 'Disable ICMP Redirect Acceptance' -> 1
Result for check id: 5550 'Disable Secure ICMP Redirect Acceptance' -> 1
Result for check id: 5551 'Log Suspicious Packets' -> 1
Result for check id: 5552 'Enable Ignore Broadcast Requests' -> 1
Result for check id: 5553 'Enable Bad Error Message Protection' -> 1
Result for check id: 5554 'Enable RFC-recommended Source Route Validation' -> 1
Result for check id: 5555 'Enable TCP SYN Cookies' -> 1
Result for check id: 5556 'Set SSH Protocol to 2' -> 1
Result for check id: 5557 'Ensure SSH LogLevel is set to INFO' -> 1
Result for check id: 5558 'Ensure SSH MaxAuthTries is set to 4 or less' -> 1
Result for check id: 5559 'Set SSH IgnoreRhosts to Yes' -> 0
Result for check id: 5560 'Set SSH HostbasedAuthentication to No' -> 0
Result for check id: 5561 'Disable SSH Root Login' -> 0
Result for check id: 5562 'Set SSH PermitEmptyPasswords to No' -> 0
Result for check id: 5563 'Verify No UID 0 Accounts Exist Other Than root' -> 1Few rules fixed for all RHEL
Skeptor
commented
4 years ago Testing for SUSE 12 policy:
Summary of the checks:
Checks results:
JuantAldea
commented
4 years ago Result for check id: 5500 'Create Separate Partition for /tmp' -> 1
Result for check id: 5501 'Set nodev option for /tmp Partition' -> 1
Result for check id: 5502 'Set nosuid option for /tmp Partition' -> 1
Result for check id: 5503 'Set noexec option for /tmp Partition' -> 1
Result for check id: 5504 'Create Separate Partition for /var' -> 1
Result for check id: 5505 'Bind Mount the /var/tmp directory to /tmp' -> 1
Result for check id: 5506 'Create Separate Partition for /var/log' -> 1
Result for check id: 5507 'Create Separate Partition for /var/log/audit' -> 1
Result for check id: 5508 'Create Separate Partition for /home' -> 1
Result for check id: 5509 'Add nodev Option to /home' -> 1
Result for check id: 5510 'Add nodev Option to /dev/shm Partition' -> 1
Result for check id: 5511 'Add nosuid Option to /dev/shm Partition' -> 1
Result for check id: 5512 'Add noexec Option to /dev/shm Partition' -> 1
Result for check id: 5513 'Disable yum-updatesd' -> 1
Result for check id: 5514 'Enable SELinux in /etc/grub.conf' -> 1
Result for check id: 5515 'Set the SELinux State' -> 1
Result for check id: 5516 'Set the SELinux Policy' -> 1
Result for check id: 5517 'Remove SETroubleshoot' -> 1
Result for check id: 5518 'Disable MCS Translation Service (mcstrans)' -> 1
Result for check id: 5519 'Set Boot Loader Password' -> 1
Result for check id: 5520 'Require Authentication for Single-User Mode' -> 1
Result for check id: 5521 'Disable Interactive Boot' -> 1
Result for check id: 5522 'Restrict Core Dumps' -> 1
Result for check id: 5523 'Enable Randomized Virtual Memory Region Placement' -> 1
Result for check id: 5524 'Configure ExecShield' -> 1
Result for check id: 5525 'Disable Prelink' -> 1
Result for check id: 5526 'Remove telnet-server' -> 1
Result for check id: 5527 'Remove rsh-server' -> 1
Result for check id: 5528 'Remove NIS Client' -> 1
Result for check id: 5529 'Remove NIS Server' -> 1
Result for check id: 5530 'Remove tftp-server' -> 1
Result for check id: 5531 'Remove talk-server' -> 1
Result for check id: 5532 'Set Daemon umask' -> 1
Result for check id: 5533 'Remove X Windows' -> 1
Result for check id: 5534 'Disable Avahi Server' -> 1
Result for check id: 5535 'Disable NFS and RPC' -> 1
Result for check id: 5536 'Remove FTP Server' -> 1
Result for check id: 5537 'Remove HTTP Server' -> 1
Result for check id: 5538 'Remove Dovecot' -> 1
Result for check id: 5539 'Remove Samba' -> 1
Result for check id: 5540 'Remove HTTP Proxy Server' -> 1
Result for check id: 5541 'Remove SNMP Server' -> 1
Result for check id: 5542 'Disable IP Forwarding' -> 1
Result for check id: 5543 'Disable Send Packet Redirects' -> 1
Result for check id: 5544 'Disable Source Routed Packet Acceptance' -> 1
Result for check id: 5545 'Disable ICMP Redirect Acceptance' -> 1
Result for check id: 5546 'Disable Secure ICMP Redirect Acceptance' -> 1
Result for check id: 5547 'Log Suspicious Packets' -> 1
Result for check id: 5548 'Enable Ignore Broadcast Requests' -> 1
Result for check id: 5549 'Enable Bad Error Message Protection' -> 1
Result for check id: 5550 'Enable RFC-recommended Source Route Validation' -> 1
Result for check id: 5551 'Enable TCP SYN Cookies' -> 1
Result for check id: 5552 'Set SSH Protocol to 2' -> 1
Result for check id: 5553 'Ensure SSH LogLevel is set to INFO' -> 1
Result for check id: 5554 'Ensure SSH MaxAuthTries is set to 4 or less' -> 1
Result for check id: 5555 'Set SSH IgnoreRhosts to Yes' -> 1
Result for check id: 5556 'Set SSH HostbasedAuthentication to No' -> 1
Result for check id: 5557 'Disable SSH Root Login' -> 1
Result for check id: 5558 'Set SSH PermitEmptyPasswords to No' -> 1
Result for check id: 5559 'Verify No UID 0 Accounts Exist Other Than root' -> 1Result for check Requirements check 'Check RHEL6 version' -> 1
Result for check id: 6000 'Ensure separate partition exists for /tmp' -> 1
Result for check id: 6001 'Ensure nodev option set on /tmp partition' -> 1
Result for check id: 6002 'Ensure nosuid option set on /tmp partition' -> 1
Result for check id: 6003 'Ensure noexec option set on /tmp partition' -> 1
Result for check id: 6004 'Ensure separate partition exists for /var' -> 1
Result for check id: 6005 'Ensure separate partition exists for /var/tmp' -> 1
Result for check id: 6006 'Ensure separate partition exists for /var/log' -> 1
Result for check id: 6007 'Ensure separate partition exists for /var/log/audit' -> 1
Result for check id: 6008 'Ensure separate partition exists for /home' -> 1
Result for check id: 6009 'Ensure nodev option set on /home partition' -> 1
Result for check id: 6010 'Ensure nodev option set on /dev/shm partition' -> 1
Result for check id: 6011 'Ensure nosuid option set on /dev/shm partition' -> 1
Result for check id: 6012 'Ensure noexec option set on /dev/shm partition' -> 1
Result for check id: 6013 'Ensure SELinux is not disabled in bootloader configuration' -> 1
Result for check id: 6014 'Ensure the SELinux state is enforcing' -> 1
Result for check id: 6015 'Ensure SELinux policy is configured' -> 1
Result for check id: 6016 'Ensure SETroubleshoot is not installed' -> 1
Result for check id: 6017 'Ensure the MCS Translation Service (mcstrans) is not installed' -> 1
Result for check id: 6018 'Ensure bootloader password is set' -> 1
Result for check id: 6019 'Ensure authentication required for single user mode' -> 1
Result for check id: 6020 'Ensure interactive boot is not enabled' -> 1
Result for check id: 6021 'Ensure core dumps are restricted' -> 1
Result for check id: 6022 'Ensure address space layout randomization (ASLR) is enabled' -> 1
Result for check id: 6023 'Ensure telnet server is not enabled' -> 1
Result for check id: 6024 'Ensure rsh server is not enabled' -> 1
Result for check id: 6025 'Ensure NIS Client is not installed' -> 1
Result for check id: 6026 'Ensure NIS Server is not enabled' -> 1
Result for check id: 6027 'Ensure tftp server is not enabled' -> 1
Result for check id: 6028 'Ensure talk server is disabled' -> 1
Result for check id: 6029 'Ensure X Window System is not installed' -> 1
Result for check id: 6030 'Ensure Avahi Server is not enabled' -> 1
Result for check id: 6031 'Ensure NFS and RPC are not enabled' -> 1
Result for check id: 6032 'Ensure FTP Server is not enabled' -> 1
Result for check id: 6033 'Ensure HTTP server is not enabled' -> 1
Result for check id: 6034 'Ensure IMAP and POP3 server is not enabled' -> 1
Result for check id: 6035 'Ensure Samba is not enabled' -> 1
Result for check id: 6036 'Ensure HTTP Proxy Server is not enabled' -> 1
Result for check id: 6037 'Ensure SNMP Server is not enabled' -> 1
Result for check id: 6038 'Ensure IP forwarding is disabled' -> 1
Result for check id: 6039 'Ensure packet redirect sending is disabled' -> 1
Result for check id: 6040 'Ensure source routed packets are not accepted' -> 1
Result for check id: 6041 'Ensure ICMP redirects are not accepted' -> 1
Result for check id: 6042 'Ensure secure ICMP redirects are not accepted' -> 1
Result for check id: 6043 'Ensure suspicious packets are logged' -> 1
Result for check id: 6044 'Ensure broadcast ICMP requests are ignored' -> 1
Result for check id: 6045 'Ensure bogus ICMP responses are ignored' -> 1
Result for check id: 6046 'Ensure Reverse Path Filtering is enabled' -> 1
Result for check id: 6047 'Ensure TCP SYN Cookies is enabled' -> 1
Result for check id: 6048 'Ensure SSH Protocol is set to 2' -> 1
Result for check id: 6049 'Ensure SSH LogLevel is set to INFO' -> 1
Result for check id: 6050 'Ensure SSH MaxAuthTries is set to 4 or less' -> 1
Result for check id: 6051 'Ensure SSH IgnoreRhosts is enabled' -> 1
Result for check id: 6052 'Ensure SSH HostbasedAuthentication is disabled' -> 1
Result for check id: 6053 'Ensure SSH root login is disabled' -> 1
Result for check id: 6054 'Ensure SSH PermitEmptyPasswords is disabled' -> 1
Result for check id: 6055 'Ensure root is the only UID 0 account' -> 1Results for Solaris 11 policy:
Summary of the checks:
Results of the checks:
cristgl
commented
4 years ago Test for Windows 10 Enterprise L1:
sqlite> select * from sca_scan_info;
1375513115|1561459225|1561459225|cis_win10_enterprise_L1|48|183|1|232|20|0f01babebd66ea2f12e500eed1102a71afaebf88a0872930c0f5155b9ea211f3sqlite> select id,result,status,reason from sca_check;
12000|passed||
12001|passed||
12002|failed||
12003|passed||
12004||Not applicable|Key 'AllocateDASD' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon'
12005|passed||
12006|passed||
12007|passed||
12008|passed||
12009|passed||
12010|failed||
12011|failed||
12012|passed||
12013|failed||
12014|failed||
12015|passed||
12016|passed||
12017|passed||
12018|failed||
12019|failed||
12020|passed||
12021|failed||
12022|passed||
12023|failed||
12024|failed||
12025|passed||
12026|failed||
12027|passed||
12028|passed||
12029|passed||
12030|failed||
12031|failed||
12032|passed||
12033|failed||
12034|failed||
12035|failed||
12036|failed||
12037|passed||
12039|failed||
12040|passed||
12041|failed||
12042|failed||
12043|passed||
12044|passed||
12045|passed||
12046|passed||
12047|passed||
12048|passed||
12049|failed||
12050|passed||
12051|passed||
12052|passed||
12053|passed||
12054|passed||
12055|passed||
12056|failed||
12057|failed||
12058|passed||
12059|passed||
12060|failed||
12061|passed||
12062|passed||
12063|failed||
12064|failed||
12065|passed||
12066|failed||
12067|failed||
12068|passed||
12069|failed||
12070|failed||
12071|failed||
12072|failed||
12073|failed||
12074|failed||
12075|failed||
12076|failed||
12077|failed||
12078|failed||
12079|failed||
12080|failed||
12081|failed||
12082|passed||
12083|failed||
12084|failed||
12085|failed||
12086|failed||
12087|failed||
12088|failed||
12089|failed||
12090|failed||
12091|failed||
12092|failed||
12093|failed||
12094|failed||
12095|failed||
12096|failed||
12097|failed||
12098|failed||
12099|failed||
12100|failed||
12101|failed||
12102|failed||
12103|failed||
12104|failed||
12105|failed||
12106|failed||
12107|failed||
12108|failed||
12109|failed||
12110|failed||
12111|failed||
12112|failed||
12113|failed||
12114|failed||
12115|passed||
12116|failed||
12117|failed||
12118|failed||
12119|failed||
12120|failed||
12121|failed||
12122|failed||
12123|failed||
12124|failed||
12125|failed||
12126|failed||
12127|failed||
12128|failed||
12129|passed||
12130|failed||
12131|failed||
12132|failed||
12133|failed||
12134|passed||
12135|failed||
12136|failed||
12137|failed||
12138|failed||
12139|failed||
12140|passed||
12141|failed||
12142|failed||
12143|failed||
12144|failed||
12145|failed||
12146|failed||
12147|failed||
12148|failed||
12149|failed||
12150|failed||
12151|failed||
12152|failed||
12153|failed||
12154|failed||
12155|failed||
12156|failed||
12157|failed||
12158|failed||
12159|failed||
12160|failed||
12161|failed||
12162|failed||
12163|failed||
12164|failed||
12165|failed||
12166|failed||
12167|failed||
12168|failed||
12169|failed||
12170|failed||
12171|failed||
12172|failed||
12173|failed||
12174|failed||
12175|failed||
12176|failed||
12177|failed||
12178|failed||
12179|failed||
12180|failed||
12181|failed||
12182|failed||
12183|failed||
12184|passed||
12185|failed||
12186|failed||
12187|failed||
12188|failed||
12189|failed||
12190|failed||
12191|failed||
12192|failed||
12193|failed||
12194|failed||
12195|failed||
12196|failed||
12197|failed||
12198|failed||
12199|failed||
12200|failed||
12201|failed||
12202|failed||
12203|failed||
12204|failed||
12205|failed||
12206|failed||
12207|failed||
12208|failed||
12209|failed||
12210|failed||
12211|failed||
12212|failed||
12213|failed||
12214|failed||
12215|failed||
12216|failed||
12217|failed||
12218|failed||
12219|failed||
12220|failed||
12221|failed||
12222|failed||
12223|failed||
12224|failed||
12225|failed||
12226|failed||
12227|failed||
12228|failed||
12229|failed||
12230|passed||
12231|passed||
12232|passed||Test for Windows 10 Enterprise L2:
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
26|59|0|85|30sqlite> select id,result,status,reason from sca_check;
12500|passed||
12501|passed||
12502|passed||
12503|passed||
12504|passed||
12505|failed||
12506|failed||
12507|failed||
12508|failed||
12509|failed||
12510|failed||
12511|failed||
12512|failed||
12513|failed||
12514|failed||
12515|failed||
12516|failed||
12517|passed||
12518|failed||
12519|failed||
12520|failed||
12521|failed||
12522|failed||
12523|failed||
12524|failed||
12525|passed||
12526|failed||
12527|failed||
12528|failed||
12529|failed||
12530|failed||
12531|passed||
12532|passed||
12533|failed||
12534|passed||
12535|failed||
12536|passed||
12537|passed||
12538|passed||
12539|passed||
12540|passed||
12541|passed||
12542|passed||
12543|failed||
12544|failed||
12545|failed||
12546|failed||
12547|passed||
12548|passed||
12549|passed||
12550|passed||
12551|passed||
12552|passed||
12553|passed||
12554|failed||
12555|failed||
12556|failed||
12557|failed||
12558|failed||
12559|failed||
12560|failed||
12561|failed||
12562|failed||
12563|failed||
12564|failed||
12565|failed||
12566|failed||
12567|failed||
12568|failed||
12569|failed||
12570|failed||
12571|failed||
12572|failed||
12573|failed||
12574|failed||
12575|failed||
12576|failed||
12577|failed||
12578|passed||
12579|failed||
12580|failed||
12581|passed||
12582|failed||
12583|failed||
12584|failed||Test for Windows 2012 R2 Member L1:
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
48|112|1|161|30sqlite> select id,result,status,reason from sca_check;
9000|failed||
9001|passed||
9002|passed||
9003|passed||
9004|passed||
9005|passed||
9006|passed||
9007|passed||
9008|passed||
9009|passed||
9010|passed||
9011|passed||
9012|passed||
9013|passed||
9015|passed||
9016|failed||
9017|passed||
9018|passed||
9019|passed||
9020|passed||
9021|passed||
9022|passed||
9023|failed||
9024|passed||
9025|failed||
9026|passed||
9027|failed||
9028|passed||
9029|failed||
9030|passed||
9031|passed||
9032|passed||
9033|passed||
9034|passed||
9035|failed||
9036|failed||
9037|failed||
9038|failed||
9039|passed||
9040|passed||
9041|passed||
9042|failed||
9043|failed||
9044|failed||
9045|passed||
9046|passed||
9047|passed||
9048|failed||
9049|passed||
9050|passed||
9051|passed||
9052|failed||
9053|passed||
9054|passed||
9055|passed||
9056|passed||
9057|failed||
9058|failed||
9059|failed||
9060|failed||
9061|failed||
9062|failed||
9063|failed||
9064|failed||
9065|failed||
9066|failed||
9067|failed||
9068|failed||
9069|failed||
9070|failed||
9071|failed||
9072|failed||
9073|failed||
9074|failed||
9075|failed||
9076|failed||
9077|failed||
9078|failed||
9079|failed||
9080|failed||
9081|failed||
9082|failed||
9083|failed||
9084|failed||
9085|failed||
9086|failed||
9087|failed||
9088|failed||
9089|failed||
9090|failed||
9092|failed||
9093|failed||
9094|failed||
9095|failed||
9096|failed||
9097|failed||
9098|failed||
9099|failed||
9100|failed||
9101|passed||
9102|failed||
9103|passed||
9104|failed||
9105|failed||
9106|passed||
9107|passed||
9108|failed||
9109|failed||
9110|failed||
9111|failed||
9112|failed||
9113|failed||
9114|failed||
9115|failed||
9116|failed||
9117|failed||
9118|failed||
9119|failed||
9120|failed||
9121|failed||
9122|failed||
9123|failed||
9124|failed||
9125|failed||
9126|failed||
9127|failed||
9128|failed||
9129|failed||
9130|failed||
9131|failed||
9132|failed||
9133|failed||
9134|failed||
9135|failed||
9136|failed||
9137|failed||
9138|failed||
9139|failed||
9140|failed||
9141|failed||
9142|failed||
9143|failed||
9144|failed||
9145|failed||
9146|failed||
9147|failed||
9148|failed||
9149|failed||
9150|passed||
9151|failed||
9152|failed||
9153|failed||
9154|failed||
9155|failed||
9156|failed||
9157|failed||
9158|failed||
9159|passed||
9160|passed||
9161|failed||Test for Windows 2012 R2 Member L2:
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
3|41|1|45|6sqlite> select id,result,status,reason from sca_check;
9500|failed||
9501|failed||
9502|failed||
9503|failed||
9504|failed||
9505|failed||
9506|failed||
9507|failed||
9508|failed||
9509|failed||
9510|failed||
9511|failed||
9512|failed||
9513|failed||
9514|failed||
9515|failed||
9516|failed||
9517|failed||
9518|failed||
9519|failed||
9520|failed||
9521|passed||
9522|passed||
9523|failed||
9524|failed||
9525|failed||
9526|failed||
9527|failed||
9528|failed||
9529|failed||
9530|failed||
9531|failed||
9532|failed||
9533|failed||
9534|failed||
9535|failed||
9537|failed||
9538|failed||
9539|failed||
9540|failed||
9541|passed||
9542|failed||
9543|failed||
9544|failed||Test for Windows 2012 R2 Domain L1:
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
50|106|1|157|32sqlite> select id,result,status,reason from sca_check;
8000|failed||
8001|passed||
8002|passed||
8003|passed||
8004|passed||
8005|passed||
8006|passed||
8007|passed||
8008|passed||
8009|passed||
8010|passed||
8011|passed||
8012|passed||
8013|passed||
8014|passed||
8015|passed||
8017|passed||
8018|passed||
8019|passed||
8020|passed||
8021|passed||
8022|passed||
8023|passed||
8024|failed||
8025|passed||
8026|failed||
8027|passed||
8028|failed||
8029|passed||
8030|passed||
8031|passed||
8032|passed||
8033|passed||
8034|failed||
8035|failed||
8036|failed||
8037|failed||
8038|passed||
8039|passed||
8040|passed||
8041|passed||
8042|failed||
8043|failed||
8044|passed||
8045|passed||
8046|passed||
8047|failed||
8048|passed||
8049|passed||
8050|passed||
8051|failed||
8052|passed||
8053|passed||
8054|passed||
8055|passed||
8056|failed||
8057|failed||
8058|failed||
8059|failed||
8060|failed||
8061|failed||
8062|failed||
8063|failed||
8064|failed||
8065|failed||
8066|failed||
8067|failed||
8068|failed||
8069|failed||
8070|failed||
8071|failed||
8072|failed||
8073|failed||
8074|failed||
8075|failed||
8076|failed||
8077|failed||
8078|failed||
8079|failed||
8080|failed||
8081|failed||
8082|failed||
8083|failed||
8084|failed||
8085|failed||
8086|failed||
8087|failed||
8088|failed||
8089|failed||
8090|failed||
8091|failed||
8092|failed||
8093|passed||
8094|failed||
8095|passed||
8096|failed||
8097|failed||
8098|passed||
8099|passed||
8100|failed||
8101|failed||
8102|failed||
8103|failed||
8104|failed||
8105|failed||
8106|failed||
8107|failed||
8108|failed||
8109|failed||
8110|failed||
8111|failed||
8112|failed||
8113|failed||
8114|failed||
8115|failed||
8116|failed||
8117|failed||
8118|failed||
8119|failed||
8120|failed||
8121|failed||
8122|failed||
8123|failed||
8124|failed||
8125|failed||
8126|failed||
8127|failed||
8128|failed||
8129|failed||
8130|failed||
8131|failed||
8132|failed||
8133|failed||
8134|failed||
8135|failed||
8136|failed||
8137|failed||
8138|failed||
8139|failed||
8140|failed||
8141|failed||
8142|failed||
8143|failed||
8144|failed||
8145|passed||
8146|failed||
8147|failed||
8148|failed||
8149|failed||
8150|failed||
8151|failed||
8152|failed||
8153|failed||
8154|passed||
8155|passed||
8156|failed||Test for Windows 2012 R2 Domain L2:
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
3|35|1|39|7sqlite> select id,result,status,reason from sca_check;
8500|passed||
8501|failed||
8502|failed||
8503|failed||
8504|failed||
8505|failed||
8506|failed||
8507|failed||
8508|failed||
8509|failed||
8510|failed||
8511|failed||
8512|failed||
8513|failed||
8514|failed||
8515|failed||
8516|failed||
8517|failed||
8518|failed||
8519|passed||
8520|passed||
8521|failed||
8522|failed||
8523|failed||
8524|failed||
8525|failed||
8526|failed||
8527|failed||
8528|failed||
8529|failed||
8530|failed||
8532|failed||
8533|failed||
8534|failed||
8535|failed||
8536|failed||
8537|failed||
8538|failed||Results for policy win_audit_rcl on Windows 2012 R2:
sqlite> select id,result,status,reason from sca_check;
2500|failed||
2501|passed||
2502|passed||
2503|failed||
2504|failed||
2505|failed||
2506|passed||
2507|passed||
2508|passed||sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
5|4|0|9|55Most checks from policy file acsc_office2016_rcl.yml have rules checking at HKEY_CURRENT_USER, which cannot be executed because SCA runs as administrator and cannot access these user registers. Nevertheless, some changes have been added to it -> https://github.com/wazuh/wazuh-ruleset/commit/f4c107da895ff1c4a3eab402de972ec71007676f
JuantAldea
commented
4 years ago Result for check Requirements check 'Check RHEL7 version' -> 1
Result for check id: 6500 'Ensure separate partition exists for /tmp' -> 1
Result for check id: 6501 'Ensure nodev option set on /tmp partition' -> 1
Result for check id: 6502 'Ensure nosuid option set on /tmp partition' -> 1
Result for check id: 6503 'Ensure noexec option set on /tmp partition' -> 1
Result for check id: 6504 'Ensure separate partition exists for /var' -> 1
Result for check id: 6505 'Ensure separate partition exists for /var/tmp' -> 1
Result for check id: 6506 'Ensure separate partition exists for /var/log' -> 1
Result for check id: 6507 'Ensure separate partition exists for /var/log/audit' -> 1
Result for check id: 6508 'Ensure separate partition exists for /home' -> 1
Result for check id: 6509 'Ensure nodev option set on /home partition' -> 1
Result for check id: 6510 'Ensure nodev option set on /dev/shm partition' -> 1
Result for check id: 6511 'Ensure nosuid option set on /dev/shm partition' -> 1
Result for check id: 6512 'Ensure noexec option set on /dev/shm partition' -> 1
Result for check id: 6513 'Ensure the SELinux state is enforcing' -> 1
Result for check id: 6514 'Ensure SELinux policy is configured' -> 1
Result for check id: 6515 'Ensure SETroubleshoot is not installed' -> 1
Result for check id: 6516 'Ensure the MCS Translation Service (mcstrans) is not installed' -> 1
Result for check id: 6517 'Ensure bootloader password is set' -> 1
Result for check id: 6518 'Ensure core dumps are restricted' -> 1
Result for check id: 6519 'Ensure address space layout randomization (ASLR) is enabled' -> 1
Result for check id: 6520 'Ensure NIS Server is not enabled' -> 1
Result for check id: 6521 'Ensure rsh server is not enabled' -> 1
Result for check id: 6522 'Ensure talk server is not enabled' -> 1
Result for check id: 6523 'Ensure telnet server is not enabled' -> 1
Result for check id: 6524 'Ensure tftp server is not enabled' -> 1
Result for check id: 6525 'Ensure rsync service is not enabled' -> 1
Result for check id: 6526 'Ensure NIS Client is not installed' -> 1
Result for check id: 6527 'Ensure xinetd is not enabled' -> 1
Result for check id: 6528 'Ensure chargen services are not enabled' -> 1
Result for check id: 6529 'Ensure daytime services are not enabled' -> 1
Result for check id: 6530 'Ensure discard services are not enabled' -> 1
Result for check id: 6531 'Ensure echo services are not enabled' -> 1
Result for check id: 6532 'Ensure time services are not enabled' -> 1
Result for check id: 6533 'Ensure X Window System is not installed' -> 1
Result for check id: 6534 'Ensure Avahi Server is not enabled' -> 1
Result for check id: 6535 'Ensure DHCP Server is not enabled' -> 1
Result for check id: 6536 'Ensure LDAP Server is not enabled' -> 1
Result for check id: 6537 'Ensure ntp is configured' -> 2
Result for check id: 6538 'Ensure chrony is configured' -> 1
Result for check id: 6539 'Ensure NFS and RPC are not enabled' -> 1
Result for check id: 6540 'Ensure FTP Server is not enabled' -> 1
Result for check id: 6541 'Ensure HTTP server is not enabled' -> 1
Result for check id: 6542 'Ensure IMAP and POP3 server is not enabled' -> 1
Result for check id: 6543 'Ensure Samba is not enabled' -> 1
Result for check id: 6544 'Ensure HTTP Proxy Server is not enabled' -> 1
Result for check id: 6545 'Ensure SNMP Server is not enabled' -> 1
Result for check id: 6546 'Ensure IP forwarding is disabled' -> 1
Result for check id: 6547 'Ensure packet redirect sending is disabled' -> 1
Result for check id: 6548 'Ensure source routed packets are not accepted' -> 1
Result for check id: 6549 'Ensure ICMP redirects are not accepted' -> 1
Result for check id: 6550 'Ensure secure ICMP redirects are not accepted' -> 1
Result for check id: 6551 'Ensure suspicious packets are logged' -> 1
Result for check id: 6552 'Ensure broadcast ICMP requests are ignored' -> 1
Result for check id: 6553 'Ensure bogus ICMP responses are ignored' -> 1
Result for check id: 6554 'Ensure Reverse Path Filtering is enabled' -> 1
Result for check id: 6555 'Ensure TCP SYN Cookies is enabled' -> 1
Result for check id: 6556 'Ensure SSH Protocol is set to 2' -> 1
Result for check id: 6557 'Ensure SSH LogLevel is set to INFO' -> 1
Result for check id: 6558 'Ensure SSH MaxAuthTries is set to 4 or less' -> 1
Result for check id: 6559 'Ensure SSH IgnoreRhosts is enabled' -> 1
Result for check id: 6560 'Ensure SSH HostbasedAuthentication is disabled' -> 1
Result for check id: 6561 'Ensure SSH root login is disabled' -> 1
Result for check id: 6562 'Ensure SSH PermitEmptyPasswords is disabled' -> 1
Result for check id: 6563 'Ensure root is the only UID 0 account' -> 1Use [1] to set a few configuration parameters to meet the policies. Mount tests can be meet without breaking the systems creating bind mounts from a folder to itself, for instance
mount --bind -o,remount,nosuid,nodev,noexec /tmp /tmp
Note remount is used to change the configuration of already mounted filesystems.
[1] https://github.com/wazuh/wazuh-qa/blob/master/integration_tests/sca/3.10/
cristgl
commented
4 years ago Results for policy system_audit_pw on Debian 9:
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
2|6|1|9|25sqlite> select id,result,status,reason from sca_check;
13000|failed||
13001|failed||
13002|failed||
13003|failed||
13004|failed||
13005|failed||
13006|passed||
13007|passed||
13008||Not applicable|Could not open file '/etc/default/passwd'Results for policy cis_apple_macOS_10.11.yml
sqlite> select id, result, status, reason from sca_check;
3000|failed||
3001|failed||
3002|failed||
3003|failed||
3004|failed||
3005|passed||
3006|failed||
3007|passed||
3008|passed||
3009|failed||
3010|passed||
3011|passed||
3012|failed||
3013|passed||
3014|failed||
3015|failed||
3016|failed||
3017|passed||
3018|passed||
3019|failed||
3020|failed||
3021|passed||
3022|passed||
3023|passed||
3024|passed||
3025|passed||
3027|failed||
3028|passed||
3029|passed||
3030|passed||
3031|failed||
3032|failed||sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info ;
16|17|0|33|48Results for policy system_audit_ssh.yml.
sqlite> select id,result,status,reason from sca_check;
1500|passed||
1501|passed||
1502|passed||
1503|passed||
1504|passed||
1505|passed||
1506|passed||
1507|passed||
1508|passed||
1509|passed||sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
10|0|0|10|100Results for policy web_vulnerabilities.yml on Debian 9 with LAMP environment.
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
0|0|16|16|0sqlite> select id,result,status,reason from sca_check;
1000||Not applicable|Could not resolve the real path of '/etc/php.ini': No such file or directory
1001||Not applicable|Could not resolve the real path of '/etc/php.ini': No such file or directory
1002||Not applicable|Could not resolve the real path of '/etc/php.ini': No such file or directory
1003||Not applicable|Could not resolve the real path of '/etc/php.ini': No such file or directory
1004||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1005||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1006||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1007||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1008||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1009||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1010||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1011||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1012||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1013||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1014||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directory
1015||Not applicable|Could not resolve the real path of '/var/htdocs': No such file or directoryResults for policy: cis_apple_macos_10_12
select pass,fail,invalid,total_checks,score from sca_scan_info;
16|14|0|30|53select id, result, status, reason from sca_check;
13500|failed||
13501|failed||
13502|failed||
13503|failed||
13504|failed||
13505|passed||
13506|passed||
13507|passed||
13508|failed||
13509|passed||
13510|passed||
13511|failed||
13512|passed||
13513|failed||
13514|failed||
13515|failed||
13516|passed||
13517|passed||
13518|failed||
13519|failed||
13520|passed||
13521|passed||
13522|passed||
13523|passed||
13524|passed||
13525|passed||
13526|passed||
13527|passed||
13528|failed||
13529|failed||Result for check Requirements check 'Check Suse 11 version' -> 1
Result for check id: 7000 'Ensure separate partition exists for /tmp' -> 1
Result for check id: 7001 'Ensure nodev option set on /tmp partition' -> 1
Result for check id: 7002 'Ensure nosuid option set on /tmp partition' -> 1
Result for check id: 7003 'Ensure noexec option set on /tmp partition' -> 1
Result for check id: 7004 'Ensure separate partition exists for /var' -> 1
Result for check id: 7005 'Ensure separate partition exists for /var/log' -> 1
Result for check id: 7006 'Ensure separate partition exists for /var/log/audit' -> 1
Result for check id: 7007 'Ensure separate partition exists for /home' -> 1
Result for check id: 7008 'Ensure nodev option set on /home partition' -> 1
Result for check id: 7009 'Ensure nodev option set on /dev/shm partition' -> 1
Result for check id: 7010 'Ensure nosuid option set on /dev/shm partition' -> 1
Result for check id: 7011 'Ensure noexec option set on /dev/shm partition' -> 1
Result for check id: 7015 'Ensure bootloader password is set' -> 1
Result for check id: 7016 'Ensure core dumps are restricted' -> 1
Result for check id: 7017 'Ensure address space layout randomization (ASLR) is enabled' -> 1
Result for check id: 7018 'Ensure chargen services are not enabled' -> 1
Result for check id: 7019 'Ensure daytime services are not enabled' -> 1
Result for check id: 7020 'Ensure discard services are not enabled' -> 1
Result for check id: 7021 'Ensure echo services are not enabled' -> 1
Result for check id: 7022 'Ensure time services are not enabled' -> 1
Result for check id: 7023 'Ensure rsh server is not enabled' -> 1
Result for check id: 7024 'Ensure talk server is not enabled' -> 1
Result for check id: 7025 'Ensure telnet server is not enabled' -> 1
Result for check id: 7026 'Ensure tftp server is not enabled' -> 1
Result for check id: 7027 'Ensure rsync service is not enabled' -> 1
Result for check id: 7028 'Ensure ntp is configured' -> 1
Result for check id: 7029 'Ensure X Window System is not installed' -> 1
Result for check id: 7030 'Ensure Avahi Server is not enabled' -> 1
Result for check id: 7031 'Ensure DHCP Server is not enabled' -> 1
Result for check id: 7032 'Ensure NFS and RPC are not enabled' -> 1
Result for check id: 7033 'Ensure DNS Server is not enabled' -> 1
Result for check id: 7034 'Ensure FTP Server is not enabled' -> 1
Result for check id: 7035 'Ensure HTTP server is not enabled' -> 1
Result for check id: 7036 'Ensure IMAP and POP3 server is not enabled' -> 1
Result for check id: 7037 'Ensure Samba is not enabled' -> 1
Result for check id: 7038 'Ensure HTTP Proxy Server is not enabled' -> 1
Result for check id: 7040 'Ensure NIS Server is not enabled' -> 1
Result for check id: 7041 'Ensure NIS Client is not installed' -> 1
Result for check id: 7042 'Ensure IPv4 forwarding is disabled' -> 1
Result for check id: 7044 'Ensure packet redirect sending is disabled' -> 1
Result for check id: 7045 'Ensure source routed packets are not accepted' -> 1
Result for check id: 7046 'Ensure ICMP redirects are not accepted' -> 1
Result for check id: 7047 'Ensure secure ICMP redirects are not accepted' -> 1
Result for check id: 7048 'Ensure suspicious packets are logged' -> 1
Result for check id: 7049 'Ensure broadcast ICMP requests are ignored' -> 1
Result for check id: 7050 'Ensure bogus ICMP responses are ignored' -> 1
Result for check id: 7051 'Ensure Reverse Path Filtering is enabled' -> 1
Result for check id: 7052 'Ensure TCP SYN Cookies is enabled' -> 1
Result for check id: 7053 'Ensure SSH Protocol is set to 2' -> 1
Result for check id: 7054 'Ensure SSH LogLevel is set to INFO' -> 1
Result for check id: 7055 'Ensure SSH MaxAuthTries is set to 4 or less' -> 1
Result for check id: 7056 'Ensure SSH IgnoreRhosts is enabled' -> 1
Result for check id: 7057 'Ensure SSH HostbasedAuthentication is disabled' -> 1
Result for check id: 7058 'Ensure SSH root login is disabled' -> 1
Result for check id: 7059 'Ensure SSH PermitEmptyPasswords is disabled' -> 1
Result for check id: 7061 'Ensure root is the only UID 0 account' -> 1
Result for check id: 7060 'Ensure password fields are not empty' -> 1UPDATED: Results for policy cis_debian8_L1.yml.
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
94|2|2|98|82sqlite> select id,result,status,reason from sca_check;
11000|passed||
11001|passed||
11002|passed||
11003|passed||
11004|passed||
11005|passed||
11006|passed||
11007|passed||
11008|passed||
11009|passed||
11010|passed||
11011|passed||
11012|passed||
11013|passed||
11014|passed||
11015|passed||
11016|passed||
11017|passed||
11018|passed||
11019|passed||
11020|passed||
11021|passed||
11022|passed||
11023|passed||
11024|passed||
11025|passed||
11026|passed||
11027||Not applicable|Could not open file '/etc/ntp.conf'
11028||Not applicable|Could not open file '/etc/chrony.conf'
11029|passed||
11030|passed||
11031|passed||
11032|passed||
11033|passed||
11034|passed||
11035|passed||
11036|passed||
11037|passed||
11038|passed||
11039|passed||
11040|passed||
11041|passed||
11042|passed||
11043|passed||
11044|passed||
11045|passed||
11046|passed||
11047|passed||
11048|passed||
11049|passed||
11050|passed||
11051|passed||
11052|passed||
11053|passed||
11054|passed||
11055|passed||
11056|passed||
11057|passed||
11058|passed||
11059|passed||
11060|passed||
11061|passed||
11062|failed||
11063|failed||
11064|passed||
11065|passed||
11066|passed||
11067|passed||
11068|passed||
11069|passed||
11070|passed||
11071|passed||
11072|passed||
11073|passed||
11074|passed||
11075|passed||
11076|passed||
11077|passed||
11078|passed||
11079|passed||
11080|passed||
11081|passed||
11082|passed||
11083|passed||
11084|passed||
11085|passed||
11086|passed||
11087|passed||
11088|passed||
11089|passed||
11090|passed||
11091|passed||
11092|passed||
11093|passed||
11094|passed||
11095|passed||
11096|passed||
11097|passed||Notes:
JuantAldea
commented
4 years ago Requirements check 'Check Suse 12 version' -> 1
id: 7500 'Ensure separate partition exists for /tmp' -> 1
id: 7501 'Ensure nodev option set on /tmp partition' -> 1
id: 7502 'Ensure nosuid option set on /tmp partition' -> 1
id: 7503 'Ensure noexec option set on /tmp partition' -> 1
id: 7504 'Ensure separate partition exists for /var' -> 1
id: 7505 'Ensure separate partition exists for /var/log' -> 1
id: 7506 'Ensure separate partition exists for /var/log/audit' -> 1
id: 7507 'Ensure separate partition exists for /home' -> 1
id: 7508 'Ensure nodev option set on /home partition' -> 1
id: 7509 'Ensure nodev option set on /dev/shm partition' -> 1
id: 7510 'Ensure nosuid option set on /dev/shm partition' -> 1
id: 7511 'Ensure noexec option set on /dev/shm partition' -> 1
id: 7516 'Ensure core dumps are restricted' -> 1
id: 7517 'Ensure address space layout randomization (ASLR) is enabled' -> 1
id: 7518 'Ensure chargen services are not enabled' -> 1
id: 7519 'Ensure daytime services are not enabled' -> 1
id: 7520 'Ensure discard services are not enabled' -> 1
id: 7521 'Ensure echo services are not enabled' -> 1
id: 7522 'Ensure time services are not enabled' -> 1
id: 7523 'Ensure rsh server is not enabled' -> 1
id: 7524 'Ensure talk server is not enabled' -> 1
id: 7525 'Ensure telnet server is not enabled' -> 1
id: 7526 'Ensure tftp server is not enabled' -> 1
id: 7527 'Ensure rsync service is not enabled' -> 1
id: 7528 'Ensure xinetd is not enabled' -> 1
id: 7529 'Ensure ntp is configured' -> 1
id: 7530 'Ensure X Window System is not installed' -> 1
id: 7531 'Ensure Avahi Server is not enabled' -> 1
id: 7532 'Ensure DHCP Server is not enabled' -> 1
id: 7533 'Ensure NFS and RPC are not enabled' -> 1
id: 7534 'Ensure DNS Server is not enabled' -> 1
id: 7535 'Ensure FTP Server is not enabled' -> 1
id: 7536 'Ensure HTTP server is not enabled' -> 1
id: 7537 'Ensure IMAP and POP3 server is not enabled' -> 1
id: 7538 'Ensure Samba is not enabled' -> 1
id: 7539 'Ensure HTTP Proxy Server is not enabled' -> 1
id: 7540 'Ensure SNMP Server is not enabled' -> 1
id: 7541 'Ensure NIS Server is not enabled' -> 1
id: 7542 'Ensure NIS Client is not installed' -> 1
id: 7543 'Ensure IP forwarding is disabled' -> 1
id: 7545 'Ensure packet redirect sending is disabled' -> 1
id: 7546 'Ensure source routed packets are not accepted' -> 1
id: 7547 'Ensure ICMP redirects are not accepted' -> 1
id: 7548 'Ensure secure ICMP redirects are not accepted' -> 1
id: 7549 'Ensure suspicious packets are logged' -> 1
id: 7550 'Ensure broadcast ICMP requests are ignored' -> 1
id: 7551 'Ensure bogus ICMP responses are ignored' -> 1
id: 7552 'Ensure Reverse Path Filtering is enabled' -> 1
id: 7553 'Ensure TCP SYN Cookies is enabled' -> 1
id: 7554 'Ensure SSH Protocol is set to 2' -> 1
id: 7555 'Ensure SSH LogLevel is set to INFO' -> 1
id: 7556 'Ensure SSH MaxAuthTries is set to 4 or less' -> 1
id: 7557 'Ensure SSH IgnoreRhosts is enabled' -> 1
id: 7558 'Ensure SSH HostbasedAuthentication is disabled' -> 1
id: 7559 'Ensure SSH root login is disabled' -> 1
id: 7562 'Ensure root is the only UID 0 account' -> 1
id: 7561 'Ensure password fields are not empty' -> 1Results for policy cis_debian8_L2.yml
sqlite> select id,result,status,reason from sca_check;
10500|passed||
10501|passed||
10502|passed||
10503|passed||
10504|passed||
10505|passed||
10506|passed||
10507|passed||
10508|passed||
10509|passed||
10510|passed||
10511|passed||
10512|passed||
10513|passed||
10514|passed||
10515|passed||
10516|passed||
10517|passed||
10518|passed||
10519|passed||
10520|passed||
10521|passed||
10522|passed||
10523|passed||
10524|passed||
10525|passed||
10526|passed||
10527|passed||
10528|passed||sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
29|0|0|29|89Result for check Requirements check 'Check RHEL6 version' -> 1
Result for check id: 6000 'Ensure separate partition exists for /tmp' -> 1
Result for check id: 6001 'Ensure nodev option set on /tmp partition' -> 1
Result for check id: 6002 'Ensure nosuid option set on /tmp partition' -> 1
Result for check id: 6003 'Ensure noexec option set on /tmp partition' -> 1
Result for check id: 6004 'Ensure separate partition exists for /var' -> 1
Result for check id: 6005 'Ensure separate partition exists for /var/tmp' -> 1
Result for check id: 6006 'Ensure separate partition exists for /var/log' -> 1
Result for check id: 6007 'Ensure separate partition exists for /var/log/audit' -> 1
Result for check id: 6008 'Ensure separate partition exists for /home' -> 1
Result for check id: 6009 'Ensure nodev option set on /home partition' -> 1
Result for check id: 6010 'Ensure nodev option set on /dev/shm partition' -> 1
Result for check id: 6011 'Ensure nosuid option set on /dev/shm partition' -> 1
Result for check id: 6012 'Ensure noexec option set on /dev/shm partition' -> 1
Result for check id: 6013 'Ensure SELinux is not disabled in bootloader configuration' -> 1
Result for check id: 6014 'Ensure the SELinux state is enforcing' -> 1
Result for check id: 6015 'Ensure SELinux policy is configured' -> 1
Result for check id: 6016 'Ensure SETroubleshoot is not installed' -> 1
Result for check id: 6017 'Ensure the MCS Translation Service (mcstrans) is not installed' -> 1
Result for check id: 6018 'Ensure bootloader password is set' -> 1
Result for check id: 6019 'Ensure authentication required for single user mode' -> 1
Result for check id: 6020 'Ensure interactive boot is not enabled' -> 1
Result for check id: 6021 'Ensure core dumps are restricted' -> 1
Result for check id: 6022 'Ensure address space layout randomization (ASLR) is enabled' -> 1
Result for check id: 6023 'Ensure telnet server is not enabled' -> 1
Result for check id: 6024 'Ensure rsh server is not enabled' -> 1
Result for check id: 6025 'Ensure NIS Client is not installed' -> 1
Result for check id: 6026 'Ensure NIS Server is not enabled' -> 1
Result for check id: 6027 'Ensure tftp server is not enabled' -> 1
Result for check id: 6028 'Ensure talk server is disabled' -> 1
Result for check id: 6029 'Ensure X Window System is not installed' -> 1
Result for check id: 6030 'Ensure Avahi Server is not enabled' -> 1
Result for check id: 6031 'Ensure NFS and RPC are not enabled' -> 1
Result for check id: 6032 'Ensure FTP Server is not enabled' -> 1
Result for check id: 6033 'Ensure HTTP server is not enabled' -> 1
Result for check id: 6034 'Ensure IMAP and POP3 server is not enabled' -> 1
Result for check id: 6035 'Ensure Samba is not enabled' -> 1
Result for check id: 6036 'Ensure HTTP Proxy Server is not enabled' -> 1
Result for check id: 6037 'Ensure SNMP Server is not enabled' -> 1
Result for check id: 6038 'Ensure IP forwarding is disabled' -> 1
Result for check id: 6039 'Ensure packet redirect sending is disabled' -> 1
Result for check id: 6040 'Ensure source routed packets are not accepted' -> 1
Result for check id: 6041 'Ensure ICMP redirects are not accepted' -> 1
Result for check id: 6042 'Ensure secure ICMP redirects are not accepted' -> 1
Result for check id: 6043 'Ensure suspicious packets are logged' -> 1
Result for check id: 6044 'Ensure broadcast ICMP requests are ignored' -> 1
Result for check id: 6045 'Ensure bogus ICMP responses are ignored' -> 1
Result for check id: 6046 'Ensure Reverse Path Filtering is enabled' -> 1
Result for check id: 6047 'Ensure TCP SYN Cookies is enabled' -> 1
Result for check id: 6048 'Ensure SSH Protocol is set to 2' -> 1
Result for check id: 6049 'Ensure SSH LogLevel is set to INFO' -> 1
Result for check id: 6050 'Ensure SSH MaxAuthTries is set to 4 or less' -> 1
Result for check id: 6051 'Ensure SSH IgnoreRhosts is enabled' -> 1
Result for check id: 6052 'Ensure SSH HostbasedAuthentication is disabled' -> 1
Result for check id: 6053 'Ensure SSH root login is disabled' -> 1
Result for check id: 6054 'Ensure SSH PermitEmptyPasswords is disabled' -> 1
Result for check id: 6055 'Ensure root is the only UID 0 account' -> 1Result for check Requirements check 'Check RHEL7 version' -> 1
Result for check id: 6500 'Ensure separate partition exists for /tmp' -> 1
Result for check id: 6501 'Ensure nodev option set on /tmp partition' -> 1
Result for check id: 6502 'Ensure nosuid option set on /tmp partition' -> 1
Result for check id: 6503 'Ensure noexec option set on /tmp partition' -> 1
Result for check id: 6504 'Ensure separate partition exists for /var' -> 1
Result for check id: 6505 'Ensure separate partition exists for /var/tmp' -> 1
Result for check id: 6506 'Ensure separate partition exists for /var/log' -> 1
Result for check id: 6507 'Ensure separate partition exists for /var/log/audit' -> 1
Result for check id: 6508 'Ensure separate partition exists for /home' -> 1
Result for check id: 6509 'Ensure nodev option set on /home partition' -> 1
Result for check id: 6510 'Ensure nodev option set on /dev/shm partition' -> 1
Result for check id: 6511 'Ensure nosuid option set on /dev/shm partition' -> 1
Result for check id: 6512 'Ensure noexec option set on /dev/shm partition' -> 1
Result for check id: 6513 'Ensure the SELinux state is enforcing' -> 1
Result for check id: 6514 'Ensure SELinux policy is configured' -> 1
Result for check id: 6515 'Ensure SETroubleshoot is not installed' -> 1
Result for check id: 6516 'Ensure the MCS Translation Service (mcstrans) is not installed' -> 1
Result for check id: 6517 'Ensure bootloader password is set' -> 1
Result for check id: 6518 'Ensure core dumps are restricted' -> 1
Result for check id: 6519 'Ensure address space layout randomization (ASLR) is enabled' -> 1
Result for check id: 6520 'Ensure NIS Server is not enabled' -> 1
Result for check id: 6521 'Ensure rsh server is not enabled' -> 1
Result for check id: 6522 'Ensure talk server is not enabled' -> 1
Result for check id: 6523 'Ensure telnet server is not enabled' -> 1
Result for check id: 6524 'Ensure tftp server is not enabled' -> 1
Result for check id: 6525 'Ensure rsync service is not enabled' -> 1
Result for check id: 6526 'Ensure NIS Client is not installed' -> 1
Result for check id: 6527 'Ensure xinetd is not enabled' -> 1
Result for check id: 6528 'Ensure chargen services are not enabled' -> 1
Result for check id: 6529 'Ensure daytime services are not enabled' -> 1
Result for check id: 6530 'Ensure discard services are not enabled' -> 1
Result for check id: 6531 'Ensure echo services are not enabled' -> 1
Result for check id: 6532 'Ensure time services are not enabled' -> 1
Result for check id: 6533 'Ensure X Window System is not installed' -> 1
Result for check id: 6534 'Ensure Avahi Server is not enabled' -> 1
Result for check id: 6535 'Ensure DHCP Server is not enabled' -> 1
Result for check id: 6536 'Ensure LDAP Server is not enabled' -> 1
Result for check id: 6537 'Ensure ntp is configured' -> 2
Result for check id: 6538 'Ensure chrony is configured' -> 1
Result for check id: 6539 'Ensure NFS and RPC are not enabled' -> 1
Result for check id: 6540 'Ensure FTP Server is not enabled' -> 1
Result for check id: 6541 'Ensure HTTP server is not enabled' -> 1
Result for check id: 6542 'Ensure IMAP and POP3 server is not enabled' -> 1
Result for check id: 6543 'Ensure Samba is not enabled' -> 1
Result for check id: 6544 'Ensure HTTP Proxy Server is not enabled' -> 1
Result for check id: 6545 'Ensure SNMP Server is not enabled' -> 1
Result for check id: 6546 'Ensure IP forwarding is disabled' -> 1
Result for check id: 6547 'Ensure packet redirect sending is disabled' -> 1
Result for check id: 6548 'Ensure source routed packets are not accepted' -> 1
Result for check id: 6549 'Ensure ICMP redirects are not accepted' -> 1
Result for check id: 6550 'Ensure secure ICMP redirects are not accepted' -> 1
Result for check id: 6551 'Ensure suspicious packets are logged' -> 1
Result for check id: 6552 'Ensure broadcast ICMP requests are ignored' -> 1
Result for check id: 6553 'Ensure bogus ICMP responses are ignored' -> 1
Result for check id: 6554 'Ensure Reverse Path Filtering is enabled' -> 1
Result for check id: 6555 'Ensure TCP SYN Cookies is enabled' -> 1
Result for check id: 6556 'Ensure SSH Protocol is set to 2' -> 1
Result for check id: 6557 'Ensure SSH LogLevel is set to INFO' -> 1
Result for check id: 6558 'Ensure SSH MaxAuthTries is set to 4 or less' -> 1
Result for check id: 6559 'Ensure SSH IgnoreRhosts is enabled' -> 1
Result for check id: 6560 'Ensure SSH HostbasedAuthentication is disabled' -> 1
Result for check id: 6561 'Ensure SSH root login is disabled' -> 1
Result for check id: 6562 'Ensure SSH PermitEmptyPasswords is disabled' -> 1
Result for check id: 6563 'Ensure root is the only UID 0 account' -> 1Adding additional checks to the win_audit_rcl policy -> https://github.com/wazuh/wazuh-ruleset/commit/654e26e9efd0cbf51ba495af79f4a51b4aa8b97f
Removing generic Debian policy and adding the missing checks to policies for Debian 8 and 9-> https://github.com/wazuh/wazuh-ruleset/commit/0a0bd21f73543a1204157877a8dfb5f513361dd7
Skeptor
commented
4 years ago Results for policy cis_mysql5-6_community.yml
sqlite> select id, result, status, reason from sca_check;
9500|passed||
9501|passed||
9502|passed||
9503|passed||
9504|failed||
9505|failed||
9506|failed||
9507|failed||
9508|failed||
9509|passed||
9510|passed||
9511|failed||
9512|failed||
9513|passed||
9514|failed||
9515|passed||
9516|failed||
9517|failed||
9518|failed||sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info;
8|11|0|19|42I've changed some wrong rules and I've checked to change the state of the configuration to obtain the opposite result. https://github.com/wazuh/wazuh-ruleset/commit/e6aec76bf416fe2364dd03ee5010c405ebc57915
cristgl
commented
4 years ago Updated policy for Apache -> https://github.com/wazuh/wazuh-ruleset/commit/0e130f555f94d853bd1dcf9b4007a9e513f3db1a
Skeptor
commented
4 years ago Result for check id: 7000 'Disable Local-only Graphical Login Environment' -> 1
Result for check id: 7001 'Configure sendmail Service for Local-Only Mode' -> 1
Result for check id: 7002 'Disable RPC Encryption Key' -> 1
Result for check id: 7003 'Disable NIS Server Services' -> 1
Result for check id: 7004 'Disable NIS Client Services' -> 1
Result for check id: 7005 'Disable Kerberos TGT Expiration Warning' -> 1
Result for check id: 7006 'Disable Generic Security Services (GSS)' -> 1
Result for check id: 7007 'Disable Removable Volume Manager' -> 1
Result for check id: 7008 'Disable automount Service' -> 1
Result for check id: 7009 'Disable Apache Service' -> 1
Result for check id: 7010 'Disable Local-only RPC Port Mapping Service' -> 1
Result for check id: 7011 'Configure TCP Wrappers' -> 1
Result for check id: 7012 'Disable Telnet Service' -> 1
Result for check id: 7013 'Restrict Core Dumps to Protected Directory' -> 1
Result for check id: 7014 'Enable Stack Protection' -> 1
Result for check id: 7015 'Enable Strong TCP Sequence Number Generation' -> 1
Result for check id: 7016 'Create CIS Audit Class' -> 1
Result for check id: 7017 'Enable Auditing of Incoming Network Connections' -> 1
Result for check id: 7018 'Enable Auditing of File Metadata Modification Events' -> 1
Result for check id: 7019 'Enable Auditing of Process and Privilege Events' -> 1
Result for check id: 7020 'Configure Solaris Auditing' -> 1
Result for check id: 7021 'Default Service File Creation Mask' -> 1
Result for check id: 7022 'Disable "nobody" Access for RPC Encryption Key Storage Service' -> 1
Result for check id: 7023 'Disable X11 Forwarding for SSH' -> 1
Result for check id: 7024 'Limit Consecutive Login Attempts for SSH' -> 1
Result for check id: 7025 'Disable Rhost-based Authentication for SSH' -> 1
Result for check id: 7026 'Disable root login for SSH' -> 1
Result for check id: 7027 'Blocking Authentication Using Empty/Null Passwords for SSH' -> 1
Result for check id: 7028 'Disable Host-based Authentication for Login-based Services' -> 1
Result for check id: 7029 'Restrict FTP Use' -> 1
Result for check id: 7030 'Set Delay between Failed Login Attempts to 4' -> 1
Result for check id: 7031 'Remove Autologin Capabilities from the GNOME desktop' -> 1
Result for check id: 7032 'Set Default Screen Lock for GNOME Users' -> 1
Result for check id: 7033 'Restrict at/cron to Authorized Users' -> 1
Result for check id: 7034 'Restrict root Login to System Console' -> 1
Result for check id: 7035 'Set Retry Limit for Account Lockout' -> 1
Result for check id: 7036 'Secure the GRUB Menu (Intel)' -> 0 <-- GRUB isn't operative in my box
Result for check id: 7037 'Set Password Expiration Parameters on Active Accounts' -> 1
Result for check id: 7038 'Set Strong Password Creation Policies' -> 1
Result for check id: 7039 'Set Default umask for users' -> 1
Result for check id: 7040 'Set Default File Creation Mask for FTP Users' -> 1
Result for check id: 7041 'Set "mesg n" as Default for All Users' -> 1
Result for check id: 7042 'Create Warnings for Standard Login Services' -> 1
Result for check id: 7043 'Enable a Warning Banner for the SSH Service' -> 1
Result for check id: 7044 'Enable a Warning Banner for the GNOME Service' -> 0 <-- My box doesn't have GNOME
Result for check id: 7045 'Enable a Warning Banner for the FTP service' -> 1
Result for check id: 7046 'Check that the Banner Setting for telnet is Null' -> 1
Result for check id: 7047 'Verify System Account Default Passwords' -> 1
Result for check id: 7048 'Ensure Password Fields are Not Empty' -> 1
Result for check id: 7049 'Verify No UID 0 Accounts Exist Other than root' -> 1
Result for check id: 7050 'Ensure root PATH Integrity' -> 1
Result for check id: 7051 'Check That Users Are Assigned Home Directories' -> 1Updated default results for Windows 10 Enterprise L1
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info where policy_id="cis_win10_enterprise_L1";
36|197|0|233|15sqlite> select id,result,status,reason from sca_check where policy_id="cis_win10_enterprise_L1";
13000|failed||
13001|passed||
13002|failed||
13003|passed||
13004|failed||
13005|passed||
13006|passed||
13007|passed||
13008|passed||
13009|passed||
13010|failed||
13011|failed||
13012|passed||
13013|failed||
13014|failed||
13015|passed||
13016|passed||
13017|passed||
13018|failed||
13019|failed||
13020|passed||
13021|failed||
13022|passed||
13023|failed||
13024|failed||
13025|passed||
13026|failed||
13027|passed||
13028|passed||
13029|passed||
13030|failed||
13031|failed||
13032|passed||
13033|failed||
13034|failed||
13035|failed||
13036|failed||
13037|passed||
13038|passed||
13039|failed||
13040|passed||
13041|failed||
13042|failed||
13043|passed||
13044|passed||
13045|failed||
13046|passed||
13047|failed||
13048|failed||
13049|failed||
13050|passed||
13051|passed||
13052|passed||
13053|passed||
13054|failed||
13055|passed||
13056|failed||
13057|failed||
13058|passed||
13059|passed||
13060|failed||
13061|passed||
13062|passed||
13063|failed||
13064|failed||
13065|passed||
13066|failed||
13067|failed||
13068|passed||
13069|failed||
13070|failed||
13071|failed||
13072|failed||
13073|failed||
13074|failed||
13075|failed||
13076|failed||
13077|failed||
13078|failed||
13079|failed||
13080|failed||
13081|failed||
13082|failed||
13083|failed||
13084|failed||
13085|failed||
13086|failed||
13087|failed||
13088|failed||
13089|failed||
13090|failed||
13091|failed||
13092|failed||
13093|failed||
13094|failed||
13095|failed||
13096|failed||
13097|failed||
13098|failed||
13099|failed||
13100|failed||
13101|failed||
13102|failed||
13103|failed||
13104|failed||
13105|failed||
13106|failed||
13107|failed||
13108|failed||
13109|failed||
13110|failed||
13111|failed||
13112|failed||
13113|failed||
13114|failed||
13115|passed||
13116|failed||
13117|failed||
13118|failed||
13119|failed||
13120|failed||
13121|failed||
13122|failed||
13123|failed||
13124|failed||
13125|failed||
13126|failed||
13127|failed||
13128|failed||
13129|failed||
13130|failed||
13131|failed||
13132|failed||
13133|failed||
13134|failed||
13135|failed||
13136|failed||
13137|failed||
13138|failed||
13139|failed||
13140|failed||
13141|failed||
13142|failed||
13143|failed||
13144|failed||
13145|failed||
13146|failed||
13147|failed||
13148|failed||
13149|failed||
13150|failed||
13151|failed||
13152|failed||
13153|failed||
13154|failed||
13155|failed||
13156|failed||
13157|failed||
13158|failed||
13159|failed||
13160|failed||
13161|failed||
13162|failed||
13163|failed||
13164|failed||
13165|failed||
13166|failed||
13167|failed||
13168|failed||
13169|failed||
13170|failed||
13171|failed||
13172|failed||
13173|failed||
13174|failed||
13175|failed||
13176|failed||
13177|failed||
13178|failed||
13179|failed||
13180|failed||
13181|failed||
13182|failed||
13183|failed||
13184|failed||
13185|failed||
13186|failed||
13187|failed||
13188|failed||
13189|failed||
13190|failed||
13191|failed||
13192|failed||
13193|failed||
13194|failed||
13195|failed||
13196|failed||
13197|failed||
13198|failed||
13199|failed||
13200|failed||
13201|failed||
13202|failed||
13203|failed||
13204|failed||
13205|failed||
13206|failed||
13207|failed||
13208|failed||
13209|failed||
13210|failed||
13211|failed||
13212|failed||
13213|failed||
13214|failed||
13215|failed||
13216|failed||
13217|failed||
13218|failed||
13219|failed||
13220|failed||
13221|failed||
13222|failed||
13223|failed||
13224|failed||
13225|failed||
13226|failed||
13227|failed||
13228|failed||
13229|failed||
13230|failed||
13231|failed||
13232|failed||Updated default results for Windows 10 Enterprise L2
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info where policy_id="cis_win10_enterprise_L2";
1|84|0|85|1sqlite> select id,result,status,reason from sca_check where policy_id="cis_win10_enterprise_L2";
13500|failed||
13501|failed||
13502|failed||
13503|failed||
13504|failed||
13505|failed||
13506|failed||
13507|failed||
13508|failed||
13509|failed||
13510|failed||
13511|failed||
13512|failed||
13513|failed||
13514|failed||
13515|failed||
13516|failed||
13517|passed||
13518|failed||
13519|failed||
13520|failed||
13521|failed||
13522|failed||
13523|failed||
13524|failed||
13525|failed||
13526|failed||
13527|failed||
13528|failed||
13529|failed||
13530|failed||
13531|failed||
13532|failed||
13533|failed||
13534|failed||
13535|failed||
13536|failed||
13537|failed||
13538|failed||
13539|failed||
13540|failed||
13541|failed||
13542|failed||
13543|failed||
13544|failed||
13545|failed||
13546|failed||
13547|failed||
13548|failed||
13549|failed||
13550|failed||
13551|failed||
13552|failed||
13553|failed||
13554|failed||
13555|failed||
13556|failed||
13557|failed||
13558|failed||
13559|failed||
13560|failed||
13561|failed||
13562|failed||
13563|failed||
13564|failed||
13565|failed||
13566|failed||
13567|failed||
13568|failed||
13569|failed||
13570|failed||
13571|failed||
13572|failed||
13573|failed||
13574|failed||
13575|failed||
13576|failed||
13577|failed||
13578|failed||
13579|failed||
13580|failed||
13581|failed||
13582|failed||
13583|failed||
13584|failed||Updated default results for Windows 2012 R2
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info where policy_id="sca_win_audit";
36|35|0|71|50
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info where policy_id="cis_win2012r2_domainL1";
50|106|1|157|32
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info where policy_id="cis_win2012r2_domainL2";
3|35|1|39|7
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info where policy_id="cis_win2012r2_memberL1";
48|113|1|162|29
sqlite> select pass,fail,invalid,total_checks,score from sca_scan_info where policy_id="cis_win2012r2_memberL2";
3|41|1|45|6sqlite> select id,result,status,reason from sca_check where policy_id="sca_win_audit";
14000|passed||
14001|passed||
14002|passed||
14003|passed||
14004|passed||
14005|passed||
14006|passed||
14007|passed||
14008|passed||
14009|passed||
14010|passed||
14011|passed||
14012|passed||
14013|passed||
14014|passed||
14015|passed||
14016|passed||
14017|passed||
14018|failed||
14019|passed||
14020|failed||
14021|passed||
14022|passed||
14023|passed||
14024|passed||
14025|passed||
14026|passed||
14027|passed||
14028|failed||
14029|failed||
14030|passed||
14031|passed||
14032|failed||
14033|failed||
14034|failed||
14035|passed||
14036|passed||
14037|failed||
14038|failed||
14039|failed||
14040|passed||
14041|passed||
14042|passed||
14043|failed||
14044|failed||
14045|failed||
14046|failed||
14047|failed||
14048|failed||
14049|passed||
14050|failed||
14051|failed||
14052|failed||
14053|failed||
14054|failed||
14055|failed||
14056|failed||
14057|failed||
14058|failed||
14059|failed||
14060|failed||
14061|passed||
14062|failed||
14063|failed||
14064|failed||
14065|failed||
14066|failed||
14067|failed||
14068|passed||
14069|failed||
14070|failed||sqlite> select id,result,status,reason from sca_check where policy_id="cis_win2012r2_domainL1";
11000|failed||
11001|passed||
11002|passed||
11003|passed||
11004|passed||
11005|passed||
11006|passed||
11007|failed||
11008|passed||
11009|passed||
11010|passed||
11011|passed||
11012|passed||
11013|passed||
11014|passed||
11015|passed||
11016||Not applicable|Unknown reason
11017|passed||
11018|passed||
11019|passed||
11020|passed||
11021|passed||
11022|passed||
11023|passed||
11024|passed||
11025|passed||
11026|failed||
11027|passed||
11028|failed||
11029|passed||
11030|passed||
11031|passed||
11032|passed||
11033|passed||
11034|failed||
11035|failed||
11036|failed||
11037|failed||
11038|passed||
11039|passed||
11040|passed||
11041|passed||
11042|failed||
11043|failed||
11044|passed||
11045|passed||
11046|passed||
11047|failed||
11048|passed||
11049|passed||
11050|passed||
11051|failed||
11052|passed||
11053|passed||
11054|passed||
11055|passed||
11056|failed||
11057|failed||
11058|failed||
11059|failed||
11060|failed||
11061|failed||
11062|failed||
11063|failed||
11064|failed||
11065|failed||
11066|failed||
11067|failed||
11068|failed||
11069|failed||
11070|failed||
11071|failed||
11072|failed||
11073|failed||
11074|failed||
11075|failed||
11076|failed||
11077|failed||
11078|failed||
11079|failed||
11080|failed||
11081|failed||
11082|failed||
11083|failed||
11084|failed||
11085|failed||
11086|failed||
11087|failed||
11088|failed||
11089|failed||
11090|failed||
11091|failed||
11092|failed||
11093|passed||
11094|failed||
11095|passed||
11096|failed||
11097|failed||
11098|passed||
11099|passed||
11100|failed||
11101|failed||
11102|failed||
11103|failed||
11104|failed||
11105|failed||
11106|failed||
11107|failed||
11108|failed||
11109|failed||
11110|failed||
11111|failed||
11112|failed||
11113|failed||
11114|failed||
11115|failed||
11116|failed||
11117|failed||
11118|failed||
11119|failed||
11120|failed||
11121|failed||
11122|failed||
11123|failed||
11124|failed||
11125|failed||
11126|failed||
11127|failed||
11128|failed||
11129|failed||
11130|failed||
11131|failed||
11132|failed||
11133|failed||
11134|failed||
11135|failed||
11136|failed||
11137|failed||
11138|failed||
11139|failed||
11140|failed||
11141|failed||
11142|failed||
11143|failed||
11144|failed||
11145|passed||
11146|failed||
11147|failed||
11148|failed||
11149|failed||
11150|failed||
11151|failed||
11152|failed||
11153|failed||
11154|passed||
11155|passed||
11156|failed||sqlite> select id,result,status,reason from sca_check where policy_id="cis_win2012r2_domainL2";
11500|passed||
11501|failed||
11502|failed||
11503|failed||
11504|failed||
11505|failed||
11506|failed||
11507|failed||
11508|failed||
11509|failed||
11510|failed||
11511|failed||
11512|failed||
11513|failed||
11514|failed||
11515|failed||
11516|failed||
11517|failed||
11518|failed||
11519|passed||
11520|passed||
11521|failed||
11522|failed||
11523|failed||
11524|failed||
11525|failed||
11526|failed||
11527|failed||
11528|failed||
11529|failed||
11530|failed||
11531||Not applicable|Unknown reason
11532|failed||
11533|failed||
11534|failed||
11535|failed||
11536|failed||
11537|failed||
11538|failed||sqlite> select id,result,status,reason from sca_check where policy_id="cis_win2012r2_memberL1";
12000|failed||
12001|passed||
12002|passed||
12003|passed||
12004|passed||
12005|passed||
12006|passed||
12007|passed||
12008|passed||
12009|passed||
12010|passed||
12011|passed||
12012|passed||
12013|passed||
12014||Not applicable|Unknown reason
12015|passed||
12016|failed||
12017|passed||
12018|passed||
12019|passed||
12020|passed||
12021|passed||
12022|passed||
12023|failed||
12024|passed||
12025|failed||
12026|passed||
12027|failed||
12028|passed||
12029|failed||
12030|passed||
12031|passed||
12032|passed||
12033|passed||
12034|passed||
12035|failed||
12036|failed||
12037|failed||
12038|failed||
12039|passed||
12040|passed||
12041|passed||
12042|failed||
12043|failed||
12044|failed||
12045|passed||
12046|passed||
12047|passed||
12048|failed||
12049|passed||
12050|passed||
12051|passed||
12052|failed||
12053|passed||
12054|passed||
12055|passed||
12056|passed||
12057|failed||
12058|failed||
12059|failed||
12060|failed||
12061|failed||
12062|failed||
12063|failed||
12064|failed||
12065|failed||
12066|failed||
12067|failed||
12068|failed||
12069|failed||
12070|failed||
12071|failed||
12072|failed||
12073|failed||
12074|failed||
12075|failed||
12076|failed||
12077|failed||
12078|failed||
12079|failed||
12080|failed||
12081|failed||
12082|failed||
12083|failed||
12084|failed||
12085|failed||
12086|failed||
12087|failed||
12088|failed||
12089|failed||
12090|failed||
12091|failed||
12092|failed||
12093|failed||
12094|failed||
12095|failed||
12096|failed||
12097|failed||
12098|failed||
12099|failed||
12100|failed||
12101|passed||
12102|failed||
12103|passed||
12104|failed||
12105|failed||
12106|passed||
12107|passed||
12108|failed||
12109|failed||
12110|failed||
12111|failed||
12112|failed||
12113|failed||
12114|failed||
12115|failed||
12116|failed||
12117|failed||
12118|failed||
12119|failed||
12120|failed||
12121|failed||
12122|failed||
12123|failed||
12124|failed||
12125|failed||
12126|failed||
12127|failed||
12128|failed||
12129|failed||
12130|failed||
12131|failed||
12132|failed||
12133|failed||
12134|failed||
12135|failed||
12136|failed||
12137|failed||
12138|failed||
12139|failed||
12140|failed||
12141|failed||
12142|failed||
12143|failed||
12144|failed||
12145|failed||
12146|failed||
12147|failed||
12148|failed||
12149|failed||
12150|passed||
12151|failed||
12152|failed||
12153|failed||
12154|failed||
12155|failed||
12156|failed||
12157|failed||
12158|failed||
12159|passed||
12160|passed||
12161|failed||sqlite> select id,result,status,reason from sca_check where policy_id="cis_win2012r2_memberL2";
12500|failed||
12501|failed||
12502|failed||
12503|failed||
12504|failed||
12505|failed||
12506|failed||
12507|failed||
12508|failed||
12509|failed||
12510|failed||
12511|failed||
12512|failed||
12513|failed||
12514|failed||
12515|failed||
12516|failed||
12517|failed||
12518|failed||
12519|failed||
12520|failed||
12521|passed||
12522|passed||
12523|failed||
12524|failed||
12525|failed||
12526|failed||
12527|failed||
12528|failed||
12529|failed||
12530|failed||
12531|failed||
12532|failed||
12533|failed||
12534|failed||
12535|failed||
12536||Not applicable|Unknown reason
12537|failed||
12538|failed||
12539|failed||
12540|failed||
12541|passed||
12542|failed||
12543|failed||
12544|failed||SCA default policies results for compatible Operating Systems:
| Policy | Vagrant ID/Oficial/Docker | Total checks | Pass | Fail | N/A |
|---|---|---|---|---|---|
| RHEL 7 | centos/7 | 64 | 30 | 33 | 1 |
| RHEL 6 | centos/6 | 56 | 23 | 32 | 1 |
| RHEL 5 | fbarriere/compile-centos-5 | 60 | 18 | 42 | 0 |
| SUSE 11 | suse/sles11sp3 | 57 | 23 | 34 | 0 |
| SUSE 12 | suse/sles12sp1 | 58 | 28 | 29 | 1 |
| Solaris 11 | solaris11.3.box (Internal) | 51 | 19 | 32 | 0 |
| Windows 10 L1 | Windows 10 Home | 233 | 35 | 198 | 0 |
| Windows 10 L2 | Windows 10 Home | 85 | 4 | 81 | 0 |
| Windows 10 L1 | Windows 10 Enterprise Evaluation | 233 | 37 | 196 | 0 |
| Windows 10 L2 | Windows 10 Enterprise Evaluation | 85 | 1 | 84 | 0 |
| Windows 2012 R2 Member L1 | Windows 2012 R2 Member | 162 | 32 | 130 | 0 |
| Windows 2012 R2 Member L2 | Windows 2012 R2 Member | 45 | 0 | 45 | 0 |
| Windows 2012 R2 Domain L1 | Windows 2012 R2 Domain | 157 | 52 | 105 | 0 |
| Windows 2012 R2 Domain L2 | Windows 2012 R2 Domain | 39 | 4 | 35 | 0 |
| SCA Win Audit | Windows 2012 R2 Domain | 71 | 37 | 34 | 0 |
| SCA UNIX Audit | debian/stretch64 | 23 | 4 | 12 | 7 |
| Debian 7 L1 | demandcube/ubuntu-12_x86_64-VB-4.3.8 | 99 | 30 | 59 | 10 |
| Debian 7 L2 | demandcube/ubuntu-12_x86_64-VB-4.3.8 | 29 | 1 | 28 | 0 |
| Debian 7 L1 | puppetlabs/debian-7.8-64-puppet | 99 | 27 | 63 | 9 |
| Debian 7 L2 | puppetlabs/debian-7.8-64-puppet | 29 | 0 | 28 | 1 |
| Debian 8 L1 (Ubuntu 14) | lazygray/heroku-cedar-14 | 101 | 23 | 59 | 19 |
| Debian 8 L2 (Ubuntu 14) | lazygray/heroku-cedar-14 | 29 | 1 | 25 | 3 |
| Debian 8 L1 (Debian 8) | debian/jessie64 | 101 | 38 | 60 | 3 |
| Debian 8 L2 (Debian 8) | debian/jessie64 | 29 | 2 | 27 | 0 |
| Debian 9 L1 (Ubuntu 16) | ubuntu/xenial64 | 99 | 41 | 55 | 3 |
| Debian 9 L2 (Ubuntu 16) | ubuntu/xenial64 | 29 | 3 | 26 | 0 |
| Debian 9 L1 (Ubuntu 18) | generic/ubuntu1810 | 99 | 35 | 61 | 3 |
| Debian 9 L2 (Ubuntu 18) | generic/ubuntu1810 | 29 | 3 | 26 | 0 |
| Debian 9 L1 (Debian 9) | debian/stretch64 | 99 | 33 | 63 | 3 |
| Debian 9 L2 (Debian 9) | debian/stretch64 | 29 | 2 | 27 | 0 |
| MacOS 11.11 Capitan | jhcook/osx-elcapitan-10.11 | 34 | 16 | 11 | 7 |
| MacOS 11.12 Sierra | jhcook/macos-sierra | 30 | 16 | 14 | 0 |
| MacOS 11.13 High Sierra | monsenso/macos-10.13 | 30 | 15 | 14 | 1 |
| MySQL Community | debian/stretch64 | 19 | 6 | 13 | 0 |
| MySQL Enterprise* | debian/stretch64 | 26 | 7 | 19 | 0 |
| CIS Apache | ubuntu/bionic64 | 30 | 11 | 15 | 4 |
| Web Vulnerabilities | ubuntu/bionic64 | 16 | 12 | 0 | 4 |
Invalid checks for policy _sca_unixaudit.yml on Debian 9:
4010||Not applicable|Could not open file '/etc/pam.d/password-auth'
4011||Not applicable|Could not open file '/etc/pam.d/password-auth'
4012||Not applicable|Could not open file '/etc/pam.d/password-auth'
4013||Not applicable|Could not open file '/etc/pam.d/password-auth'
4014||Not applicable|Could not open file '/etc/pam.d/password-auth'
4015||Not applicable|Could not open file '/etc/pam.d/password-auth'
4019||Not applicable|Could not open file '/etc/default/passwd'Invalid checks for policy _cis_debian9L1.yml on Debian 9:
3023||Not applicable|Could not open file '/etc/gdm3/greeter.dconf-defaults'
3026||Not applicable|Could not open file '/etc/ntp.conf'
3027||Not applicable|Could not open file '/etc/chrony.conf'Invalid checks for policy _cis_debian7L1.yml on Debian 7:
1019||Not applicable|Could not open file '/etc/inetd.conf'
1020||Not applicable|Could not open file '/etc/inetd.conf'
1021||Not applicable|Could not open file '/etc/inetd.conf'
1022||Not applicable|Could not open file '/etc/inetd.conf'
1024||Not applicable|Could not open file '/etc/inetd.conf'
1025||Not applicable|Could not open file '/etc/inetd.conf'
1026||Not applicable|Could not open file '/etc/inetd.conf'
1027||Not applicable|Could not open file '/etc/inetd.conf'
1028||Not applicable|Could not open file '/etc/inetd.conf'Invalid checks for policy _cis_debian7L2.yml on Debian 7:
1507||Not applicable|Invalid path or wrong permissions to run command 'apparmor_status'Invalid checks for policy _cis_debian8L1.yml on Debian 8:
2025||Not applicable|Could not open file '/etc/gdm3/greeter.dconf-defaults'
2028||Not applicable|Could not open file '/etc/ntp.conf'
2029||Not applicable|Could not open file '/etc/chrony.conf'Invalid checks for policy _cis_debian7L1.yml on Ubuntu 12:
1019||Not applicable|Could not open file '/etc/inetd.conf'
1020||Not applicable|Could not open file '/etc/inetd.conf'
1021||Not applicable|Could not open file '/etc/inetd.conf'
1022||Not applicable|Could not open file '/etc/inetd.conf'
1024||Not applicable|Could not open file '/etc/inetd.conf'
1025||Not applicable|Could not open file '/etc/inetd.conf'
1026||Not applicable|Could not open file '/etc/inetd.conf'
1027||Not applicable|Could not open file '/etc/inetd.conf'
1028||Not applicable|Could not open file '/etc/inetd.conf'
1042||Not applicable|Could not open file '/etc/exim4/update-exim4.conf.conf'Invalid checks for policy _cis_debian8L1.yml on Ubuntu 14:
2017||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled autofs'
2025||Not applicable|Could not open file '/etc/gdm3/greeter.dconf-defaults'
2028||Not applicable|Could not open file '/etc/ntp.conf'
2029||Not applicable|Could not open file '/etc/chrony.conf'
2030||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled avahi-daemon'
2031||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled cups'
2032||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled isc-dhcp-server'
2033||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled slapd'
2034||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled nfs-server'
2035||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled bind9'
2036||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled vsftpd'
2037||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled apache2'
2039||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled smbd'
2040||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled squid'
2041||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled snmpd'
2042||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled rsync'
2043||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled nis'
2068||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled rsyslog'
2071||Not applicable|Invalid path or wrong permissions to run command 'systemctl is-enabled cron'Invalid checks for policy _cis_debian9L1.yml on Ubuntu 16:
3023||Not applicable|Could not open file '/etc/gdm3/greeter.dconf-defaults'
3026||Not applicable|Could not open file '/etc/ntp.conf'
3027||Not applicable|Could not open file '/etc/chrony.conf'Invalid checks for policy _cis_debian9L1.yml on Ubuntu 18:
3023||Not applicable|Could not open file '/etc/gdm3/greeter.dconf-defaults'
3026||Not applicable|Could not open file '/etc/ntp.conf'
3027||Not applicable|Could not open file '/etc/chrony.conf'Invalid checks for policy _cis_apache24.yml on Ubuntu 18:
Could not open dir '/var/www/cgi-bin'|9011
Could not open dir '/var/www/cgi-bin'|9012
Could not open file '/etc/apache2/mods-enabled/ssl.conf'|9016
Could not open file '/etc/apache2/mods-enabled/ssl.conf'|9017Invalid checks for policy _cis_apple_macos_1011.yml on MacOS El Capitan:
Internal error running command 'defaults read /Library/Preferences/com.apple.SoftwareUpdate AutomaticCheckEnabled'|3001
Internal error running command 'defaults read -app Terminal SecureKeyboardEntry'|3017
Internal error running command 'java -version'|3018
Internal error running command 'defaults read /Library/Preferences/com.apple.mDNSResponder.plist NoMulticastAdvertisements'|3021
Internal error running command 'defaults read com.apple.screensaver askForPassword'|3027
Internal error running command 'defaults read NSGlobalDomain AppleShowAllExtensions'|3032
Internal error running command 'defaults read com.apple.Safari AutoOpenSafeDownloads'|3033Invalid checks for policy _cis_apple_macos_1013.yml on MacOS High Sierra:
Timeout overtaken running command 'softwareupdate -l'|8500Invalid checks for policy _cis_rhel6linux.yml on RHEL 6:
Could not open file '/boot/grub/grub.cfg'|5018Invalid checks for policy _cis_rhel7linux.yml on RHEL 7:
Could not open file '/etc/ntp.conf'|5537Invalid checks for policy _cis_sles12linux.yml on SuSE 12:
Could not open file '/etc/ntp.conf'|6525Invalid checks for policy _web_vulnerabilites.yml` on Ubuntu 18:
Could not open file '/etc/php.ini'|10500
Could not open file '/etc/php.ini'|10501
Could not open file '/etc/php.ini'|10502
Could not open file '/etc/php.ini'|10503(*) Tested on Debian 9 with MySQL Community.
cristgl
commented
4 years ago New SCA default policies results after applying these commits: https://github.com/wazuh/wazuh-ruleset/commit/ff96651a7977aa7ae9eecac162d7b56a47fb1cdc, https://github.com/wazuh/wazuh-ruleset/commit/09567e0359415d1ad1cfb702924db512800fd7cb and https://github.com/wazuh/wazuh-ruleset/commit/783206fb9a1ff38af542e1b5e2adca5ef61c7feb.
SCA default policies results for compatible Operating Systems:
| Policy | Vagrant ID/Oficial/Docker | Total checks | Pass | Fail | N/A |
|---|---|---|---|---|---|
| Windows 10 L1 | Windows 10 Home | 233 | 35 | 23 | 175 |
| Windows 10 L2 | Windows 10 Home | 85 | 4 | 21 | 60 |
| Windows 10 L1 | Windows 10 Enterprise Evaluation | 233 | 37 | 20 | 176 |
| Windows 10 L2 | Windows 10 Enterprise Evaluation | 85 | 1 | 23 | 61 |
| Windows 2012 R2 Member L1 | Windows 2012 R2 Member | 162 | 32 | 16 | 114 |
| Windows 2012 R2 Member L2 | Windows 2012 R2 Member | 45 | 0 | 2 | 43 |
| Windows 2012 R2 Domain L1 | Windows 2012 R2 Domain | 157 | 52 | 10 | 95 |
| Windows 2012 R2 Domain L2 | Windows 2012 R2 Domain | 39 | 4 | 0 | 35 |
| SCA Win Audit | Windows 10 Home | 71 | 23 | 9 | 39 |
| SCA Win Audit | Windows 2012 R2 Domain | 71 | 37 | 4 | 30 |
Invalid checks for policy _cis_win2012r2_memberL1.yml on Windows 2012 R2 Member:
sqlite> select id,result,status,reason from sca_check where policy_id="cis_win2012r2_memberL1";
12001||Not applicable|Key 'NoConnectedUser' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System'
12003||Not applicable|Key 'SCENoApplyLegacyAuditPolicy' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
12005||Not applicable|Key 'AllocateDASD' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon'
12014||Not applicable|Key 'InactivityTimeoutSecs' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System'
12025||Not applicable|Key 'SMBServerNameHardeningLevel' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanManServer\Parameters'
12033||Not applicable|Key 'NullSessionShares' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters'
12035||Not applicable|Key 'UseMachineId' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
12036||Not applicable|Key 'allownullsessionfallback' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0'
12037||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\pku2u' (The system cannot find the file specified. )
12038||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters' (The system cannot find the file specified. )
12041||Not applicable|Key 'LmCompatibilityLevel' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
12052||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System' (The system cannot find the file specified. )
12057||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
12058||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
12059||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
12060||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
12061||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
12062||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
12063||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
12064||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
12065||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
12066||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
12067||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
12068||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
12069||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
12070||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
12071||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
12072||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
12073||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
12074||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
12075||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
12076||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
12077||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
12078||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
12079||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
12080||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
12081||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
12082||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
12083||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Personalization' (The system cannot find the file specified. )
12084||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Personalization' (The system cannot find the file specified. )
12085|failed||
12086||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (The system cannot find the file specified. )
12087||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (The system cannot find the file specified. )
12088||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (The system cannot find the file specified. )
12089||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (The system cannot find the file specified. )
12090||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (The system cannot find the file specified. )
12091||Not applicable|Key 'LocalAccountTokenFilterPolicy' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
12092||Not applicable|Key 'UseLogonCredential' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest'
12093||Not applicable|Key 'AutoAdminLogon' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
12094||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters'
12095||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
12096|failed||
12097||Not applicable|Key 'NoNameReleaseOnDemand' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters'
12098||Not applicable|Key 'SafeDllSearchMode' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager'
12099||Not applicable|Key 'ScreenSaverGracePeriod' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
12100||Not applicable|Key 'WarningLevel' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Security'
12101||Not applicable|Key 'NC_AllowNetBridge_NLA' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Network Connections'
12102||Not applicable|Key 'NC_StdDomainUserSetLocation' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Network Connections'
12103||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy' (The system cannot find the file specified. )
12104||Not applicable|Key 'ProcessCreationIncludeCmdLine_Enabled' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Audit'
12105||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Policies\EarlyLaunch' (The system cannot find the file specified. )
12106||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' (The system cannot find the file specified. )
12107||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' (The system cannot find the file specified. )
12108||Not applicable|Key 'DisableBkGndGroupPolicy' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
12109||Not applicable|Key 'DontDisplayNetworkSelectionUI' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
12110||Not applicable|Key 'DontEnumerateConnectedUsers' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
12111||Not applicable|Key 'EnumerateLocalUsers' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
12112||Not applicable|Key 'DisableLockScreenAppNotifications' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
12113||Not applicable|Key 'AllowDomainPINLogon' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
12114||Not applicable|Key 'fAllowUnsolicited' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12115||Not applicable|Key 'fAllowToGetHelp' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12116||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Rpc' (The system cannot find the file specified. )
12117||Not applicable|Key 'MSAOptional' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
12118||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (The system cannot find the file specified. )
12119||Not applicable|Key 'NoAutorun' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
12120||Not applicable|Key 'NoDriveTypeAutoRun' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
12121||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CredUI' (The system cannot find the file specified. )
12122||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\CredUI' (The system cannot find the file specified. )
12123||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Application' (The system cannot find the file specified. )
12124||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Application' (The system cannot find the file specified. )
12125||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Security' (The system cannot find the file specified. )
12126||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Security' (The system cannot find the file specified. )
12127||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Setup' (The system cannot find the file specified. )
12128||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Setup' (The system cannot find the file specified. )
12129||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\System' (The system cannot find the file specified. )
12130||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\System' (The system cannot find the file specified. )
12131||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (The system cannot find the file specified. )
12132||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (The system cannot find the file specified. )
12133||Not applicable|Key 'PreXPSP2ShellProtocolBehavior' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
12134||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\OneDrive' (The system cannot find the file specified. )
12135||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Skydrive' (The system cannot find the file specified. )
12136||Not applicable|Key 'DisablePasswordSaving' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12137||Not applicable|Key 'fDisableCdm' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12138||Not applicable|Key 'fPromptForPassword' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12139||Not applicable|Key 'fEncryptRPCTraffic' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12140||Not applicable|Key 'MinEncryptionLevel' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12141||Not applicable|Key 'DeleteTempDirsOnExit' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12142||Not applicable|Key 'PerSessionTempDir' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12143||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds' (The system cannot find the file specified. )
12144||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (The system cannot find the file specified. )
12145||Not applicable|Key 'EnableSmartScreen' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
12146||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting\Consent' (The system cannot find the file specified. )
12147||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting' (The system cannot find the file specified. )
12148||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (The system cannot find the file specified. )
12149||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (The system cannot find the file specified. )
12151||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' (The system cannot find the file specified. )
12152||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' (The system cannot find the file specified. )
12153||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (The system cannot find the file specified. )
12154||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (The system cannot find the file specified. )
12155||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (The system cannot find the file specified. )
12156||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
12157||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
12158||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
12159||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (The system cannot find the file specified. )
12160||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (The system cannot find the file specified. )
12161||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (The system cannot find the file specified. )Invalid checks for policy _cis_win2012r2_memberL2.yml on Windows 2012 R2 Member:
sqlite> select id,result,status,reason from sca_check where policy_id="cis_win2012r2_memberL2";
12502||Not applicable|Key 'KeepAliveTime' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
12503||Not applicable|Key 'PerformRouterDiscovery' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
12504||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters'
12505||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
12506||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LLTD' (The system cannot find the file specified. )
12507||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LLTD' (The system cannot find the file specified. )
12508||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Peernet' (The system cannot find the file specified. )
12509||Not applicable|Key 'DisabledComponents' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters'
12510||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WCN\Registrars' (The system cannot find the file specified. )
12511||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WCN\UI' (The system cannot find the file specified. )
12512||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy' (The system cannot find the file specified. )
12513||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\TabletPC' (The system cannot find the file specified. )
12514||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\HandwritingErrorReports' (The system cannot find the file specified. )
12515||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Internet Connection Wizard' (The system cannot find the file specified. )
12516||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Policies\Microsoft\Windows\Registration Wizard Control' (The system cannot find the file specified. )
12517||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SearchCompanion' (The system cannot find the file specified. )
12518||Not applicable|Key 'NoOnlinePrintsWizard' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
12519||Not applicable|Key 'NoPublishingWizard' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
12520||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Messenger\Client' (The system cannot find the file specified. )
12521||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SQMClient\Windows' (The system cannot find the file specified. )
12522||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting' (The system cannot find the file specified. )
12523||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Control Panel\International' (The system cannot find the file specified. )
12524||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Rpc' (The system cannot find the file specified. )
12525||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy' (The system cannot find the file specified. )
12526||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}' (The system cannot find the file specified. )
12527||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo' (The system cannot find the file specified. )
12528||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\W32Time\TimeProviders\NtpClient' (The system cannot find the file specified. )
12529||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\W32Time\TimeProviders\NtpServer' (The system cannot find the file specified. )
12530||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LocationAndSensors' (The system cannot find the file specified. )
12531||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LocationAndSensors' (The system cannot find the file specified. )
12532||Not applicable|Key 'fSingleSessionPerUser' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12533||Not applicable|Key 'fDisableCcm' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12534||Not applicable|Key 'fDisableLPT' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12535||Not applicable|Key 'fDisablePNPRedir' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12536||Not applicable|Key 'MaxIdleTime' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12537||Not applicable|Key 'MaxDisconnectionTime' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
12538||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (The system cannot find the file specified. )
12539||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\CurrentVersion\Software Protection Platform' (The system cannot find the file specified. )
12540||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Spynet' (The system cannot find the file specified. )
12541||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Reporting' (The system cannot find the file specified. )
12542||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (The system cannot find the file specified. )
12543||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
12544||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service\WinRS' (The system cannot find the file specified. )Invalid checks for policy _cis_win2012r2_domanL1.yml on Windows 2012 R2 Domain:
sqlite> select id,result,status,reason from sca_check where policy_id="cis_win2012r2_domainL1";
11034||Not applicable|Key 'UseMachineId' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
11035||Not applicable|Key 'allownullsessionfallback' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0'
11036||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\pku2u' (The system cannot find the file specified. )
11051||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System' (The system cannot find the file specified. )
11056||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
11057||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
11058||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
11059||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
11060||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
11061||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
11062||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
11063||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
11064||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
11065||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
11066||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
11067||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
11068||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
11069||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
11070||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
11071||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
11072||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
11073||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
11074||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
11075||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
11076||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
11077||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
11078||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
11079||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
11080||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
11081||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
11082||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Personalization' (The system cannot find the file specified. )
11083||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Personalization' (The system cannot find the file specified. )
11084||Not applicable|Key 'UseLogonCredential' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest'
11085||Not applicable|Key 'AutoAdminLogon' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
11086||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters'
11087||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
11089||Not applicable|Key 'NoNameReleaseOnDemand' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters'
11090||Not applicable|Key 'SafeDllSearchMode' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager'
11091||Not applicable|Key 'ScreenSaverGracePeriod' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
11092||Not applicable|Key 'WarningLevel' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Security'
11097||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Policies\EarlyLaunch' (The system cannot find the file specified. )
11100||Not applicable|Key 'DisableBkGndGroupPolicy' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
11101||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (The system cannot find the file specified. )
11102||Not applicable|Key 'NoWebServices' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
11103||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (The system cannot find the file specified. )
11104||Not applicable|Key 'DontDisplayNetworkSelectionUI' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
11105||Not applicable|Key 'DontEnumerateConnectedUsers' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
11106||Not applicable|Key 'EnumerateLocalUsers' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
11107||Not applicable|Key 'DisableLockScreenAppNotifications' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
11108||Not applicable|Key 'AllowDomainPINLogon' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
11109||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' (The system cannot find the file specified. )
11110||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' (The system cannot find the file specified. )
11111||Not applicable|Key 'fAllowUnsolicited' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11112||Not applicable|Key 'fAllowToGetHelp' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11113||Not applicable|Key 'MSAOptional' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
11114||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (The system cannot find the file specified. )
11115||Not applicable|Key 'NoAutorun' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
11116||Not applicable|Key 'NoDriveTypeAutoRun' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
11117||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CredUI' (The system cannot find the file specified. )
11118||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\CredUI' (The system cannot find the file specified. )
11119||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Application' (The system cannot find the file specified. )
11120||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Application' (The system cannot find the file specified. )
11121||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Security' (The system cannot find the file specified. )
11122||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Security' (The system cannot find the file specified. )
11123||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Setup' (The system cannot find the file specified. )
11124||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Setup' (The system cannot find the file specified. )
11125||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\System' (The system cannot find the file specified. )
11126||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\System' (The system cannot find the file specified. )
11127||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (The system cannot find the file specified. )
11128||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (The system cannot find the file specified. )
11129||Not applicable|Key 'PreXPSP2ShellProtocolBehavior' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
11130||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\OneDrive' (The system cannot find the file specified. )
11131||Not applicable|Key 'DisablePasswordSaving' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11132||Not applicable|Key 'fDisableCdm' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11133||Not applicable|Key 'fPromptForPassword' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11134||Not applicable|Key 'fEncryptRPCTraffic' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11135||Not applicable|Key 'MinEncryptionLevel' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11136||Not applicable|Key 'DeleteTempDirsOnExit' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11137||Not applicable|Key 'PerSessionTempDir' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11138||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds' (The system cannot find the file specified. )
11139||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (The system cannot find the file specified. )
11140||Not applicable|Key 'EnableSmartScreen' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
11141||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting\Consent' (The system cannot find the file specified. )
11142||Not applicable|Key 'AutoApproveOSDumps' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting'
11143||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (The system cannot find the file specified. )
11144||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (The system cannot find the file specified. )
11146||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' (The system cannot find the file specified. )
11147||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' (The system cannot find the file specified. )
11148||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (The system cannot find the file specified. )
11149||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (The system cannot find the file specified. )
11150||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (The system cannot find the file specified. )
11151||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
11152||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
11153||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
11156||Not applicable|Key 'NoAutoRebootWithLoggedOnUsers' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU'Invalid checks for policy _cis_win2012r2_domanL1.yml on Windows 2012 R2 Domain:
sqlite> select id,result,status,reason from sca_check where policy_id="cis_win2012r2_domainL2";
11501||Not applicable|Key 'KeepAliveTime' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
11502||Not applicable|Key 'PerformRouterDiscovery' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
11503||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters'
11504||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
11505||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LLTD' (The system cannot find the file specified. )
11506||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LLTD' (The system cannot find the file specified. )
11507||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Peernet' (The system cannot find the file specified. )
11508||Not applicable|Key 'DisabledComponents' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters'
11509||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WCN\Registrars' (The system cannot find the file specified. )
11510||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WCN\UI' (The system cannot find the file specified. )
11511||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\TabletPC' (The system cannot find the file specified. )
11512||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\HandwritingErrorReports' (The system cannot find the file specified. )
11513||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Internet Connection Wizard' (The system cannot find the file specified. )
11514||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Policies\Microsoft\Windows\Registration Wizard Control' (The system cannot find the file specified. )
11515||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SearchCompanion' (The system cannot find the file specified. )
11516||Not applicable|Key 'NoOnlinePrintsWizard' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
11517||Not applicable|Key 'NoPublishingWizard' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
11518||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Messenger\Client' (The system cannot find the file specified. )
11521||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Control Panel\International' (The system cannot find the file specified. )
11522||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy' (The system cannot find the file specified. )
11523||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}' (The system cannot find the file specified. )
11524||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo' (The system cannot find the file specified. )
11525||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\W32Time\TimeProviders\NtpClient' (The system cannot find the file specified. )
11526||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LocationAndSensors' (The system cannot find the file specified. )
11527||Not applicable|Key 'fSingleSessionPerUser' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11528||Not applicable|Key 'fDisableCcm' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11529||Not applicable|Key 'fDisableLPT' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11530||Not applicable|Key 'fDisablePNPRedir' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11532||Not applicable|Key 'MaxDisconnectionTime' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
11533||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (The system cannot find the file specified. )
11534||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\CurrentVersion\Software Protection Platform' (The system cannot find the file specified. )
11535||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Spynet' (The system cannot find the file specified. )
11536||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (The system cannot find the file specified. )
11537||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
11538||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service\WinRS' (The system cannot find the file specified. )Invalid checks for policy sca_win_audit.yml on Windows 2012 R2 Domain:
sqlite> select id,result,status,reason from sca_check where policy_id="sca_win_audit";
14032||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
14033||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
14034||Not applicable|Key 'DisableRegistryTools' not found for registry 'HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System'
14037||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center' (The system cannot find the file specified. )
14038||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\software\policies\microsoft\windowsfirewall\domainprofile' (The system cannot find the file specified. )
14043||Not applicable|Key 'AutoAdminLogon' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
14044||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters'
14045||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
14046||Not applicable|Key 'SafeDllSearchMode' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager'
14047||Not applicable|Key 'ScreenSaverGracePeriod' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
14048||Not applicable|Key 'WarningLevel' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Security'
14050||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (The system cannot find the file specified. )
14051||Not applicable|Key 'NoWebServices' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
14052||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (The system cannot find the file specified. )
14053||Not applicable|Key 'fAllowUnsolicited' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14054||Not applicable|Key 'fAllowToGetHelp' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14055||Not applicable|Key 'NoDriveTypeAutoRun' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
14056||Not applicable|Key 'DisablePasswordSaving' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14057||Not applicable|Key 'fDisableCdm' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14058||Not applicable|Key 'fPromptForPassword' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14059||Not applicable|Key 'MinEncryptionLevel' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14060||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (The system cannot find the file specified. )
14062||Not applicable|Key 'NoAutoRebootWithLoggedOnUsers' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU'
14063||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters'
14064||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
14065||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SearchCompanion' (The system cannot find the file specified. )
14066||Not applicable|Key 'NoPublishingWizard' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
14067||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Messenger\Client' (The system cannot find the file specified. )
14069||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Rpc' (The system cannot find the file specified. )
14070||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Rpc' (The system cannot find the file specified. )Invalid checks for policy sca_win_audit.yml on Windows 10 Home:
sqlite> select id,result,status,reason from sca_check where policy_id="sca_win_audit";
14002||Not applicable|Key 'AllocateDASD' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon'
14010||Not applicable|Key 'DisableCAD' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System'
14023||Not applicable|Key 'NullSessionShares' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters'
14026||Not applicable|Key 'LmCompatibilityLevel' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
14032||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (El sistema no puede encontrar el archivo especificado. )
14033||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (El sistema no puede encontrar el archivo especificado. )
14034||Not applicable|Key 'DisableRegistryTools' not found for registry 'HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System'
14036||Not applicable|Key 'LMCompatibilityLevel' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA'
14037||Not applicable|Key 'FirewallDisableNotify' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center'
14038||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\software\policies\microsoft\windowsfirewall\domainprofile' (El sistema no puede encontrar el archivo especificado. )
14040||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting' (El sistema no puede encontrar el archivo especificado. )
14043||Not applicable|Key 'AutoAdminLogon' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
14044||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters'
14045||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
14046||Not applicable|Key 'SafeDllSearchMode' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager'
14047||Not applicable|Key 'ScreenSaverGracePeriod' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
14048||Not applicable|Key 'WarningLevel' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Security'
14049||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' (El sistema no puede encontrar el archivo especificado. )
14050||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (El sistema no puede encontrar el archivo especificado. )
14051||Not applicable|Key 'NoWebServices' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
14052||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (El sistema no puede encontrar el archivo especificado. )
14053||Not applicable|Key 'fAllowUnsolicited' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14054||Not applicable|Key 'fAllowToGetHelp' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14055||Not applicable|Key 'NoDriveTypeAutoRun' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
14056||Not applicable|Key 'DisablePasswordSaving' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14057||Not applicable|Key 'fDisableCdm' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14058||Not applicable|Key 'fPromptForPassword' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14059||Not applicable|Key 'MinEncryptionLevel' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
14060||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (El sistema no puede encontrar el archivo especificado. )
14061||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (El sistema no puede encontrar el archivo especificado. )
14062||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (El sistema no puede encontrar el archivo especificado. )
14063||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters'
14064||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
14065||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SearchCompanion' (El sistema no puede encontrar el archivo especificado. )
14066||Not applicable|Key 'NoPublishingWizard' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
14067||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Messenger\Client' (El sistema no puede encontrar el archivo especificado. )
14068||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting' (El sistema no puede encontrar el archivo especificado. )
14069||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Rpc' (El sistema no puede encontrar el archivo especificado. )
14070||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Rpc' (El sistema no puede encontrar el archivo especificado. )Invalid checks for policy cis_win10_enterprise_L1.yml on Windows 10 Home:
sqlite> select id,result,status,reason from sca_check where policy_id="cis_win10_enterprise_L1";
13000||Not applicable|Key 'NoConnectedUser' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13002||Not applicable|Key 'SCENoApplyLegacyAuditPolicy' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
13004||Not applicable|Key 'AllocateDASD' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon'
13010||Not applicable|Key 'DisableCAD' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13011||Not applicable|Key 'InactivityTimeoutSecs' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System'
13021||Not applicable|Key 'SMBServerNameHardeningLevel' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanManServer\Parameters'
13030||Not applicable|Key 'restrictremotesam' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa'
13031||Not applicable|Key 'NullSessionShares' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters'
13033||Not applicable|Key 'UseMachineId' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
13034||Not applicable|Key 'allownullsessionfallback' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0'
13035||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\pku2u' (El sistema no puede encontrar el archivo especificado. )
13036||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters' (El sistema no puede encontrar el archivo especificado. )
13039||Not applicable|Key 'LmCompatibilityLevel' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
13045||Not applicable|Key 'FilterAdministratorToken' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System'
13049||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System' (El sistema no puede encontrar el archivo especificado. )
13070||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\xbgm' (El sistema no puede encontrar el archivo especificado. )
13073||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\XboxNetApiSvce' (El sistema no puede encontrar el archivo especificado. )
13074||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (El sistema no puede encontrar el archivo especificado. )
13075||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (El sistema no puede encontrar el archivo especificado. )
13076||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (El sistema no puede encontrar el archivo especificado. )
13077||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (El sistema no puede encontrar el archivo especificado. )
13078||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13079||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13080||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13081||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13082||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (El sistema no puede encontrar el archivo especificado. )
13083||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (El sistema no puede encontrar el archivo especificado. )
13084||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (El sistema no puede encontrar el archivo especificado. )
13085||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (El sistema no puede encontrar el archivo especificado. )
13086||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13087||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13088||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13089||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13090||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (El sistema no puede encontrar el archivo especificado. )
13091||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (El sistema no puede encontrar el archivo especificado. )
13092||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (El sistema no puede encontrar el archivo especificado. )
13093||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (El sistema no puede encontrar el archivo especificado. )
13094||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (El sistema no puede encontrar el archivo especificado. )
13095||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (El sistema no puede encontrar el archivo especificado. )
13096||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13097||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13098||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13099||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (El sistema no puede encontrar el archivo especificado. )
13100||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Personalization' (El sistema no puede encontrar el archivo especificado. )
13101||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Personalization' (El sistema no puede encontrar el archivo especificado. )
13102||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\InputPersonalization' (El sistema no puede encontrar el archivo especificado. )
13103||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{D76B9641-3288-4f75-942D-087DE603E3EA}' (El sistema no puede encontrar el archivo especificado. )
13104||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (El sistema no puede encontrar el archivo especificado. )
13105||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (El sistema no puede encontrar el archivo especificado. )
13106||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (El sistema no puede encontrar el archivo especificado. )
13107||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (El sistema no puede encontrar el archivo especificado. )
13108||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (El sistema no puede encontrar el archivo especificado. )
13109||Not applicable|Key 'LocalAccountTokenFilterPolicy' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13111||Not applicable|Key 'SMB1' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters'
13112||Not applicable|Key 'DisableExceptionChainValidation' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\kernel'
13113||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\MpEngine' (El sistema no puede encontrar el archivo especificado. )
13114||Not applicable|Key 'UseLogonCredential' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest'
13115||Not applicable|Key 'AutoAdminLogon' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
13116||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters'
13117||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
13118||Not applicable|Key 'EnableICMPRedirect' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
13119||Not applicable|Key 'NoNameReleaseOnDemand' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters'
13120||Not applicable|Key 'SafeDllSearchMode' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager'
13121||Not applicable|Key 'ScreenSaverGracePeriod' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
13122||Not applicable|Key 'WarningLevel' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Security'
13123||Not applicable|Key 'NodeType' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NetBT\Parameters'
13124||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\DNSClient' (El sistema no puede encontrar el archivo especificado. )
13125||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LanmanWorkstation' (El sistema no puede encontrar el archivo especificado. )
13126||Not applicable|Key 'NC_AllowNetBridge_NLA' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Network Connections'
13127||Not applicable|Key 'NC_ShowSharedAccessUI' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Network Connections'
13128||Not applicable|Key 'NC_StdDomainUserSetLocation' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Network Connections'
13129||Not applicable|Key '\\*\NETLOGON' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths'
13130||Not applicable|Key 'fMinimizeConnections' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy'
13131||Not applicable|Key 'fBlockNonDomain' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy'
13132||Not applicable|Key 'AutoConnectAllowedOEM' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WcmSvc\wifinetworkmanager\config'
13133||Not applicable|Key 'ProcessCreationIncludeCmdLine_Enabled' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Audit'
13134||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CredentialsDelegation' (El sistema no puede encontrar el archivo especificado. )
13135||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Policies\EarlyLaunch' (El sistema no puede encontrar el archivo especificado. )
13136||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' (El sistema no puede encontrar el archivo especificado. )
13137||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' (El sistema no puede encontrar el archivo especificado. )
13138||Not applicable|Key 'EnableCdp' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13139||Not applicable|Key 'DisableBkGndGroupPolicy' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13140||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (El sistema no puede encontrar el archivo especificado. )
13141||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (El sistema no puede encontrar el archivo especificado. )
13142||Not applicable|Key 'BlockUserFromShowingAccountDetailsOnSignin' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13143||Not applicable|Key 'DontDisplayNetworkSelectionUI' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13144||Not applicable|Key 'DontEnumerateConnectedUsers' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13145||Not applicable|Key 'EnumerateLocalUsers' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13146||Not applicable|Key 'DisableLockScreenAppNotifications' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13147||Not applicable|Key 'BlockDomainPicturePassword' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13148||Not applicable|Key 'AllowDomainPINLogon' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13149||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings\f15576e8-98b7-4186-b944-eafa664402d9' (El sistema no puede encontrar el archivo especificado. )
13150||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings\f15576e8-98b7-4186-b944-eafa664402d9' (El sistema no puede encontrar el archivo especificado. )
13151||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' (El sistema no puede encontrar el archivo especificado. )
13152||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' (El sistema no puede encontrar el archivo especificado. )
13153||Not applicable|Key 'fAllowUnsolicited' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13154||Not applicable|Key 'fAllowToGetHelp' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13155||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Rpc' (El sistema no puede encontrar el archivo especificado. )
13156||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Rpc' (El sistema no puede encontrar el archivo especificado. )
13157||Not applicable|Key 'MSAOptional' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13158||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (El sistema no puede encontrar el archivo especificado. )
13159||Not applicable|Key 'NoAutorun' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13160||Not applicable|Key 'NoDriveTypeAutoRun' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13161||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Biometrics\FacialFeatures' (El sistema no puede encontrar el archivo especificado. )
13162||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CloudContent' (El sistema no puede encontrar el archivo especificado. )
13163||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Connect' (El sistema no puede encontrar el archivo especificado. )
13164||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CredUI' (El sistema no puede encontrar el archivo especificado. )
13165||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\CredUI' (El sistema no puede encontrar el archivo especificado. )
13166||Not applicable|Key 'AllowTelemetry' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection'
13167||Not applicable|Key 'DoNotShowFeedbackNotifications' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection'
13168||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PreviewBuilds' (El sistema no puede encontrar el archivo especificado. )
13169||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DeliveryOptimization' (El sistema no puede encontrar el archivo especificado. )
13170||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Application' (El sistema no puede encontrar el archivo especificado. )
13171||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Application' (El sistema no puede encontrar el archivo especificado. )
13172||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Security' (El sistema no puede encontrar el archivo especificado. )
13173||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Security' (El sistema no puede encontrar el archivo especificado. )
13174||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Setup' (El sistema no puede encontrar el archivo especificado. )
13175||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Setup' (El sistema no puede encontrar el archivo especificado. )
13176||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\System' (El sistema no puede encontrar el archivo especificado. )
13177||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\System' (El sistema no puede encontrar el archivo especificado. )
13178||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (El sistema no puede encontrar el archivo especificado. )
13179||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (El sistema no puede encontrar el archivo especificado. )
13180||Not applicable|Key 'PreXPSP2ShellProtocolBehavior' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13181||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\HomeGroup' (El sistema no puede encontrar el archivo especificado. )
13182||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftAccount' (El sistema no puede encontrar el archivo especificado. )
13183||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (El sistema no puede encontrar el archivo especificado. )
13184||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (El sistema no puede encontrar el archivo especificado. )
13185||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Security' (El sistema no puede encontrar el archivo especificado. )
13186||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\OneDrive' (El sistema no puede encontrar el archivo especificado. )
13187||Not applicable|Key 'DisablePasswordSaving' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13188||Not applicable|Key 'fDisableCdm' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13189||Not applicable|Key 'fPromptForPassword' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13190||Not applicable|Key 'fEncryptRPCTraffic' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13191||Not applicable|Key 'MinEncryptionLevel' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13192||Not applicable|Key 'DeleteTempDirsOnExit' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13193||Not applicable|Key 'PerSessionTempDir' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13194||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds' (El sistema no puede encontrar el archivo especificado. )
13195||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (El sistema no puede encontrar el archivo especificado. )
13196||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (El sistema no puede encontrar el archivo especificado. )
13197||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (El sistema no puede encontrar el archivo especificado. )
13198||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (El sistema no puede encontrar el archivo especificado. )
13199||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsStore' (El sistema no puede encontrar el archivo especificado. )
13200||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsStore' (El sistema no puede encontrar el archivo especificado. )
13201||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Spynet' (El sistema no puede encontrar el archivo especificado. )
13202||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection' (El sistema no puede encontrar el archivo especificado. )
13203||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Scan' (El sistema no puede encontrar el archivo especificado. )
13204||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Scan' (El sistema no puede encontrar el archivo especificado. )
13205||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\ASR' (El sistema no puede encontrar el archivo especificado. )
13206||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\ASR\Rules' (El sistema no puede encontrar el archivo especificado. )
13207||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\Network Protection' (El sistema no puede encontrar el archivo especificado. )
13208||Not applicable|Key 'DisableAntiSpyware' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender'
13209||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\App and Browser protection' (El sistema no puede encontrar el archivo especificado. )
13210||Not applicable|Key 'EnableSmartScreen' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13211||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter' (El sistema no puede encontrar el archivo especificado. )
13212||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter' (El sistema no puede encontrar el archivo especificado. )
13213||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter' (El sistema no puede encontrar el archivo especificado. )
13214||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\GameDVR' (El sistema no puede encontrar el archivo especificado. )
13215||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsInkWorkspace' (El sistema no puede encontrar el archivo especificado. )
13216||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (El sistema no puede encontrar el archivo especificado. )
13217||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (El sistema no puede encontrar el archivo especificado. )
13218||Not applicable|Key 'DisableAutomaticRestartSignOn' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13219||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' (El sistema no puede encontrar el archivo especificado. )
13220||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' (El sistema no puede encontrar el archivo especificado. )
13221||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (El sistema no puede encontrar el archivo especificado. )
13222||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (El sistema no puede encontrar el archivo especificado. )
13223||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (El sistema no puede encontrar el archivo especificado. )
13224||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (El sistema no puede encontrar el archivo especificado. )
13225||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (El sistema no puede encontrar el archivo especificado. )
13226||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (El sistema no puede encontrar el archivo especificado. )
13227||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate' (El sistema no puede encontrar el archivo especificado. )
13228||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate' (El sistema no puede encontrar el archivo especificado. )
13229||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate' (El sistema no puede encontrar el archivo especificado. )
13230||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (El sistema no puede encontrar el archivo especificado. )
13231||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (El sistema no puede encontrar el archivo especificado. )
13232||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (El sistema no puede encontrar el archivo especificado. )Invalid checks for policy cis_win10_enterprise_L2.yml on Windows 10 Home:
sqlite> select id,result,status,reason from sca_check where policy_id="cis_win10_enterprise_L2";
13519||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SNMP' (El sistema no puede encontrar el archivo especificado. )
13525||Not applicable|Key 'AllowOnlineTips' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13526||Not applicable|Key 'DisableSavePassword' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Parameters'
13527||Not applicable|Key 'KeepAliveTime' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
13528||Not applicable|Key 'PerformRouterDiscovery' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
13529||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters'
13530||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
13531||Not applicable|Key 'EnableFontProviders' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13532||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LLTD' (El sistema no puede encontrar el archivo especificado. )
13533||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LLTD' (El sistema no puede encontrar el archivo especificado. )
13535||Not applicable|Key 'DisabledComponents' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters'
13536||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WCN\Registrars' (El sistema no puede encontrar el archivo especificado. )
13537||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WCN\UI' (El sistema no puede encontrar el archivo especificado. )
13538||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (El sistema no puede encontrar el archivo especificado. )
13539||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (El sistema no puede encontrar el archivo especificado. )
13540||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\TabletPC' (El sistema no puede encontrar el archivo especificado. )
13541||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\HandwritingErrorReports' (El sistema no puede encontrar el archivo especificado. )
13542||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Internet Connection Wizard' (El sistema no puede encontrar el archivo especificado. )
13543||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Policies\Microsoft\Windows\Registration Wizard Control' (El sistema no puede encontrar el archivo especificado. )
13544||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SearchCompanion' (El sistema no puede encontrar el archivo especificado. )
13545||Not applicable|Key 'NoOnlinePrintsWizard' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13546||Not applicable|Key 'NoPublishingWizard' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13547||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Messenger\Client' (El sistema no puede encontrar el archivo especificado. )
13548||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SQMClient\Windows' (El sistema no puede encontrar el archivo especificado. )
13549||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting' (El sistema no puede encontrar el archivo especificado. )
13550||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\kerberos\parameters' (El sistema no puede encontrar el archivo especificado. )
13551||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Control Panel\International' (El sistema no puede encontrar el archivo especificado. )
13552||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy' (El sistema no puede encontrar el archivo especificado. )
13553||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}' (El sistema no puede encontrar el archivo especificado. )
13554||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo' (El sistema no puede encontrar el archivo especificado. )
13555||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\W32Time\TimeProviders\NtpClient' (El sistema no puede encontrar el archivo especificado. )
13556||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\W32Time\TimeProviders\NtpServer' (El sistema no puede encontrar el archivo especificado. )
13557||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\AppModel\StateManager' (El sistema no puede encontrar el archivo especificado. )
13558||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Camera' (El sistema no puede encontrar el archivo especificado. )
13559||Not applicable|Key 'DisableEnterpriseAuthProxy' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection'
13560||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LocationAndSensors' (El sistema no puede encontrar el archivo especificado. )
13561||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Messaging' (El sistema no puede encontrar el archivo especificado. )
13562||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\ServiceUI' (El sistema no puede encontrar el archivo especificado. )
13563||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Addons' (El sistema no puede encontrar el archivo especificado. )
13564||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (El sistema no puede encontrar el archivo especificado. )
13565||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (El sistema no puede encontrar el archivo especificado. )
13566||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\SearchScopes' (El sistema no puede encontrar el archivo especificado. )
13567||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (El sistema no puede encontrar el archivo especificado. )
13568||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (El sistema no puede encontrar el archivo especificado. )
13569||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\PushToInstall' (El sistema no puede encontrar el archivo especificado. )
13570||Not applicable|Key 'fDenyTSConnections' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13571||Not applicable|Key 'fDisableCcm' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13572||Not applicable|Key 'fDisableLPT' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13573||Not applicable|Key 'fDisablePNPRedir' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13574||Not applicable|Key 'MaxIdleTime' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13575||Not applicable|Key 'MaxDisconnectionTime' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13576||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (El sistema no puede encontrar el archivo especificado. )
13577||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\CurrentVersion\Software Protection Platform' (El sistema no puede encontrar el archivo especificado. )
13578||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsStore' (El sistema no puede encontrar el archivo especificado. )
13579||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Spynet' (El sistema no puede encontrar el archivo especificado. )
13580||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Reporting' (El sistema no puede encontrar el archivo especificado. )
13581||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsInkWorkspace' (El sistema no puede encontrar el archivo especificado. )
13582||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (El sistema no puede encontrar el archivo especificado. )
13583||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (El sistema no puede encontrar el archivo especificado. )
13584||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service\WinRS' (El sistema no puede encontrar el archivo especificado. )Invalid checks for policy cis_win10_enterprise_L1.yml on Windows 10 Enterprise:
sqlite> select id,result,status,reason from sca_check where policy_id="cis_win10_enterprise_L1";
13000||Not applicable|Key 'NoConnectedUser' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13002||Not applicable|Key 'SCENoApplyLegacyAuditPolicy' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
13004||Not applicable|Key 'AllocateDASD' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon'
13010||Not applicable|Key 'DisableCAD' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13011||Not applicable|Key 'InactivityTimeoutSecs' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System'
13021||Not applicable|Key 'SMBServerNameHardeningLevel' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanManServer\Parameters'
13030||Not applicable|Key 'restrictremotesam' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa'
13031||Not applicable|Key 'NullSessionShares' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters'
13033||Not applicable|Key 'UseMachineId' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
13034||Not applicable|Key 'allownullsessionfallback' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0'
13035||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\pku2u' (The system cannot find the file specified. )
13036||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters' (The system cannot find the file specified. )
13039||Not applicable|Key 'LmCompatibilityLevel' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa'
13045||Not applicable|Key 'FilterAdministratorToken' not found for registry 'HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System'
13049||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System' (The system cannot find the file specified. )
13056||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\irmon' (The system cannot find the file specified. )
13070||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\xbgm' (The system cannot find the file specified. )
13073||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\XboxNetApiSvce' (The system cannot find the file specified. )
13074||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
13075||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
13076||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
13077||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' (The system cannot find the file specified. )
13078||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
13079||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
13080||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
13081||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' (The system cannot find the file specified. )
13082||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
13083||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
13084||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
13085||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' (The system cannot find the file specified. )
13086||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
13087||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
13088||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
13089||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' (The system cannot find the file specified. )
13090||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
13091||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
13092||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
13093||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
13094||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
13095||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' (The system cannot find the file specified. )
13096||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
13097||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
13098||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
13099||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' (The system cannot find the file specified. )
13100||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Personalization' (The system cannot find the file specified. )
13101||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Personalization' (The system cannot find the file specified. )
13102||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\InputPersonalization' (The system cannot find the file specified. )
13103||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{D76B9641-3288-4f75-942D-087DE603E3EA}' (The system cannot find the file specified. )
13104||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (The system cannot find the file specified. )
13105||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (The system cannot find the file specified. )
13106||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (The system cannot find the file specified. )
13107||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (The system cannot find the file specified. )
13108||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft Services\AdmPwd' (The system cannot find the file specified. )
13109||Not applicable|Key 'LocalAccountTokenFilterPolicy' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13110||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\mrxsmb10' (The system cannot find the file specified. )
13111||Not applicable|Key 'SMB1' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters'
13112||Not applicable|Key 'DisableExceptionChainValidation' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\kernel'
13113||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\MpEngine' (The system cannot find the file specified. )
13114||Not applicable|Key 'UseLogonCredential' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest'
13116||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters'
13117||Not applicable|Key 'DisableIPSourceRouting' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
13118||Not applicable|Key 'EnableICMPRedirect' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
13119||Not applicable|Key 'NoNameReleaseOnDemand' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters'
13120||Not applicable|Key 'SafeDllSearchMode' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager'
13121||Not applicable|Key 'ScreenSaverGracePeriod' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon'
13122||Not applicable|Key 'WarningLevel' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Security'
13123||Not applicable|Key 'NodeType' not found for registry 'HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NetBT\Parameters'
13124||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\DNSClient' (The system cannot find the file specified. )
13125||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LanmanWorkstation' (The system cannot find the file specified. )
13126||Not applicable|Key 'NC_AllowNetBridge_NLA' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Network Connections'
13127||Not applicable|Key 'NC_ShowSharedAccessUI' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Network Connections'
13128||Not applicable|Key 'NC_StdDomainUserSetLocation' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Network Connections'
13129||Not applicable|Key '\\*\NETLOGON' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths'
13130||Not applicable|Key 'fMinimizeConnections' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy'
13131||Not applicable|Key 'fBlockNonDomain' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy'
13132||Not applicable|Key 'AutoConnectAllowedOEM' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WcmSvc\wifinetworkmanager\config'
13133||Not applicable|Key 'ProcessCreationIncludeCmdLine_Enabled' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Audit'
13134||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CredentialsDelegation' (The system cannot find the file specified. )
13135||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Policies\EarlyLaunch' (The system cannot find the file specified. )
13136||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' (The system cannot find the file specified. )
13137||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' (The system cannot find the file specified. )
13138||Not applicable|Key 'EnableCdp' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13139||Not applicable|Key 'DisableBkGndGroupPolicy' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13140||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (The system cannot find the file specified. )
13141||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (The system cannot find the file specified. )
13142||Not applicable|Key 'BlockUserFromShowingAccountDetailsOnSignin' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13143||Not applicable|Key 'DontDisplayNetworkSelectionUI' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13144||Not applicable|Key 'DontEnumerateConnectedUsers' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13145||Not applicable|Key 'EnumerateLocalUsers' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13146||Not applicable|Key 'DisableLockScreenAppNotifications' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13147||Not applicable|Key 'BlockDomainPicturePassword' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13148||Not applicable|Key 'AllowDomainPINLogon' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13149||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings\f15576e8-98b7-4186-b944-eafa664402d9' (The system cannot find the file specified. )
13150||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings\f15576e8-98b7-4186-b944-eafa664402d9' (The system cannot find the file specified. )
13151||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' (The system cannot find the file specified. )
13152||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' (The system cannot find the file specified. )
13153||Not applicable|Key 'fAllowUnsolicited' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13154||Not applicable|Key 'fAllowToGetHelp' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13155||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Rpc' (The system cannot find the file specified. )
13156||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Rpc' (The system cannot find the file specified. )
13157||Not applicable|Key 'MSAOptional' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13158||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (The system cannot find the file specified. )
13159||Not applicable|Key 'NoAutorun' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13160||Not applicable|Key 'NoDriveTypeAutoRun' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13161||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Biometrics\FacialFeatures' (The system cannot find the file specified. )
13162||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CloudContent' (The system cannot find the file specified. )
13163||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Connect' (The system cannot find the file specified. )
13164||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CredUI' (The system cannot find the file specified. )
13165||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\CredUI' (The system cannot find the file specified. )
13166||Not applicable|Key 'AllowTelemetry' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection'
13167||Not applicable|Key 'DoNotShowFeedbackNotifications' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection'
13168||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PreviewBuilds' (The system cannot find the file specified. )
13169||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DeliveryOptimization' (The system cannot find the file specified. )
13170||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Application' (The system cannot find the file specified. )
13171||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Application' (The system cannot find the file specified. )
13172||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Security' (The system cannot find the file specified. )
13173||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Security' (The system cannot find the file specified. )
13174||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Setup' (The system cannot find the file specified. )
13175||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\Setup' (The system cannot find the file specified. )
13176||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\System' (The system cannot find the file specified. )
13177||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\EventLog\System' (The system cannot find the file specified. )
13178||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (The system cannot find the file specified. )
13179||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (The system cannot find the file specified. )
13180||Not applicable|Key 'PreXPSP2ShellProtocolBehavior' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13181||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\HomeGroup' (The system cannot find the file specified. )
13182||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftAccount' (The system cannot find the file specified. )
13183||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (The system cannot find the file specified. )
13184||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (The system cannot find the file specified. )
13185||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Security' (The system cannot find the file specified. )
13186||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\OneDrive' (The system cannot find the file specified. )
13187||Not applicable|Key 'DisablePasswordSaving' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13188||Not applicable|Key 'fDisableCdm' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13189||Not applicable|Key 'fPromptForPassword' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13190||Not applicable|Key 'fEncryptRPCTraffic' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13191||Not applicable|Key 'MinEncryptionLevel' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13192||Not applicable|Key 'DeleteTempDirsOnExit' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13193||Not applicable|Key 'PerSessionTempDir' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13194||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds' (The system cannot find the file specified. )
13195||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (The system cannot find the file specified. )
13196||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (The system cannot find the file specified. )
13197||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (The system cannot find the file specified. )
13198||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (The system cannot find the file specified. )
13199||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsStore' (The system cannot find the file specified. )
13200||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsStore' (The system cannot find the file specified. )
13201||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Spynet' (The system cannot find the file specified. )
13202||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection' (The system cannot find the file specified. )
13203||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Scan' (The system cannot find the file specified. )
13204||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Scan' (The system cannot find the file specified. )
13205||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\ASR' (The system cannot find the file specified. )
13206||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\ASR\Rules' (The system cannot find the file specified. )
13207||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\Network Protection' (The system cannot find the file specified. )
13208||Not applicable|Key 'DisableAntiSpyware' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender'
13209||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\App and Browser protection' (The system cannot find the file specified. )
13210||Not applicable|Key 'EnableSmartScreen' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13211||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter' (The system cannot find the file specified. )
13212||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter' (The system cannot find the file specified. )
13213||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter' (The system cannot find the file specified. )
13214||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\GameDVR' (The system cannot find the file specified. )
13215||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsInkWorkspace' (The system cannot find the file specified. )
13216||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (The system cannot find the file specified. )
13217||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (The system cannot find the file specified. )
13218||Not applicable|Key 'DisableAutomaticRestartSignOn' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System'
13219||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' (The system cannot find the file specified. )
13220||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' (The system cannot find the file specified. )
13221||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (The system cannot find the file specified. )
13222||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (The system cannot find the file specified. )
13223||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' (The system cannot find the file specified. )
13224||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
13225||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
13226||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
13227||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate' (The system cannot find the file specified. )
13228||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate' (The system cannot find the file specified. )
13229||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate' (The system cannot find the file specified. )
13230||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (The system cannot find the file specified. )
13231||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (The system cannot find the file specified. )
13232||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU' (The system cannot find the file specified. )Invalid checks for policy cis_win10_enterprise_L2.yml on Windows 10 Enterprise:
sqlite> select id,result,status,reason from sca_check where policy_id="cis_win10_enterprise_L2";
13502||Not applicable|Key 'ForceKeyProtection' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Cryptography'
13519||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SNMP' (The system cannot find the file specified. )
13525||Not applicable|Key 'AllowOnlineTips' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13526||Not applicable|Key 'DisableSavePassword' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Parameters'
13527||Not applicable|Key 'KeepAliveTime' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
13528||Not applicable|Key 'PerformRouterDiscovery' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
13529||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters'
13530||Not applicable|Key 'TcpMaxDataRetransmissions' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters'
13531||Not applicable|Key 'EnableFontProviders' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System'
13532||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LLTD' (The system cannot find the file specified. )
13533||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LLTD' (The system cannot find the file specified. )
13535||Not applicable|Key 'DisabledComponents' not found for registry 'HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\TCPIP6\Parameters'
13536||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WCN\Registrars' (The system cannot find the file specified. )
13537||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WCN\UI' (The system cannot find the file specified. )
13538||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Explorer' (The system cannot find the file specified. )
13539||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers' (The system cannot find the file specified. )
13540||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\TabletPC' (The system cannot find the file specified. )
13541||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\HandwritingErrorReports' (The system cannot find the file specified. )
13542||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Internet Connection Wizard' (The system cannot find the file specified. )
13543||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\Policies\Microsoft\Windows\Registration Wizard Control' (The system cannot find the file specified. )
13544||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SearchCompanion' (The system cannot find the file specified. )
13545||Not applicable|Key 'NoOnlinePrintsWizard' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13546||Not applicable|Key 'NoPublishingWizard' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer'
13547||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Messenger\Client' (The system cannot find the file specified. )
13548||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\SQMClient\Windows' (The system cannot find the file specified. )
13549||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting' (The system cannot find the file specified. )
13550||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\kerberos\parameters' (The system cannot find the file specified. )
13551||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Control Panel\International' (The system cannot find the file specified. )
13552||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy' (The system cannot find the file specified. )
13553||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}' (The system cannot find the file specified. )
13554||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AdvertisingInfo' (The system cannot find the file specified. )
13555||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\W32Time\TimeProviders\NtpClient' (The system cannot find the file specified. )
13556||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\W32Time\TimeProviders\NtpServer' (The system cannot find the file specified. )
13557||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\AppModel\StateManager' (The system cannot find the file specified. )
13558||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Camera' (The system cannot find the file specified. )
13559||Not applicable|Key 'DisableEnterpriseAuthProxy' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection'
13560||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LocationAndSensors' (The system cannot find the file specified. )
13561||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Messaging' (The system cannot find the file specified. )
13562||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\ServiceUI' (The system cannot find the file specified. )
13563||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Addons' (The system cannot find the file specified. )
13564||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (The system cannot find the file specified. )
13565||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (The system cannot find the file specified. )
13566||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\SearchScopes' (The system cannot find the file specified. )
13567||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (The system cannot find the file specified. )
13568||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main' (The system cannot find the file specified. )
13569||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\PushToInstall' (The system cannot find the file specified. )
13570||Not applicable|Key 'fDenyTSConnections' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13571||Not applicable|Key 'fDisableCcm' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13572||Not applicable|Key 'fDisableLPT' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13573||Not applicable|Key 'fDisablePNPRedir' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13574||Not applicable|Key 'MaxIdleTime' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13575||Not applicable|Key 'MaxDisconnectionTime' not found for registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services'
13576||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search' (The system cannot find the file specified. )
13577||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\CurrentVersion\Software Protection Platform' (The system cannot find the file specified. )
13578||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsStore' (The system cannot find the file specified. )
13579||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Spynet' (The system cannot find the file specified. )
13580||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Reporting' (The system cannot find the file specified. )
13581||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsInkWorkspace' (The system cannot find the file specified. )
13582||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Installer' (The system cannot find the file specified. )
13583||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' (The system cannot find the file specified. )
13584||Not applicable|Unable to read registry 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service\WinRS' (The system cannot find the file specified. )SCA policies are already merged. Good job team!
This issue aims to ensure the SCA policies available for Wazuh v3.10.0 are correct according to the following issues:
Core: https://github.com/wazuh/wazuh/issues/3249 Ruleset: https://github.com/wazuh/wazuh-ruleset/issues/404 and https://github.com/wazuh/wazuh-ruleset/issues/411
The tasks for every policy are:
notinstead ofIN/NIN, no semicolon at the end of the rule, etc.)Policies
Generic
Applications
Darwin
Debian
RHEL
SLES
Solaris
Windows