Microsoft Windows Defender Antivirus STIG

Microsoft Windows Defender Antivirus Security Technical Implementation Guide

ID Vuln ID Title Cat Status
WNDF-AV-000010 V-213434 Windows Defender AV must be configured to join Microsoft MAPS. Cat II
WNDF-AV-000038 V-213462 Windows Defender AV must be configured to block Win32 imports from macro code in Office. Cat II
WNDF-AV-000012 V-213436 Windows Defender AV must be configured for protocol recognition for network protection. Cat II
WNDF-AV-000022 V-213446 Windows Defender AV must be configured to enable behavior monitoring. Cat II
WNDF-AV-000024 V-213448 Windows Defender AV must be configured to scan archive files. Cat II
WNDF-AV-000007 V-213431 Windows Defender AV must be configured to enable the Automatic Exclusions feature. Cat II
WNDF-AV-000030 V-213454 Windows Defender AV must be configured to check for definition updates daily. Cat II
WNDF-AV-000027 V-213451 Windows Defender AV must be configured to turn on e-mail scanning. Cat II
WNDF-AV-000011 V-213435 Windows Defender AV must be configured to only send safe samples for MAPS telemetry. Cat II
WNDF-AV-000031 V-213455 Windows Defender AV must be configured for automatic remediation action to be taken for threat alert level Severe. Cat II
WNDF-AV-000034 V-213458 Windows Defender AV must be configured block Office applications from creating executable content. Cat II
WNDF-AV-000021 V-213445 Windows Defender AV must be configured to always enable real-time protection. Cat II
WNDF-AV-000005 V-213429 Windows Defender AV must be configured to not exclude files for scanning. Cat II
WNDF-AV-000006 V-213430 Windows Defender AV must be configured to not exclude files opened by specified processes. Cat II
WNDF-AV-000015 V-213439 Windows Defender AV must be configured to not allow override of scanning for downloaded files and attachments. Cat II

Print

Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Print

Version Changes

If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.
Changes