Microsoft Windows Defender Antivirus STIG

Microsoft Windows Defender Antivirus Security Technical Implementation Guide

ID Vuln ID Title Cat Status
WNDF-AV-000017 V-213441 Windows Defender AV Group Policy settings must take priority over the local preference settings. Cat II
WNDF-AV-000040 V-213464 Windows Defender AV must be configured for automatic remediation action to be taken for threat alert level High. Cat II
WNDF-AV-000003 V-213427 Windows Defender AV must be configured to automatically take action on all detected tasks. Cat II
WNDF-AV-000016 V-213440 Windows Defender AV must be configured to not allow override of behavior monitoring. Cat II
WNDF-AV-000025 V-213449 Windows Defender AV must be configured to scan removable drives. Cat II
WNDF-AV-000035 V-213459 Windows Defender AV must be configured to block Office applications from injecting into other processes. Cat II
WNDF-AV-000032 V-213456 Windows Defender AV must be configured to block executable content from email client and webmail. Cat II
WNDF-AV-000039 V-213463 Windows Defender AV must be configured to prevent user and apps from accessing dangerous websites. Cat II
WNDF-AV-000001 V-213426 Windows Defender AV must be configured to block the Potentially Unwanted Application (PUA) feature. Cat I
WNDF-AV-000028 V-213452 Windows Defender AV spyware definition age must not exceed 7 days. Cat I
WNDF-AV-000029 V-213453 Windows Defender AV virus definition age must not exceed 7 days. Cat I

Print

Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Print

Version Changes

If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.
Changes