An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.12.2 - rmfrev5
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.12.2 - rmfrev5
Open sidebar
Navigate
Top
Search
Checks (
268
)
Print
Changes
Pages (
9/18
)
Microsoft Windows 10 STIG
Microsoft Windows 10 Security Technical Implementation Guide
v3 r5 (Released Oct. 1, 2025)
v3 r4 (Released April 2, 2025)
v3 r3 (Released Jan. 30, 2025)
v3 r2 (Released Nov. 15, 2024)
v3 r1 (Released July 24, 2024)
v2 r9 (Released May 15, 2024)
v2 r8 (Released Nov. 9, 2023)
v2 r7 (Released June 7, 2023)
v2 r6 (Released May 11, 2023)
v2 r5 (Released Nov. 14, 2022)
v2 r4 (Released May 31, 2022)
v2 r3 (Released Nov. 1, 2021)
v2 r2 (Released May 4, 2021)
v2 r1 (Released Nov. 13, 2020)
v1 r23 (Released June 17, 2020)
v1 r22 (Released May 15, 2020)
v1 r21 (Released April 24, 2020)
v1 r20 (Released Jan. 27, 2020)
v1 r19 (Released Oct. 25, 2019)
v1 r18 (Released July 26, 2019)
v1 r17 (Released May 24, 2019)
v1 r16 (Released Jan. 25, 2019)
v1 r15 (Released Nov. 15, 2018)
v1 r14 (Released July 27, 2018)
v1 r13 (Released April 27, 2018)
v1 r12 (Released Jan. 26, 2018)
v1 r11 (Released Oct. 31, 2017)
v1 r10 (Released June 27, 2017)
v1 r9 (Released April 28, 2017)
v1 r7 (Released Nov. 8, 2016)
ID
Vuln ID
Title
Cat
Status
WN10-CC-000063
V-268319
Windows 10 systems must use either Group Policy or an approved Mobile Device Management (MDM) product to enforce STIG compliance.
Cat II
WN10-CC-000065
V-220808
Wi-Fi Sense must be disabled.
Cat II
WN10-CC-000066
V-220809
Command line data must be included in process creation events.
Cat II
WN10-CC-000068
V-220810
Windows 10 must be configured to enable Remote host allows delegation of non-exportable credentials.
Cat II
WN10-CC-000070
V-220811
Virtualization Based Security must be enabled on Windows 10 with the platform security level configured to Secure Boot or Secure Boot with DMA Protection.
Cat II
WN10-CC-000075
V-220812
Credential Guard must be running on Windows 10 domain-joined systems.
Cat I
WN10-CC-000080
V-252903
Virtualization-based protection of code integrity must be enabled.
Cat III
WN10-CC-000085
V-220813
Early Launch Antimalware, Boot-Start Driver Initialization Policy must prevent boot drivers.
Cat II
WN10-CC-000090
V-220814
Group Policy objects must be reprocessed even if they have not changed.
Cat II
WN10-CC-000100
V-220815
Downloading print driver packages over HTTP must be prevented.
Cat II
WN10-CC-000105
V-220816
Web publishing and online ordering wizards must be prevented from downloading a list of providers.
Cat II
WN10-CC-000110
V-220817
Printing over HTTP must be prevented.
Cat II
WN10-CC-000115
V-220818
Systems must at least attempt device authentication using certificates.
Cat II
WN10-CC-000120
V-220819
The network selection user interface (UI) must not be displayed on the logon screen.
Cat II
WN10-CC-000130
V-220820
Local users on domain-joined computers must not be enumerated.
Cat II
Prev
1...
5
6
7
8
9
10
11
12
13
...18
Next
Print
Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Version Changes
If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.