Microsoft Defender Antivirus Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Microsoft Defender AV must be configured to block Office applications from injecting into other processes.
<VulnDiscussion>Office apps, such as Word, Excel, or PowerPoint, will not be able to inject code into other processes. This is typically used...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Microsoft Defender AV must be configured to impede JavaScript and VBScript to launch executables.
<VulnDiscussion>JavaScript and VBScript scripts can be used by malware to launch other malicious apps. This rule prevents these scripts from ...Rule Medium Severity -
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
Microsoft Defender AV must be configured to disable local setting override for reporting to Microsoft MAPS.
<VulnDiscussion>This policy setting configures a local override for the configuration to join Microsoft MAPS. This setting can only be set by...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules