To report on MSFT vulnerabilities related to a missing registry key(s) that are typically post-patch and out-of-band, we can simply follow these steps:
- Create dynamic asset group to filter all OS’ containing Microsoft.
- Create a Security Console report template for CSV.
- Add the vulnerability proof section and any other desired section to report template.
- Create a new export report using created report template and filter for asset group created in step 1. Add vulnerability filters and choose validated vulnerabilities with only Microsoft categories included.
- Run and export report.
- In Excel, add filters for headings and filter ‘vulnerability proof’ column for: contains ‘key is missing’
I found this helpful, and I hope you do too