The rules that are enabled by default in SonarLint without connected mode are the same rules that appear in the
Sonar Way quality profile for C# in SonarQube.
For some project types (the old .NET projects) Visual Studio displays UI to edit the enabled rules and you could customize what is executed in SonarLint (and the nuget package), but for some it doesn’t - the .NET Core and .NET Standard projects, and you are stuck with the default settings.
Some rules are part of SonarWay, but are not included in SonarLint, though. Those are the Sonar Secuity and the Security Hotspot rules.
- The SonarSecurity rules are built-into another plugin - SonarSecurity, which is part of the commercial editions and cannot be executed in SonarLint.
- The Security Hotspot rules generate a lot of issues and they are not supposed to be reviewed outside of the SonarQube UI.