Checklist Repository
The National Checklist Program (NCP), defined by the NIST
SP 800-70, is the U.S. government repository of publicly available
security checklists (or benchmarks) that provide detailed low level
guidance on setting the security configuration of operating systems
and applications.
NCP provides metadata and links to checklists of various formats
including checklists that conform to the Security
Content Automation Protocol (SCAP). SCAP enables validated
security products to automatically perform configuration checking
using NCP checklists. For more information relating to the NCP please
visit the information page or
the glossary of terms.
Search for Checklists using the fields below. The keyword
search will search across the name, and summary.
There are 853
matching records. Displaying matches 1 through 20.
| Name (Version) |
Target |
Authority |
Last Modified |
Resources |
| Canonical Ubuntu 24.04 LTS STIG (Ver 1, Rel 3) |
Canonical Ubuntu 24.04 LTS
|
Defense Information Systems Agency
|
12/12/2025 |
SCAP 1.3 Content - Canonical Ubuntu 24.04 LTS STIG SCAP Benchmark - Ver 1, Rel 2
Standalone XCCDF 1.1.4 - Canonical Ubuntu 24.04 LTS STIG - Ver 1, Rel 3
Standalone XCCDF 1.1.4 - Canonical Ubuntu 24.04 LTS STIG for Ansible - Ver 1, Rel 3
Standalone XCCDF 1.1.4 - Canonical Ubuntu 24.04 LTS STIG for Chef - Ver 1, Rel 3
|
| Trellix Application Control 8.x STIG (Ver 3, Rel 2) |
Trellix Application and Change Control
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Rev. 4 Sunset - Trellix Application Control 8.x STIG - Ver 2, Rel 2
Standalone XCCDF 1.1.4 - Trellix Application Control 8.x STIG - Ver 3, Rel 2
|
| Microsoft Defender for Endpoint STIG (Version 1, Release 1) |
Microsoft Windows Defender
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Microsoft Defender for Endpoint STIG, Ver 1, Rel 1
|
| Samsung Android 14 with Knox 3.x STIG (Y25M10) |
Google Android 14
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Rev. 4 Sunset - Samsung Android OS 14 with Knox 3.x STIG
Standalone XCCDF 1.1.4 - Samsung Android OS 14 with Knox 3.x STIG
|
| Samsung Android 15 with Knox 3.x STIG (Y25M10) |
Google Android 15
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Samsung Android OS 15 with Knox 3.x STIG
|
| Samsung Android 15 BYOAD STIG (Y25M10) |
Samsung Android 15.0
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Samsung Android 15 BYOAD STIG
|
| Apple macOS 13 STIG (Ver 1, Rel 5) |
Apple macOS 13.0 (Ventura)
|
Defense Information Systems Agency
|
12/12/2025 |
Automated Content - SCC 5.12.1 MacOS ARM64
Standalone XCCDF 1.1.4 - Sunset - Apple macOS 13 (Ventura) STIG - Ver 1, Rel 5
|
| Cisco IOS XE Router STIG (Y25M10) |
Cisco IOS XE
|
Defense Information Systems Agency
|
12/12/2025 |
SCAP 1.3 Content - Cisco IOS XE Router NDM STIG Benchmark - Ver 3, Rel 3
SCAP 1.3 Content - Cisco IOS XE Router RTR STIG Benchmark - Ver 3, Rel 3
Automated Content - Cisco IOS XE Router NDM RTR STIG for Ansible - Ver 2, Rel 3
Automated Content - SCC 5.12.1 Windows
Automated Content - SCC 5.12.1 MacOS ARM64
Automated Content - SCC 5.12.1 RHEL 7/Oracle Linux 7/SLES12/SLES 15 x86 64
Automated Content - SCC 5.12.1 RHEL 8/Oracle Linux 8 Aarch64
Automated Content - SCC 5.12.1 RHEL 9/Oracle Linux 9 x86 64
Automated Content - SCC 5.12.1 Solaris 11 i386
Automated Content - SCC 5.12.1 Solaris 11 SPARC
Automated Content - SCC 5.12.1 Ubuntu 18/20 AMD64
Automated Content - SCC 5.12.1 Ubuntu 20/Raspios-bulleye Aarch64
Automated Content - SCC 5.12.1 Ubuntu 22/24 AMD64
Automated Content - SCC 5.12.1 Ubuntu 22/24 ARM64
Standalone XCCDF 1.1.4 - Cisco IOS XE Router STIG
|
| z/OS RACF STIG (Y25M10) |
IBM z/OS
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - IBM z/OS STIG
Standalone XCCDF 1.1.4 - z/OS RACF Products
Standalone XCCDF 1.1.4 - z/OS SRR Scripts
|
| z/OS TSS STIG (Y25M10) |
IBM z/OS
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - IBM z/OS STIG
Standalone XCCDF 1.1.4 - z/OS TSS Products
Standalone XCCDF 1.1.4 - z/OS SRR Scripts
|
| z/OS ACF2 STIG (Y25M10) |
IBM z/OS
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - IBM z/OS STIG
Standalone XCCDF 1.1.4 - z/OS ACF2 Products
|
| Microsoft Windows Server 2019 (Ver 3, Rel 6) |
Microsoft Windows Server 2019
|
Defense Information Systems Agency
|
12/12/2025 |
SCAP 1.3 Content - Microsoft Windows Server 2019 STIG SCAP Benchmark Ver 3, Rel 6
Automated Content - SCC 5.12.1 Windows
GPOs - Group Policy Objects (GPOs) - October 2025
Machine-Readable Format - Microsoft Windows Server 2019 STIG for Chef - Ver 1, Rel 2
Standalone XCCDF 1.1.4 - Rev. 4 Sunset - Microsoft Windows Server 2019 STIG - Ver 2, Rel 9
Standalone XCCDF 1.1.4 - Microsoft Windows Server 2019 STIG - Ver 3, Rel 6
|
| Ivanti Connect Secure STIG (Y25M10) |
Ivanti Connect Secure
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Ivanti Connect Secure STIG
|
| HYCU Protg STIG (Ver 1, Rel 1) |
HYCU Protoge
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - HYCU Protg STIG - Ver 1, Rel 1
|
| Microsoft Entra ID STIG (Ver 1, Rel 1) |
Microsoft Entra ID
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Microsoft Entra ID STIG Ver 1, Rel 1
|
| Google Android 15 STIG (Y25M10) |
Google Android 15
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Google Android 15 STIG
|
| Google Android 14 STIG (Y25M10) |
Google Android 14
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Google Android 14 STIG
|
| Google Android 14 BYOAD STIG (Y25M10) |
Google Android 14
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Google Android 14 BYOAD STIG
|
| Apple iOS/iPadOS 18 STIG (Ver 2, Rel 1) |
Apple iPadOS 18.0
Apple iPhone OS 18.0
|
Defense Information Systems Agency
|
12/12/2025 |
Standalone XCCDF 1.1.4 - Apple iOS/iPadOS 18 - Ver 2, Rel 1
|
| Cisco IOS Switch STIG (Y25M10) |
Cisco IOS
|
Defense Information Systems Agency
|
12/12/2025 |
Automated Content - SCC 5.12.1 Windows
Automated Content - SCC 5.12.1 MacOS ARM64
Automated Content - SCC 5.12.1 RHEL 7/Oracle Linux 7/SLES12/SLES 15 x86 64
Automated Content - SCC 5.12.1 RHEL 8/Oracle Linux 8 Aarch64
Automated Content - SCC 5.12.1 RHEL 8/Oracle Linux 8 x86 64
Automated Content - SCC 5.12.1 RHEL 9/Oracle Linux 9 x86 64
Automated Content - SCC 5.12.1 Solaris 11 i386
Automated Content - SCC 5.12.1 Solaris 11 SPARC
Automated Content - SCC 5.12.1 Ubuntu 18/20 AMD64
Automated Content - SCC 5.12.1 Ubuntu 20/Raspios-bulleye Aarch64
Automated Content - SCC 5.12.1 Ubuntu 22/24 AMD64
Automated Content - SCC 5.12.1 Ubuntu 22/24 ARM64
Standalone XCCDF 1.1.4 - Rev. 4 Sunset - Cisco IOS Switch STIG
Standalone XCCDF 1.1.4 - Cisco IOS Switch STIG
|
* This checklist is still undergoing review for
inclusion into the NCP.
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
