NCP

Checklist Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.
Please note that the current search fields have been adjusted to reflect NIST SP 800-70 Revision 4.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

Checklist Type:

Authority:

Target:

Order By:

Content Type:

Tool Compatibility:

Keyword:

There are 805 matching records. Displaying matches 321 through 340.

Name (Version)	Target	Authority	Last Modified	Resources
CIS Bottlerocket Benchmark (1.0.0)	Linux Kernel	Center for Internet Security (CIS)	03/26/2024	Prose - CIS Bottlerocket Benchmark v1.0.0
CIS Amazon Linux 2014.09 Benchmark (1.0.0)	Amazon Linux	Center for Internet Security (CIS)	03/26/2024	Prose - CIS Amazon Linux 2014.09 Benchmark v1.0.0
CIS Apple iOS 15 and iPadOS 15 Benchmark (1.1.0)	Apple iOS/iPadOS 15	Center for Internet Security (CIS)	03/26/2024	Prose - CIS Apple iOS 15 and iPadOS 15 Benchmark v1.1.0
Amazon Elastic Kubernetes Service (EKS) (1.4.0)	Amazon Elastic Kubernetes Service (EKS) (1.4.0)	Center for Internet Security (CIS)	03/24/2024	Prose - Amazon Elastic Kubernetes Service (EKS), 1.4.0
Alibaba Cloud Linux 3 (1.0.0)	Alibaba Cloud Linux 3	Center for Internet Security (CIS)	03/24/2024	Prose - Alibaba Cloud Linux 3, v1.0.0
AlmaLinux OS 8 (3.0.0)	AlmaLinux OS 8	Center for Internet Security (CIS)	03/24/2024	Prose - AlmaLinux OS 8, 3.0.0
AlmaLinux OS 9 (1.0.0)	AlmaLinux OS 9	Center for Internet Security (CIS)	03/24/2024	Prose - AlmaLinux OS 9, 1.0.0
Alibaba Cloud Container Service For Kubernetes (1.0.0)	Alibaba Cloud Container Service for Kubernetes	Center for Internet Security (CIS)	03/22/2024	Prose - Alibaba Cloud Container Service For Kubernetes, 1.0.0
CIS Amazon Linux Benchmark (2.1.0)	Amazon Linux	Center for Internet Security (CIS)	03/22/2024	Prose - CIS Amazon Linux Benchmark, 2.1.0
CIS Apache Tomcat 10 Benchmark (1.1.0)	Apache Tomcat 10.0	Center for Internet Security (CIS)	03/22/2024	Prose - Apache Tomcat 10.0
CIS Amazon Web Services Foundations Benchmark (v1.3.0)	Amazon Web Services	Center for Internet Security (CIS)	03/22/2024	Prose - CIS Amazon Web Services Foundations Benchmark version 3.0.0
Azure Active Directory - SCuBA (1.0)	Microsoft Azure Active Directory	Cybersecurity and Infrastructure Security Agency (CISA)	03/18/2024	Machine-Readable Format - Microsoft Azure Active Directory - GitHub Prose - Azure Active Directory - SCuBA
Exchange Online - SCuBA (1.0)	Microsoft Exchange Online	Cybersecurity and Infrastructure Security Agency (CISA)	03/13/2024	Machine-Readable Format - Microsoft Exchange Online - GitHub Markdown Prose - Microsoft Exchange Online
SharePoint and OneDrive - SCuBA (1.0)	Microsoft OneDrive	Cybersecurity and Infrastructure Security Agency (CISA)	03/13/2024	Machine-Readable Format - Microsoft SharePoint & OneDrive GitHub Prose - Microsoft SharePoint & OneDrive
Power Platform - SCuBA (1.0)	Microsoft Power Apps	Cybersecurity and Infrastructure Security Agency (CISA)	03/11/2024	Machine-Readable Format - Microsoft Power Platform - GitHub Prose - Microsoft Power Platform
Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.37)	IBM z/OS Version 2, Release 1 IBM z/OS Version 2, Release 2	Vanguard Integrity Professionals, Inc.	03/08/2024	ZIP - Vanguard z/OS RACF Checklist 6.37(PDF version) ZIP - Vanguard z/OS RACF Checklist 6.37(XML version)
Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.38)	IBM z/OS Version 2.1 IBM z/OS Version 2.2 IBM z/OS Version 2.3	Vanguard Integrity Professionals, Inc.	03/08/2024	ZIP - Vanguard z/OS RACF Checklist 6.38(PDF version) ZIP - Vanguard z/OS RACF Checklist 6.38(XML version)
Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.41)	IBM Z/OS 2.2 IBM Z/OS 2.3	Vanguard Integrity Professionals, Inc.	03/08/2024	ZIP - Vanguard z/OS RACF Checklist 6.41PDF version) ZIP - ZIP - Vanguard z/OS RACF Checklist 6.41(XML version)
Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.39)	IBM z/OS Version 2.1 IBM z/OS Version 2.2 IBM z/OS Version 2.3	Vanguard Integrity Professionals, Inc.	03/08/2024	ZIP - Vanguard z/OS RACF Checklist 6.39(PDF version) ZIP - Vanguard z/OS RACF Checklist 6.39(XML version)
Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.40)	IBM Z/OS 2.2 IBM Z/OS 2.3 IBM z/OS Version 2.1	Vanguard Integrity Professionals, Inc.	03/08/2024	ZIP - Vanguard z/OS RACF Checklist 6.40(PDF version) ZIP - Vanguard z/OS RACF Checklist 6.40(XML version)

* This checklist is still undergoing review for inclusion into the NCP.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Checklist Program

National Checklist Program

Checklist Repository