NCP

Checklist Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

Checklist Type:

Authority:

Target:

Order By:

Content Type:

Tool Compatibility:

Keyword:

There are 868 matching records. Displaying matches 41 through 60.

Name (Version)	Target	Authority	Last Modified	Resources
Microsoft Skype for Business 2016 STIG (Version 1, Release 1)	Microsoft Skype for Business 2016	Defense Information Systems Agency	12/17/2025	GPOs - Group Policy Objects (GPOs) - October 2025
Microsoft Publisher 2016 STIG (Version 1, Release 3)	Microsoft Publisher 2016	Defense Information Systems Agency	12/17/2025	GPOs - Group Policy Objects (GPOs) - October 2025
Microsoft PowerPoint 2016 STIG (Version 1, Release 1)	Microsoft PowerPoint 2016	Defense Information Systems Agency	12/17/2025	GPOs - Group Policy Objects (GPOs) - October 2025
Google Chrome Browser STIG for Windows (Version 2, Release 11)	Google Chrome	Defense Information Systems Agency	12/17/2025	SCAP 1.3 Content - Google Chrome STIG Benchmark - Ver 2, Rel 11 Automated Content - SCC 5.12.1 Windows GPOs - Group Policy Objects (GPOs) - October 2025 Intune Policies - Intune Policy - October 2025 Standalone XCCDF 1.1.4 - Google Chrome STIG - Ver 2, Rel 11
Adobe Acrobat Professional DC Continuous Track STIG (Ver 2, Rel 1)	Adobe Acrobat Pro DC Continuous Track	Defense Information Systems Agency	12/17/2025	GPOs - Group Policy Objects (GPOs) - October 2025 Intune Policies - Intune Policy - October 2025 Standalone XCCDF 1.1.4 - Adobe Acrobat Professional DC Continuous Track STIG - Ver 2, Rel 1
Microsoft Access 2016 STIG (Version 1, Release 1)	Microsoft Access 2016	Defense Information Systems Agency	12/17/2025	GPOs - Group Policy Objects (GPOs) - October 2025
Microsoft Excel 2016 STIG (Version 2, Release 1)	Microsoft Excel 2016	Defense Information Systems Agency	12/17/2025	GPOs - Group Policy Objects (GPOs) - October 2025 Standalone XCCDF 1.1.4 - Microsoft Excel 2016 STIG - Ver 2, Rel 1
Samsung Android 14 BYOAD STIG (Y25M10)	Samsung Android 14.0	Defense Information Systems Agency	12/15/2025	Standalone XCCDF 1.1.4 - Samsung Android 14 BYOAD STIG
SUSE Linux Enterprise Server (SLES) 12 STIG (Ver 3, Rel 3)	SUSE Linux Enterprise Server 12.0	Defense Information Systems Agency	12/15/2025	SCAP 1.3 Content - Sunset - SUSE Linux Enterprise Server 12 STIG Benchmark - Ver 3, Rel 3 Automated Content - SCC 5.12.1 RHEL 7/Oracle Linux 7/SLES12/SLES 15 x86 64 Automated Content - SCC 5.12.1 RHEL 8/Oracle Linux 8 Aarch64 Automated Content - SCC 5.12.1 RHEL 8/Oracle Linux 8 x86 64 Automated Content - SCC 5.12.1 RHEL 9/Oracle Linux 9 Aarch64 Automated Content - SCC 5.12.1 RHEL 9/Oracle Linux 9 x86 64 Standalone XCCDF 1.1.4 - SUSE Linux Enterprise Server 12 STIG - Ver 3, Rel 3
Apple macOS 13 STIG (Ver 1, Rel 5)	Apple macOS 13.0 (Ventura)	Defense Information Systems Agency	12/15/2025	Automated Content - SCC 5.12.1 MacOS ARM64 Standalone XCCDF 1.1.4 - Sunset - Apple macOS 13 (Ventura) STIG - Ver 1, Rel 5
Microsoft Entra ID STIG (Ver 1, Rel 1)	Microsoft Entra ID	Defense Information Systems Agency	12/15/2025	Standalone XCCDF 1.1.4 - Microsoft Entra ID STIG Ver 1, Rel 1
Samsung Android 15 BYOAD STIG (Y25M10)	Samsung Android 15.0	Defense Information Systems Agency	12/15/2025	Standalone XCCDF 1.1.4 - Samsung Android 15 BYOAD STIG
Canonical Ubuntu 24.04 LTS STIG (Ver 1, Rel 3)	Canonical Ubuntu 24.04 LTS	Defense Information Systems Agency	12/12/2025	SCAP 1.3 Content - Canonical Ubuntu 24.04 LTS STIG SCAP Benchmark - Ver 1, Rel 2 Standalone XCCDF 1.1.4 - Canonical Ubuntu 24.04 LTS STIG - Ver 1, Rel 3 Standalone XCCDF 1.1.4 - Canonical Ubuntu 24.04 LTS STIG for Ansible - Ver 1, Rel 3 Standalone XCCDF 1.1.4 - Canonical Ubuntu 24.04 LTS STIG for Chef - Ver 1, Rel 3
Trellix Application Control 8.x STIG (Ver 3, Rel 2)	Trellix Application and Change Control	Defense Information Systems Agency	12/12/2025	Standalone XCCDF 1.1.4 - Rev. 4 Sunset - Trellix Application Control 8.x STIG - Ver 2, Rel 2 Standalone XCCDF 1.1.4 - Trellix Application Control 8.x STIG - Ver 3, Rel 2
Microsoft Defender for Endpoint STIG (Version 1, Release 1)	Microsoft Windows Defender	Defense Information Systems Agency	12/12/2025	Standalone XCCDF 1.1.4 - Microsoft Defender for Endpoint STIG, Ver 1, Rel 1
Samsung Android 14 with Knox 3.x STIG (Y25M10)	Google Android 14	Defense Information Systems Agency	12/12/2025	Standalone XCCDF 1.1.4 - Rev. 4 Sunset - Samsung Android OS 14 with Knox 3.x STIG Standalone XCCDF 1.1.4 - Samsung Android OS 14 with Knox 3.x STIG
Samsung Android 15 with Knox 3.x STIG (Y25M10)	Google Android 15	Defense Information Systems Agency	12/12/2025	Standalone XCCDF 1.1.4 - Samsung Android OS 15 with Knox 3.x STIG
z/OS RACF STIG (Y25M10)	IBM z/OS	Defense Information Systems Agency	12/12/2025	Standalone XCCDF 1.1.4 - IBM z/OS STIG Standalone XCCDF 1.1.4 - z/OS RACF Products Standalone XCCDF 1.1.4 - z/OS SRR Scripts
z/OS TSS STIG (Y25M10)	IBM z/OS	Defense Information Systems Agency	12/12/2025	Standalone XCCDF 1.1.4 - IBM z/OS STIG Standalone XCCDF 1.1.4 - z/OS TSS Products Standalone XCCDF 1.1.4 - z/OS SRR Scripts
z/OS ACF2 STIG (Y25M10)	IBM z/OS	Defense Information Systems Agency	12/12/2025	Standalone XCCDF 1.1.4 - IBM z/OS STIG Standalone XCCDF 1.1.4 - z/OS ACF2 Products

* This checklist is still undergoing review for inclusion into the NCP.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Checklist Program

National Checklist Program

Checklist Repository