Checklist Repository
The National Checklist Program (NCP), defined by the NIST
SP 800-70, is the U.S. government repository of publicly available
security checklists (or benchmarks) that provide detailed low level
guidance on setting the security configuration of operating systems
and applications.
NCP provides metadata and links to checklists of various formats
including checklists that conform to the Security
Content Automation Protocol (SCAP). SCAP enables validated
security products to automatically perform configuration checking
using NCP checklists. For more information relating to the NCP please
visit the information page or
the glossary of terms.
Please note that the current search fields have been adjusted to
reflect NIST SP 800-70 Revision 4.
Search for Checklists using the fields below. The keyword
search will search across the name, and summary.
There are 822
matching records. Displaying matches 421 through 440.
| Name (Version) |
Target |
Authority |
Last Modified |
Resources |
| CIS IBM AIX 7.1 Benchmark (2.1.0) |
IBM AIX 7.1
|
Center for Internet Security (CIS)
|
02/22/2024 |
Prose - CIS IBM AIX 7.1 Benchmark v2.1.0
|
| CIS Microsoft Windows 10 Enterprise Release 1809 Benchmark (1.6.1) |
Microsoft Windows 10
|
Center for Internet Security (CIS)
|
02/22/2024 |
Prose - CIS Microsoft Windows 10 Enterprise Release 1809 Benchmark v1.6.1
|
| CIS CentOS Linux 6 Benchmark (3.0.0) |
CentOS Linux 6
|
Center for Internet Security (CIS)
|
02/22/2024 |
Prose - CIS CentOS Linux 6 Benchmark v3.0.0
|
| CIS Apple macOS 10.12 Benchmark (1.2.0) |
Apple OS X 10.12
|
Center for Internet Security (CIS)
|
02/22/2024 |
Prose - CIS Apple macOS 10.12 Benchmark v1.2.0
|
| CIS Apache HTTP Server 2.4 Benchmark (2.1.0) |
Apache HTTP Server 2.4.0
|
Center for Internet Security (CIS)
|
02/22/2024 |
Prose - Prose - CIS Apache HTTP Server 2.4 Benchmark v2.1.0
|
| CIS Apache Cassandra 3.11 Benchmark (1.1.0) |
Apache Cassandra 3.11
|
Center for Internet Security (CIS)
|
02/21/2024 |
Prose - CIS Apache Cassandra 3.11 Benchmark v1.1.0
|
| CIS Amazon Linux 2 Benchmark (3.0.0) |
Amazon Linux 2
|
Center for Internet Security (CIS)
|
02/21/2024 |
Prose - CIS Amazon Linux 2 Benchmark v3.0.0
|
| CIS Apple macOS 10.13 Benchmark (1.1.0) |
Apple macOS 10.13
|
Center for Internet Security (CIS)
|
02/21/2024 |
Prose - CIS Apple macOS 10.13 Benchmark v1.1.0
|
| CIS Apache Tomcat 9 Benchmark (1.2.0) |
Apache Tomcat 9.0
|
Center for Internet Security (CIS)
|
02/21/2024 |
Prose - Apache Tomcat 9 Benchmark v1.2.0
|
| CIS Cisco ASA 9.x Firewall Benchmark (v1.1.0) |
Cisco Firewall Services Module
Cisco PIX 500 Security Appliance
Cisco PIX 506E Firewall Security Appliance
Cisco PIX 515E Firewall Security Appliance
Cisco PIX ASA
Cisco PIX Firewall 501
Cisco PIX Firewall 506
Cisco PIX Firewall 515
Cisco PIX Firewall 520
Cisco PIX Firewall 525
Cisco PIX Firewall 535
|
Center for Internet Security (CIS)
|
02/21/2024 |
Prose - CIS Cisco ASA 9.x Firewall Benchmark, v1.1.0
|
| CIS Microsoft SQL Server 2008 R2 Benchmark (1.7.0) |
Microsoft SQL Server 2008 R2
|
Center for Internet Security (CIS)
|
02/20/2024 |
Prose - CIS Microsoft SQL Server 2008 R2 Benchmark v1.7.0
|
| CIS Kubernetes Benchmark (1.8.0) |
Kubernetes 1.13.0
|
Center for Internet Security (CIS)
|
02/20/2024 |
Prose - CIS Kubernetes Benchmark v1.8.0
|
| CIS Red Hat Enterprise Linux 5 Benchmark (2.2.1) |
Red Hat Enterprise Linux 5
|
Center for Internet Security (CIS)
|
02/20/2024 |
Prose - CIS Red Hat Enterprise Linux 5 Benchmark v2.2.1
|
| CIS Microsoft Windows Server 2019 Benchmark (2.0.0) |
Microsoft Windows Server 2019
|
Center for Internet Security (CIS)
|
02/20/2024 |
Prose - CIS Microsoft Windows Server 2019 Benchmark, 1.0.0
|
| CIS CISCO Firewall Benchmark (4.1.0) |
Cisco ASA 8
Cisco ASA 9
|
Center for Internet Security (CIS)
|
02/20/2024 |
Security Template - CIS CISCO Firewall Benchmark
|
| BlackBerry CylancePROTECT Mobile for UEM STIG (Ver 1, Rel 2) |
Blackberry CylancePROTECT Mobile for UEM
|
Defense Information Systems Agency
|
01/29/2024 |
Standalone XCCDF 1.1.4 - BlackBerry CylancePROTECT Mobile for UEM STIG - Ver 1, Rel 2
|
| Trend Micro Deep Security 9.x STIG (Version 2, Release 1) |
Trend Micro Deep Security
|
Defense Information Systems Agency
|
01/26/2024 |
Standalone XCCDF 1.1.4 - Sunset - Trend Micro Deep Security 9.x STIG - Ver 2, Rel 1
|
| Honeywell Android 9.x STIG (Y24M01) |
Google Android 9.x
|
Defense Information Systems Agency
|
01/26/2024 |
Standalone XCCDF 1.1.4 - Sunset - Honeywell Android 9.x STIG
|
| Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.42) |
IBM z/OS Version 2.2
IBM z/OS Version 2.3
|
Vanguard Integrity Professionals, Inc.
|
01/02/2024 |
ZIP - Vanguard z/OS RACF Checklist 6.42 PDF version
ZIP - Vanguard z/OS RACF Checklist 6.42 XML version
|
| Microsoft Windows 2012 and 2012 R2 STIG (Ver 3, Rel 6) |
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
|
Defense Information Systems Agency
|
11/09/2023 |
SCAP 1.2 Content - Sunset - Microsoft Windows Server 2012 and 2012 R2 DC STIG Benchmark - Ver 3, Rel 6
SCAP 1.2 Content - Sunset - Microsoft Windows Server 2012 and 2012 R2 MS STIG Benchmark - Ver 3, Rel 6
Automated Content - SCC 5.8 Windows
GPOs - Group Policy Objects (GPOs) - October 2023
Standalone XCCDF 1.1.4 - Sunset - Microsoft Windows 2012 and 2012 R2 DC STIG - Ver 3, Rel 7
Standalone XCCDF 1.1.4 - Sunset - Microsoft Windows 2012 and 2012 R2 MS STIG - Ver 3, Rel 7
|
* This checklist is still undergoing review for
inclusion into the NCP.
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
