NCP

Checklist Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.
Please note that the current search fields have been adjusted to reflect NIST SP 800-70 Revision 4.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

Checklist Type:

Authority:

Target:

Order By:

Content Type:

Tool Compatibility:

Keyword:

There are 828 matching records. Displaying matches 441 through 460.

Name (Version)	Target	Authority	Last Modified	Resources
CIS Cisco ASA 9.x Firewall Benchmark (v1.1.0)	Cisco Firewall Services Module Cisco PIX 500 Security Appliance Cisco PIX 506E Firewall Security Appliance Cisco PIX 515E Firewall Security Appliance Cisco PIX ASA Cisco PIX Firewall 501 Cisco PIX Firewall 506 Cisco PIX Firewall 515 Cisco PIX Firewall 520 Cisco PIX Firewall 525 Cisco PIX Firewall 535	Center for Internet Security (CIS)	02/21/2024	Prose - CIS Cisco ASA 9.x Firewall Benchmark, v1.1.0
CIS Microsoft SQL Server 2008 R2 Benchmark (1.7.0)	Microsoft SQL Server 2008 R2	Center for Internet Security (CIS)	02/20/2024	Prose - CIS Microsoft SQL Server 2008 R2 Benchmark v1.7.0
CIS Kubernetes Benchmark (1.8.0)	Kubernetes 1.13.0	Center for Internet Security (CIS)	02/20/2024	Prose - CIS Kubernetes Benchmark v1.8.0
CIS Red Hat Enterprise Linux 5 Benchmark (2.2.1)	Red Hat Enterprise Linux 5	Center for Internet Security (CIS)	02/20/2024	Prose - CIS Red Hat Enterprise Linux 5 Benchmark v2.2.1
CIS Microsoft Windows Server 2019 Benchmark (2.0.0)	Microsoft Windows Server 2019	Center for Internet Security (CIS)	02/20/2024	Prose - CIS Microsoft Windows Server 2019 Benchmark, 1.0.0
CIS CISCO Firewall Benchmark (4.1.0)	Cisco ASA 8 Cisco ASA 9	Center for Internet Security (CIS)	02/20/2024	Security Template - CIS CISCO Firewall Benchmark
BlackBerry CylancePROTECT Mobile for UEM STIG (Ver 1, Rel 2)	Blackberry CylancePROTECT Mobile for UEM	Defense Information Systems Agency	01/29/2024	Standalone XCCDF 1.1.4 - BlackBerry CylancePROTECT Mobile for UEM STIG - Ver 1, Rel 2
Trend Micro Deep Security 9.x STIG (Version 2, Release 1)	Trend Micro Deep Security	Defense Information Systems Agency	01/26/2024	Standalone XCCDF 1.1.4 - Sunset - Trend Micro Deep Security 9.x STIG - Ver 2, Rel 1
Honeywell Android 9.x STIG (Y24M01)	Google Android 9.x	Defense Information Systems Agency	01/26/2024	Standalone XCCDF 1.1.4 - Sunset - Honeywell Android 9.x STIG
Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.42)	IBM z/OS Version 2.2 IBM z/OS Version 2.3	Vanguard Integrity Professionals, Inc.	01/02/2024	ZIP - Vanguard z/OS RACF Checklist 6.42 PDF version ZIP - Vanguard z/OS RACF Checklist 6.42 XML version
Microsoft Windows 2012 and 2012 R2 STIG (Ver 3, Rel 6)	Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2	Defense Information Systems Agency	11/09/2023	SCAP 1.2 Content - Sunset - Microsoft Windows Server 2012 and 2012 R2 DC STIG Benchmark - Ver 3, Rel 6 SCAP 1.2 Content - Sunset - Microsoft Windows Server 2012 and 2012 R2 MS STIG Benchmark - Ver 3, Rel 6 Automated Content - SCC 5.8 Windows GPOs - Group Policy Objects (GPOs) - October 2023 Standalone XCCDF 1.1.4 - Sunset - Microsoft Windows 2012 and 2012 R2 DC STIG - Ver 3, Rel 7 Standalone XCCDF 1.1.4 - Sunset - Microsoft Windows 2012 and 2012 R2 MS STIG - Ver 3, Rel 7
Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.58-12)	IBM z/OS Version 2, Release 4 IBM z/OS Version 2, Release 5	Vanguard Integrity Professionals, Inc.	11/05/2023	ZIP - Vanguard z/OS RACF Checklist 6.58/8.12 PDF version ZIP - Vanguard z/OS RACF Checklist 6.58/12 XML version
VMware vRealize Operations 6.x STIG (Y23M10)	VMWare vRealize Operations Manager 6.x	Defense Information Systems Agency	10/26/2023	Standalone XCCDF 1.1.4 - Sunset - VMware vRealize Ops 6.x STIG Standalone XCCDF 1.1.4 - Sunset - VMware vRealize Operations Manager Cassandra STIG - Ver 1, Rel 2
Microsoft IIS 8.5 STIG (Y23M10)	IIS 8.5	Defense Information Systems Agency	10/26/2023	Standalone XCCDF 1.1.4 - Sunset - Microsoft IIS 8.5 STIG
VMWare vRealize Automation 7.x STIG (Y21M10)	VMWare vRealize Automation 7.x	Defense Information Systems Agency	10/26/2023	Standalone XCCDF 1.1.4 - Sunset - VMware vRealize Automation 7.x STIG
Apple macOS 11 STIG (Ver 1, Rel 8)	Apple macOS 11.0 (Big Sur)	Defense Information Systems Agency	10/26/2023	Automated Content - SCC 5.8 Mac OS X x86 64 Standalone XCCDF 1.1.4 - Sunset - Apple macOS 11 (Big Sur) STIG - Ver 1, Rel 8
Zebra Android 11 COBO STIG (Ver 1, Rel 3)	Google Android 11.0	Defense Information Systems Agency	10/26/2023	Standalone XCCDF 1.1.4 - Zebra Android 11 COBO STIG - Ver 1, Rel 3
Apple iOS/iPadOS 16 BYOAD STIG (Ver 1, Rel 1)	Apple iOS/iPadOS 16	Defense Information Systems Agency	10/12/2023	Standalone XCCDF 1.1.4 - Apple iOS/iPadOS 16 BYOAD STIG - Ver 1, Rel 1
CIS FreeRADIUS 1.1.3 Benchmark (v1.0.0)	FreeRADIUS 1.1.3	Center for Internet Security (CIS)	10/02/2023	Prose - CIS FreeRADIUS 1.1.3 Benchmark v1.0.0
CIS Exchange Server 2003 Benchmark (v1.0.0)	Microsoft Exchange Server 2003	Center for Internet Security (CIS)	10/02/2023	Prose - CIS Exchange Server 2003 Benchmark v1.0.0

* This checklist is still undergoing review for inclusion into the NCP.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Checklist Program

National Checklist Program

Checklist Repository