NCP

Checklist Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.
Please note that the current search fields have been adjusted to reflect NIST SP 800-70 Revision 4.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

Checklist Type:

Authority:

Target:

Order By:

Content Type:

Tool Compatibility:

Keyword:

There are 787 matching records. Displaying matches 481 through 500.

Name (Version)	Target	Authority	Last Modified	Resources
ESXi 5 Server STIG (Version 2, Release 1)	VMware ESXi 5.0 VMware ESXi 5.0 Update 1 VMware ESXi 5.0 Update 2 VMware ESXi 5.1	Defense Information Systems Agency	10/29/2021	Standalone XCCDF 1.1.4 - Sunset - VMware ESXi 5 Server STIG - Version 2, Release 1
Oracle 11g Database STIG (Version 9 Release 1)	Oracle Database 11g Oracle Database 11g 11.1 Oracle Database 11g 11.2	Defense Information Systems Agency	10/27/2021	Standalone XCCDF 1.1.4 - Sunset - Oracle Database 11g STIG - Version 9, Release 1
McAfee VSEL 1.9/2.0 STIG (Version 1, Release 1)	McAfee VirusScan Enterprise for Linux 1.9x McAfee VirusScan Enterprise for Linux 2.0x	Defense Information Systems Agency	10/07/2021	Standalone XCCDF 1.1.4 - Sunset-McAfee VSEL 1.9/2.0 STIG
VMware ESX 3 Server STIG (Ver 1, Rel 2)	VMware ESX Server 3.0.0	Defense Information Systems Agency	08/30/2021	Standalone XCCDF 1.1.4 - Sunset - VMWare ESX 3 Policy STIG - Ver 1, Rel 2 Standalone XCCDF 1.1.4 - Sunset - VMware ESX 3 Server STIG - Ver 1, Rel 2 Standalone XCCDF 1.1.4 - Sunset - VMware ESX 3 Virtual Center STIG - Ver 1, Rel 2 Standalone XCCDF 1.1.4 - Sunset - VMware ESX 3 Virtual Machine STIG - Ver 1, Rel 2
NIST National Checklist for Red Hat Enterprise Linux 8.x (content v0.1.50)	Red Hat Enterprise Linux 8.0 Red Hat Enterprise Linux 8.1 Red Hat Enterprise Linux 8.2	Red Hat	08/18/2021	SCAP 1.3 Content - NIST National Checklist for Red Hat Enterprise Linux 8.x Ansible Playbook - FBI Criminal Justice Information Services (FBI CJIS) Ansible Playbook - NIST 800-171 (Controlled Unclassified Information) Ansible Playbook - Health Insurance Portability and Accountability Act (HIPAA) Ansible Playbook - NIST National Checklist for RHEL 8.x Ansible Playbook - PCI-DSS
NIST National Checklist for Red Hat Enterprise Linux 7.x (content v0.1.50)	Red Hat Enterprise Linux 7.0 Red Hat Enterprise Linux 7.1 Red Hat Enterprise Linux 7.2 Red Hat Enterprise Linux 7.3 Red Hat Enterprise Linux 7.4 Red Hat Enterprise Linux 7.5 Red Hat Enterprise Linux 7.6 Red Hat Enterprise Linux 7.7	Red Hat	08/18/2021	SCAP 1.3 Content - NIST National Checklist for Red Hat Enterprise Linux 7.x, SCAP 1.3 Ansible Playbook - CIA Commercial Cloud Services (CIA C2S) Ansible Playbook - FBI Criminal Justice Information Services (FBI CJIS) Ansible Playbook - NIST 800-171 (Controlled Unclassified Information) Ansible Playbook - Health Insurance Portability and Accountability Act (HIPAA) Ansible Playbook - NIST National Checklist for Red Hat Enterprise Linux 7.x Ansible Playbook - PCI-DSS Ansible Playbook - DoD STIG
Microsoft SCOM STIG (Ver 1, Rel 1)	Microsoft SCOM	Defense Information Systems Agency	08/03/2021	Standalone XCCDF 1.1.4 - Microsoft SCOM STIG - Ver 1, Rel 1
BIND 9.x STIG (Ver 2, Rel 2)	BIND 9.x	Defense Information Systems Agency	07/29/2021	Standalone XCCDF 1.1.4 - BIND 9.x STIG - Ver 2, Rel 2
Adobe ColdFusion (Version 2, Release 1)	Adobe ColdFusion	Defense Information Systems Agency	07/28/2021	Standalone XCCDF 1.1.4 - Sunset - Adobe ColdFusion 11 STIG - Ver 2, Rel 1
Samsung SDS EMM v1.5.x STIG (Version 1, Release 1)	Samsung SDS EMM	Defense Information Systems Agency	06/25/2021	Standalone XCCDF 1.1.4 - Samsung SDS EMM v1.5.x STIG - Ver 1, Rel 1
A10 Networks Application Delivery Controller (ADC) (Version 2, Release 1)	A10 Networks Application Delivery Controller	Defense Information Systems Agency	04/28/2021	Standalone XCCDF 1.1.4 - A10 Networks ADC ALG - Ver 2, Rel 1 Standalone XCCDF 1.1.4 - A10 Networks Application Delivery Controller (ADC) NDM STIG Ver 1
Docker Enterprise 2.x Linux/UNIX STIG (Ver 2 Rel 1)	Docker Enterprise 2.0.0	Defense Information Systems Agency	04/28/2021	Machine-Readable Format - Docker Enterprise 2.x Linux/Unix STIG for Ansible - Ver 1, Rel 1 Standalone XCCDF 1.1.4 - Docker Enterprise 2.x Linux/Unix - Ver 2, Rel 1
Oracle WebLogic Server 12c STIG (Ver 2, Rel 1)	Oracle Weblogic Server	Defense Information Systems Agency	04/28/2021	Standalone XCCDF 1.1.4 - Oracle WebLogic Server 12c - Ver 2, Rel 1
Infoblox 8.x Domain Name System (DNS) STIG (Version 1, Release 1)	Infoblox 8.x Domain Name System (DNS)	Defense Information Systems Agency	03/04/2021	Standalone XCCDF 1.1.4 - Infoblox 8.x DNS STIG - Ver 1, Rel 1
Oracle Linux 5 STIG (Version 2, Release 1)	Oracle Linux 5	Defense Information Systems Agency	01/27/2021	Standalone XCCDF 1.1.4 - Sunset - Oracle Linux 5 STIG - Ver 2, Rel 1
Oracle JRE 8 Windows STIG (Version 2, Release 1)	Oracle JRE 8 for Windows	Defense Information Systems Agency	01/27/2021	Standalone XCCDF 1.1.4 - Sunset - Oracle JRE 8 Windows STIG - Ver 2, Rel 1
Infoblox 7.x Domain Name System (DNS) STIG (Version 2, Release 1)	Infoblox 7.x Domain Name System (DNS)	Defense Information Systems Agency	01/27/2021	Standalone XCCDF 1.1.4 - Infoblox 7.x DNS STIG - Ver 2, Rel 1
Blackberry UEM STIG (Ver 2, Rel 1)	BlackBerry UEM 12.11	Defense Information Systems Agency	01/27/2021	Standalone XCCDF 1.1.4 - Blackberry UEM STIG - Ver 2, Rel 1
Samsung Android 11 Knox 3.x (Ver 1, Rel 1)	Google Android 11.0	Defense Information Systems Agency	01/26/2021	Standalone XCCDF 1.1.4 - Samsung Android 11 Knox 3.x
Oracle JRE 8 UNIX STIG (Ver 1, Rel 3)	Oracle JRE for UNIX	Defense Information Systems Agency	12/02/2020	Standalone XCCDF 1.1.4 - Sunset - Oracle JRE 8 UNIX STIG - Ver 1, Rel 3

* This checklist is still undergoing review for inclusion into the NCP.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Checklist Program

National Checklist Program

Checklist Repository