Checklist Repository
The National Checklist Program (NCP), defined by the NIST
SP 800-70, is the U.S. government repository of publicly available
security checklists (or benchmarks) that provide detailed low level
guidance on setting the security configuration of operating systems
and applications.
NCP provides metadata and links to checklists of various formats
including checklists that conform to the Security
Content Automation Protocol (SCAP). SCAP enables validated
security products to automatically perform configuration checking
using NCP checklists. For more information relating to the NCP please
visit the information page or
the glossary of terms.
Please note that the current search fields have been adjusted to
reflect NIST SP 800-70 Revision 4.
Search for Checklists using the fields below. The keyword
search will search across the name, and summary.
There are 822
matching records. Displaying matches 501 through 520.
| Name (Version) |
Target |
Authority |
Last Modified |
Resources |
| Microsoft Security Compliance Manager - Windows Server 2012 R2 (1.0) |
Microsoft Windows Server 2012 R2
|
Microsoft Corporation
|
09/23/2022 |
SCAP 1.0 Content - Microsoft Windows Server 2012 R2 Domain Controler Security Compliance (generated from Microsoft Security Compliance Manager).
SCAP 1.0 Content - Microsoft Windows Server 2012 R2 Domain Security Compliance (generated from Microsoft Security Compliance Manager).
SCAP 1.0 Content - Microsoft Windows Server 2012 R2 Member Server Security Compliance (generated from Microsoft Security Compliance Manager).
|
| Microsoft Security Compliance Manager - Windows 10 1607 (1.0) |
Microsoft Windows 10 1607
|
Microsoft Corporation
|
09/19/2022 |
SCAP 1.0 Content - Microsoft Windows 10 1607 BitLocker Security (generated from Microsoft Security Compliance Manager).
SCAP 1.0 Content - Microsoft Windows 10 1607 Computer Security Compliance (generated from Microsoft Security Compliance Manager).
SCAP 1.0 Content - Microsoft Windows 10 1607 Credential Guard Security (generated from Microsoft Security Compliance Manager).
SCAP 1.0 Content - Microsoft Windows 10 1607 Domain Security Compliance (generated from Microsoft Security Compliance Manager).
GPOs - Windows 10 1607 Security Baseline
|
| Microsoft Security and Compliance Manager - Windows Server 2016 (1.0) |
Microsoft Windows Server 2016
|
Microsoft Corporation
|
09/19/2022 |
SCAP 1.0 Content - Microsoft Windows Server 2016 Domain Controller Security Compliance (generated from Microsoft Security Compliance Manager).
SCAP 1.0 Content - Microsoft Windows Server 2016 Domain Security Compliance (generated from Microsoft Security Compliance Manager).
SCAP 1.0 Content - Microsoft Windows Server 2016 Member Server Security Compliance (generated from Microsoft Security Compliance Manager).
GPOs - Windows 10 1607 Security Baseline
|
| DoD Consensus Security Configuration Checklist for Microsoft Windows 7 (1.0) |
Microsoft Windows 7
|
Department of Defense
|
09/19/2022 |
Prose - DOD Windows 7 security recommendations
|
| Azure Security Benchmark (1.0) |
Microsoft Azure
|
Microsoft Corporation
|
09/19/2022 |
Prose - Azure Security Benchmark
|
| Microsoft Windows 10 1511 (1.0) |
Microsoft Windows 10 1511 32-bit
Microsoft Windows 10 1511 64-bit
|
Microsoft Corporation
|
09/19/2022 |
Prose - Microsoft Windows 10 1511
|
| CIS Windows XP Professional Benchmark (v3.1.0) |
Microsoft Windows XP Professional
|
Center for Internet Security (CIS)
|
09/19/2022 |
Prose - CIS Windows XP Professional Benchmark v3.1.0
|
| Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.52-86) |
IBM z/OS Version 2, Release 3
IBM z/OS Version 2, Release 4
IBM z/OS Version 2, Release 5
|
Vanguard Integrity Professionals, Inc.
|
09/06/2022 |
ZIP - Vanguard z/OS RACF Checklist 6.51/8.5 PDF version
ZIP - Vanguard z/OS RACF Checklist 6.52/8.6 XML version
|
| Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.51-8.5) |
IBM z/OS Version 2, Release 3
IBM z/OS Version 2, Release 4
IBM z/OS Version 2, Release 5
|
Vanguard Integrity Professionals, Inc.
|
09/06/2022 |
ZIP - Vanguard z/OS RACF Checklist 6.51/8.5 PDF version
ZIP - anguard z/OS RACF Checklist 6.51/8.5 XML version
|
| Vanguard Compliance Manager z/OS RACF Checklist for completing a manual SRR Audit for Stig (6.50-8.4) |
IBM z/OS Version 2, Release 3
IBM z/OS Version 2, Release 4
IBM z/OS Version 2, Release 5
|
Vanguard Integrity Professionals, Inc.
|
09/06/2022 |
ZIP - Vanguard z/OS RACF Checklist 6.50/8.4 PDF version
ZIP - Vanguard z/OS RACF Checklist 6.50/8.4 XML version
|
| Sunset - Samsung Android OS9 Knox 3.x STIG (Y22M07) |
Samsung Android OS 9.0
|
Defense Information Systems Agency
|
08/01/2022 |
Standalone XCCDF 1.1.4 - Sunset - Samsung Android OS9 Knox 3.x STIG
|
| Samsung SDS EMM STIG (Ver 1, Rel 3) |
Samsung SDS EMM
|
Defense Information Systems Agency
|
08/01/2022 |
Standalone XCCDF 1.1.4 - Samsung SDS EMM STIG - Ver 1, Rel 3
|
| Windows 8/8.1 STIG (Version 1, Release 23) |
Microsoft Windows 8 x64 (64-bit)
Microsoft Windows 8 x86 (32-bit)
Microsoft Windows 8.1 (x64)
Microsoft Windows 8.1 (x86)
|
Defense Information Systems Agency
|
06/10/2022 |
SCAP 1.2 Content - Sunset - Microsoft Windows 8/8.1 STIG Benchmark - Ver 1, Rel 22
GPOs - Group Policy Objects (GPOs) - May 2022
Standalone XCCDF 1.1.4 - Sunset - Microsoft Windows 8/8.1 STIG - Ver 1, Rel 23
|
| Adobe Acrobat Reader DC Classic Track (Version 2, Release 1) |
Adobe Acrobat Reader
|
Defense Information Systems Agency
|
06/02/2022 |
SCAP 1.2 Content - Sunset - Adobe Acrobat Reader DC Classic Track STIG Benchmark - Ver 2, Rel 1
Automated Content - SCC 5.4.2 Windows
Standalone XCCDF 1.1.4 - Sunset - Adobe Acrobat Reader DC Classic Track STIG - Ver 2, Rel 1
|
| Cisco IOS XE Release 3 Router STIG (Version 1 Release 3) |
Cisco IOS XE
|
Defense Information Systems Agency
|
04/29/2022 |
Standalone XCCDF 1.1.4 - Sunset - Cisco IOS XE Release 3 NDM STIG - Ver 1, Rel 5
Standalone XCCDF 1.1.4 - Sunset - Cisco IOS XE Release 3 RTR STIG - Ver 1, Rel 3
|
| Sharepoint 2013 (Version 2, Release 3) |
Microsoft Sharepoint Server 2013
|
Defense Information Systems Agency
|
04/28/2022 |
Standalone XCCDF 1.1.4 - Microsoft SharePoint 2013 STIG - Ver 2, Rel 3
|
| CIS Oracle MySQL Enterprise Edition 5.7 Benchmark (v2.0.0) |
Oracle MySQL Enterprise Edition 5.7
|
Center for Internet Security (CIS)
|
04/27/2022 |
Prose - CIS Oracle MySQL Enterprise Edition 5.7 Benchmark v2.0.0
|
| CIS Oracle MySQL Enterprise Edition 5.6 Benchmark (2.0.0) |
Oracle MySQL Enterprise Edition 5.6
|
Center for Internet Security (CIS)
|
04/27/2022 |
Prose - CIS Oracle MySQL Enterprise Edition 5.6 Benchmark v2.0.0
|
| CIS Oracle MySQL Community Server 5.6 Benchmark (2.0.0) |
MySQL 5.6
|
Center for Internet Security (CIS)
|
04/27/2022 |
Prose - CIS ORACLE MYSQL COMMUNITY SERVER 5.6 BENCHMARK V2.0.0
|
| CIS Oracle MySQL Community Server 5.7 Benchmark (2.0.0) |
Oracle MySQL Community Server 5.7
|
Center for Internet Security (CIS)
|
04/27/2022 |
Prose - CIS Oracle MySQL Community Server 5.7 Benchmark v2.0.0
|
* This checklist is still undergoing review for
inclusion into the NCP.
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
