U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

Checklist Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.
Please note that the current search fields have been adjusted to reflect NIST SP 800-70 Revision 4.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

There are 822 matching records. Displaying matches 621 through 640.

Name (Version) Target Authority Last Modified Resources
Keyboard Video and Mouse Switch STIG (Version 2, Release 6) Dell KVM 2161DS_2
 Defense Information Systems Agency
 12/12/2019 Standalone XCCDF 1.1.4 - Keyboard Video and Mouse Switch STIG - Ver 2, Rel 6
CIS Aliyun Linux 2 Benchmark (1.0.0) Alibaba Aliyun Linux 2.0
 Center for Internet Security (CIS)
 12/05/2019 Prose - CIS Aliyun Linux 2 Benchmark v1.0.0
Network Perimeter Router L3 Switch (Version 8, Release 32) Cisco PIX ASA
Foundry Networks BigIron Router
Juniper Router M10
Juniper Router M16
Juniper Router M20
Juniper Router M40
Juniper Router M5
 Defense Information Systems Agency
 12/03/2019 Standalone XCCDF 1.1.4 - Sunset - Network Perimeter Router L3 Switch STIG - Ver 8, Rel 32
Network Infrastructure Router L3 Switch (Version 8, Release 29) Cisco PIX ASA
Foundry Networks BigIron Router
Juniper Router M10
Juniper Router M16
Juniper Router M20
Juniper Router M40
Juniper Router M5
 Defense Information Systems Agency
 12/03/2019 Standalone XCCDF 1.1.4 - Sunset - Network Infrastructure Router L3 Switch STIG - Ver 8, Rel 29
VMware vSphere 6.0 ESXi STIG (Ver 1, Rel 5) VMware vSphere 6.0 ESXi
 Defense Information Systems Agency
 11/25/2019 Standalone XCCDF 1.1.4 - Sunset - VMware vSphere 6.0 ESXi STIG - Ver 1, Rel 5
VMware vSphere 6.0 Virtual Machine STIG (Version 1, Release 1) VMware vSphere 6.0 Virtual Machine
 Defense Information Systems Agency
 11/25/2019 Standalone XCCDF 1.1.4 - Sunset - VMware vSphere 6.0 Virtual Machine STIG - Ver 1, Rel 1
VMware vSphere 6.0 vCenter Server for Windows STIG (Ver 1, Rel 4) VMware vSphere 6.0 vCenter Server for Windows
 Defense Information Systems Agency
 11/25/2019 Standalone XCCDF 1.1.4 - Sunset - VMware vSphere 6.0 vCenter Server for Windows STIG - Ver 1, Rel 4
AIX 6.1 STIG (Version 1, Release 14) IBM AIX 6.1
 Defense Information Systems Agency
 11/07/2019 SCAP 1.1 Content - Sunset - AIX 6.1 STIG-Benchmark - Ver 1, Rel 9
Standalone XCCDF 1.1.4 - Sunset - AIX 6.1 STIG - Ver 1, Rel 14
CIS Apache Tomcat 8 Benchmark (1.1.0) Apache Tomcat 8.0
 Center for Internet Security (CIS)
 11/04/2019 Prose - Apache Tomcat 8 Benchmark v1.1.0
MultiFunction Device and Network Printers STIG (Version 2, Release 14) HP Color Laserjet 4730 MFP
 Defense Information Systems Agency
 11/01/2019 Standalone XCCDF 1.1.4 - Multifunction Device and Network Printers STIG - Ver 2, Rel 14
IBM MaaS360 with Watson v10-x MDM STIG (Ver 1, Rel 2) IBM MaaS360 MDM
 Defense Information Systems Agency
 10/28/2019 Standalone XCCDF 1.1.4 - IBM MaaS360 with Watson v10-x MDM STIG - Ver1, Rel 2
CIS Microsoft SharePoint 2016 Benchmark (1.1.0) Microsoft SharePoint 2016
 Center for Internet Security (CIS)
 09/25/2019 Prose - CIS Microsoft SharePoint 2016 Benchmark, 1.1.0
CIS macOS Safari Benchmark (2.0.0) Apple OS X 10.11
 Center for Internet Security (CIS)
 09/24/2019 Prose - CIS macOS Safari Benchmark v2.0.0
CIS PostgreSQL 9.6 Benchmark (1.0.0) PostgreSQL 9.6
 Center for Internet Security (CIS)
 09/24/2019 Prose - CIS PostgreSQL 9.6 Benchmark v1.0.0
CIS Microsoft Word 2016 Benchmark (1.1.0) Microsoft Word 2016
 Center for Internet Security (CIS)
 09/24/2019 Prose - CIS Microsoft Word 2016 Benchmark v1.1.0
CIS Apple iOS 11 Benchmark (1.0.0) Apple iOS 11
 Center for Internet Security (CIS)
 09/24/2019 Prose - CIS Apple iOS 11 Benchmark v1.0.0
CIS PostgreSQL 9.5 Benchmark (1.1.0) PostgreSQL 9.5
 Center for Internet Security (CIS)
 09/24/2019 Prose - CIS PostgreSQL 9.5 Benchmark v1.1.0
CIS PostgreSQL 10 Benchmark (1.0.0) PostgreSQL 10
 Center for Internet Security (CIS)
 09/24/2019 Prose - CIS PostgreSQL 10 Benchmark v1.0.0
CIS Docker Community Edition Benchmark (1.1.0) Docker 17.06
 Center for Internet Security (CIS)
 09/24/2019 Prose - CIS Docker Community Edition Benchmark v1.1.0
CIS Apple iOS 12 Benchmark (1.0.0) Apple iOS 12
 Center for Internet Security (CIS)
 09/24/2019 Prose - CIS Apple iOS 12 Benchmark v1.0.0
* This checklist is still undergoing review for inclusion into the NCP.