NCP

Checklist Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.
Please note that the current search fields have been adjusted to reflect NIST SP 800-70 Revision 4.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

Checklist Type:

Authority:

Target:

Order By:

Content Type:

Tool Compatibility:

Keyword:

There are 822 matching records. Displaying matches 685 through 704.

Name (Version)	Target	Authority	Last Modified	Resources
Word 2007 STIG (Version 4, Release 15)	Microsoft Word 2007	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Microsoft Word 2007 STIG - Ver 4, Rel 15
L3 KOV-26 Talon (Wireless Role) STIG (Version 6, Release 8)	L3 KOV-26 Talon	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - L3 KOV-26 Talon (Wireless Role) STIG - Ver 6, Rel 8
HP-UX 11.31 STIG (Version 1, Release 19)	HP HP-UX 11.31	Defense Information Systems Agency	09/11/2019	SCAP 1.2 Content - Sunset - HP-UX 11.31 STIG Benchmark - Ver 1, Rel 17 Standalone XCCDF 1.1.4 - Sunset - HP-UX 11.31 STIG - Ver 1, Rel 19
Symantec Endpoint Protection 12.1 Overview (Version 1, Release 1)	Symantec Endpoint Protection 12.1	Defense Information Systems Agency	09/11/2019	Prose - Sunset - Symantec Endpoint Protection 12.1 Overview - Ver 1, Rel 1
Android 2.2 (Dell) (Version 1, Release 2)	Google Android 2.2	Defense Information Systems Agency	09/11/2019	Machine-Readable Format - Sunset - Android 2.2 (DELL) STIG - Ver 1, Rel 2
IIS 6.0 STIG (Version 6, Release 16)	Microsoft Internet Information Services 6.0	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Microsoft IIS 6.0 STIG - Ver 6, Rel 16
Symantec Endpoint Protection 12.1 Local Client STIG (Version 1, Release 3)	Symantec Endpoint Protection 12.1	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Symantec Endpoint Protection 12.1 Local Client STIG - Ver 1, Rel 3
Samsung Android OS 5 (with Knox 2.x) STIG (Ver 1, Rel 4)	Samsung Android OS 5	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Samsung Android OS 5 with Knox 2.x STIG - Ver 1, Rel 4
Apple iOS 10 STIG (Version 1, Release 3)	Apple iOS 10	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Apple iOS 10 STIG - Ver 1, Rel 3
Apache 2.0 STIG - UNIX (Version 1, Release 5)	Apache HTTP Server 2.0	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Apache 2.0 UNIX STIG - Ver 1, Rel 5
Desktop Applications General STIG (Ver 4, Rel 5)	Mcafee VirusScan 7.0 Microsoft Frontpage 2002 Microsoft Frontpage 2003 Microsoft Internet Explorer Microsoft Office 2000 Microsoft Office 2003 Microsoft Office 2007 Microsoft Office 2007 SP1 Microsoft Office XP Microsoft Outlook 2000 Microsoft Outlook 2002 Microsoft Outlook 2007 Microsoft Word 2007 Netscape Navigator Symantec Norton Antivirus 10.0 Symantec Norton Antivirus 9.0	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Desktop Applications General STIG - Ver 4, Rel 5
BlackBerry BES 12.5.x STIG (Ver 1, Rel 3)	Blackberry	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Blackberry BES 12.5.x MDM STIG - Ver 1, Rel 3
Microsoft Office 2007 Overview (Version 4, Release 14)	Microsoft Access 2007 Microsoft Excel 2007 Microsoft Infopath 2007 Microsoft Office 2007 Microsoft Outlook 2007 Microsoft PowerPoint 2007 Microsoft Visio 2007 Microsoft Word 2007	Defense Information Systems Agency	09/11/2019	Prose - Sunset - Microsoft Office 2007 Overview - Ver 4, Rel 14
Excel 2007 STIG (Version 4, Release 13)	Microsoft Excel 2007	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Microsoft Excel 2007 STIG - Ver 4, Rel 13
Apple iOS 11 STIG (Ver 1, Rel 4)	Apple iOS 11	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Apple iOS 11 STIG - Ver 1, Rel 4
AirWatch MDM Software 6.5 STIG (Version 1, Release 3)	AirWatch Mobile Device Management (MDM) Software 6.5	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - AirWatch MDM STIG - Ver 1, Rel 3
Oracle 9 STIG (Version 8 Release 1.8)	Oracle Database 9i Oracle Database Server 9.2	Defense Information Systems Agency	09/11/2019	Prose - Sunset - Oracle 9 Database STIG - Ver 8, Rel 1.8
Apple OS X 10.11 (El Capitan) STIG (Version 1, Release 6)	Apple OS X 10.11	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Apple OS X 10.11 Workstation STIG - Ver 1, Rel 6
AIX 5.3 STIG (Version 1, Release 2)	IBM AIX 5.3	Defense Information Systems Agency	09/11/2019	SCAP 1.1 Content - Sunset - AIX 5.3 STIG Benchmark - Ver 1, Rel 2 Standalone XCCDF 1.1.4 - Sunset - AIX 5.3 Manual STIG - Ver 1, Rel 3
Windows 2003 MS STIG Benchmark (Version 6, Release 40)	Microsoft Windows Server 2003 Microsoft Windows Server 2003 Service Pack 1 Microsoft Windows Server 2003 Service Pack 2 Microsoft Windows Server 2003 Service Pack 3	Defense Information Systems Agency	09/11/2019	SCAP 1.1 Content - Sunset - Microsoft Windows 2003 MS STIG Benchmark - Ver 6, Rel 40 Standalone XCCDF 1.1.4 - Sunset - Microsoft Windows 2003 MS STIG - Ver 6, Rel 37

* This checklist is still undergoing review for inclusion into the NCP.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Checklist Program

National Checklist Program

Checklist Repository