NCP

Checklist Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.
Please note that the current search fields have been adjusted to reflect NIST SP 800-70 Revision 4.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

Checklist Type:

Authority:

Target:

Order By:

Content Type:

Tool Compatibility:

Keyword:

There are 822 matching records. Displaying matches 742 through 761.

Name (Version)	Target	Authority	Last Modified	Resources
Domain Name System (DNS) STIG (Version 4, Release 1.18)	Cisco Content Services Switch 11000 ISC Bind 9.3.1 ISC Bind 9.3.2 Microsoft Windows 2000 Microsoft Windows Server 2000 Microsoft Windows Server 2003 Microsoft Windows XP	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - Domain Name System (DNS) STIG, Version 4, Release 1.18
APPLE iOS 8 INTERIM SECURITY CONFIGURATION GUIDE (ISCG) (Version 1, Release 1)	Apple iPhone OS 8.0	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - APPLE iOS 8 INTERIM SECURITY CONFIGURATION GUIDE (ISCG)
Apple iOS 7 STIG (Version 1 Release 2)	Apple iPhone OS 7.0	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - Apple iOS 7 STIG Version 1 Release 2
SQL Server 7 Database Security Checklist (Version 8 Release 1.7)	Microsoft SQL Server 7.0	Defense Information Systems Agency	04/15/2019	Prose - SQL Server 7 Database Security Checklist - Version 8 Release 1.7
Enterprise System Management (ESM) STIG (Version 1, Release 1)	Microsoft Systems Management Server 2003	Defense Information Systems Agency	04/15/2019	Prose - Enterprise System Management (ESM) STIG - Version 1 Release 1
Apple iOS 6 STIG (Version 1, Release 2)	Apple iPad Mini Apple iPad2 Apple iPhone 4s Apple iPhone 5 Apple iPhone OS 6.0 Apple iPhone OS 6.0.1 Apple iPhone OS 6.0.2 Apple iPhone OS 6.1	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - Apple iOS 6 STIG, Version 1, Release 2
SQL Server 2000 Database Security Checklist (Version 8 Release 1.7)	Microsoft SQL Server 2000	Defense Information Systems Agency	04/15/2019	Prose - SQL Server 2000 Database Security Checklist - Version 8 Release 1.7
Instant Messaging Checklist (Version 1, Release 2.5)	Ezenia InfoWorkSpace 2.5.1.3 IBM Lotus SameTime 8.5.1 Ipswitch Instant Messaging 2.02 Jabber XCP 5.0 Liquid Communication Systems, LLC Effusia Business Messenger 4.3 Liquid Communication Systems, LLC Effusia Business Messenger Server 4.0 Microsoft Live Communications Server 2005 Microsoft Office Communications Server Sigaba Secure Instant Messaging 1.2 WiredRed e/Pop Instant Messaging 4.5	Defense Information Systems Agency	04/15/2019	Prose - Instant Messaging Checklist
Network Policy (Version 8, Release 17)	Cisco PIX ASA Foundry Networks BigIron Router Juniper Router M10 Juniper Router M16 Juniper Router M20 Juniper Router M40 Juniper Router M5	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - Network Policy - Version 8, Release 17
Application Services STIG Checklist (Version 1 Release 1.1)	Apache Tomcat BEA WebLogic Server 7.0 sp6 Sun JRE 5.0 Update 4 Sun JVM JDK 5.0 Update 4	Defense Information Systems Agency	04/15/2019	Prose - Application Services Checklist - Version 1 Release 1.1 Prose - Application Services STIG - Version 1 Release 1
Symantec Endpoint Protection 12.1 STIG (Version 1, Release 3)	Symantec Endpoint Protection 12.1	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - Symantec Endpoint Protection 12.1 STIG Version 1, Release 3
Windows XP STIG (Version 6, Release 1.34)	Microsoft Windows XP	Defense Information Systems Agency	04/15/2019	SCAP 1.0 Content - Windows XP STIG Benchmark Version 6, Release 1.34 Standalone XCCDF 1.1.4 - Windows XP STIG - Version 6, Release 1.32
Windows Mobile 6-5 STIG (Version 1, Release 2)	Good Domino Mobile Control (GMC) Server 1.0.3 Good Domino Mobile Messaging (GMM) Server 6.0.3 Good Domino Mobile Messaging Client 6.0.1 Microsoft Windows Phone 6.5	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - Windows Mobile 6-5 STIG Version 1, Release 2
Enterprise Resource Planning (ERP) Checklist STIG (Version 1 Release 1.1)	Microsoft Windows Server 2003	Defense Information Systems Agency	04/15/2019	Prose - Enterprise Resource Planning (ERP) Checklist - Version 1, Release 1.1 Prose - Enterprise Resource Planning (ERP) STIG - Version 1, Release 1
BlackBerry Enterprise Service 10.2.x BlackBerry Device Service STIG (Version 1, Release 5)	BlackBerry PlayBook OS 2.1 Blackberry OS 10.0 Blackberry OS 10.2	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - BlackBerry Device Service STIG - Version 1, Release 5
Network Firewall (Version 8, Release 25)	Cisco PIX ASA Foundry Networks BigIron Router Juniper Router M10 Juniper Router M16 Juniper Router M20 Juniper Router M40 Juniper Router M5	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - Network Firewall STIG - Ver 8, Rel 25
Desktop Application Antispyware General (Version 4, Release 1)	McAfee Antispyware Enterprise Module 8.5 Symantec AntiVirus 10.1 Corporate Edition for Windows Vista Symantec AntiVirus 10.2 Corporate Edition for Windows Vista	Defense Information Systems Agency	04/15/2019	Prose - Desktop Application Antispyware General - Version 4, Release 1.
Google Chrome v24 Windows STIG (Version 1, Release 1)	Google Chrome 24.0.1272.0	Defense Information Systems Agency	04/15/2019	Machine-Readable Format - Google Chrome v23 Windows Benchmark - Version 1, Release 2 Standalone XCCDF 1.1.4 - Google Chrome v24 Windows STIG Version 1, Release 1
Microsoft Office 2007 STIG (Version 4, Release 1)	Microsoft Access 2007 Microsoft Excel 2007 Microsoft Infopath 2007 Microsoft Office 2007 Microsoft Outlook 2007 Microsoft PowerPoint 2007 Microsoft Visio 2007 Microsoft Word 2007	Defense Information Systems Agency	04/15/2019	SCAP 1.0 Content - Microsoft Access 2007 generated out of the GoldDisk Tool (version 2.9.8.84). SCAP 1.0 Content - Microsoft Excel 2007 generated out of the GoldDisk Tool (version 2.9.8.84). SCAP 1.0 Content - Microsoft Infopath 2007 generated out of the GoldDisk Tool (version 2.9.8.84). SCAP 1.0 Content - Microsoft Office System 2007 generated out of the GoldDisk Tool (version 2.9.8.84). SCAP 1.0 Content - Microsoft Outlook 2007 generated out of the GoldDisk Tool (version 2.9.8.84). SCAP 1.0 Content - Microsoft PowerPoint 2007 generated out of the GoldDisk Tool (version 2.9.8.84). SCAP 1.0 Content - Microsoft Visio 2007 generated out of the GoldDisk Tool (version 2.9.8.84). SCAP 1.0 Content - Microsoft Word 2007 generated out of the GoldDisk Tool (version 2.9.8.84).
Windows Server 2003 STIG (Version 6 Release 1.33)	Microsoft Internet Explorer Microsoft Windows Media Player Microsoft Windows Messenger Microsoft Windows Server 2003 Microsoft Windows Server 2003 Service Pack 1 Microsoft Windows Server 2003 Service Pack 2 Microsoft Windows Server 2003 Service Pack 3 NetMeeting	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - Windows 2003 STIG - Version 6, Release 1.33

* This checklist is still undergoing review for inclusion into the NCP.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Checklist Program

National Checklist Program

Checklist Repository