NCP

Checklist Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.
Please note that the current search fields have been adjusted to reflect NIST SP 800-70 Revision 4.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

Checklist Type:

Authority:

Target:

Order By:

Content Type:

Tool Compatibility:

Keyword:

There are 805 matching records. Displaying matches 81 through 100.

Name (Version)	Target	Authority	Last Modified	Resources
Mozilla Firefox STIG (Version 6, Release 5)	Mozilla Firefox	Defense Information Systems Agency	08/27/2024	SCAP 1.2 Content - Mozilla Firefox Linux STIG Benchmark - Ver 6, Rel 4 SCAP 1.2 Content - Mozilla Firefox Windows STIG Benchmark - Ver 6, Rel 5 Automated Content - SCC 5.10 Windows Automated Content - SCC 5.10 RHEL 7/Oracle Linux 7/SLES12/SLES 15 x86 64 Automated Content - SCC 5.10 RHEL 8/Oracle Linux 8 Aarch64 Automated Content - SCC 5.10 RHEL 8/Oracle Linux 8 x86 64 Automated Content - SCC 5.10 RHEL 9 x86 64 Standalone XCCDF 1.1.4 - Mozilla Firefox STIG - Ver 6, Rel 5
Internet Explorer 11 STIG (Ver 2, Rel 5)	Microsoft Internet Explorer 11	Defense Information Systems Agency	08/27/2024	SCAP 1.2 Content - Microsoft Internet Explorer 11 STIG Benchmark - Ver 2, Rel 6 Automated Content - SCC 5.10 Windows GPOs - Group Policy Objects (GPOs) - April 2024 Standalone XCCDF 1.1.4 - Microsoft Internet Explorer 11 STIG - Ver 2, Rel 5
Microsoft .NET Framework 4 (Version 2, Release 4)	Microsoft .NET Framework 4.0	Defense Information Systems Agency	08/27/2024	SCAP 1.2 Content - Microsoft .NET Framework 4 STIG Benchmark - Ver 2, Rel 2 Automated Content - SCC 5.10 Windows Standalone XCCDF 1.1.4 - Microsoft .Net Framework 4.0 STIG - Ver 2, Rel 4
Adobe Acrobat Reader DC Continuous Track STIG (Ver 2, Rel 2)	Adobe Acrobat Reader	Defense Information Systems Agency	08/27/2024	SCAP 1.2 Content - Adobe Acrobat Reader DC Continuous Track STIG Benchmark - Ver 2, Rel 2 Automated Content - SCC 5.10 Windows GPOs - Group Policy Objects (GPOs) - April 2024 Standalone XCCDF 1.1.4 - Adobe Acrobat Reader DC Continuous Track STIG - Ver 2, Rel 1
Windows Firewall STIG and Advanced Security STIG (Ver 2, Rel 2)	windows firewall	Defense Information Systems Agency	08/27/2024	SCAP 1.2 Content - Microsoft Windows Defender Firewall with Advanced Security STIG Benchmark - Ver 2, Rel 3 Automated Content - SCC 5.10 Windows GPOs - Group Policy Objects (GPOs) - April 2024 Standalone XCCDF 1.1.4 - Microsoft Windows Defender Firewall with Advanced Security STIG - Ver 2, Rel 2
Microsoft Windows Defender Antivirus STIG (Ver 2, Rel 5)	Microsoft Windows Defender	Defense Information Systems Agency	08/27/2024	SCAP 1.2 Content - Microsoft Defender Antivirus STIG Benchmark - Ver 2, Rel 5 SCAP 1.2 Content - Microsoft Windows Defender Firewall with Advanced Security STIG Benchmark - Ver 2, Rel 3 Automated Content - SCC 5.10 Windows GPOs - Group Policy Objects (GPOs) - April 2024 Standalone XCCDF 1.1.4 - Microsoft Defender Antivirus STIG - Ver 2, Rel 4 Standalone XCCDF 1.1.4 - Microsoft Windows Defender Firewall with Advanced Security STIG - Ver 2, Rel 2
Microsoft Windows Server 2019 (Ver 3, Rel 1)	Microsoft Windows Server 2019	Defense Information Systems Agency	08/27/2024	SCAP 1.3 Content - Microsoft Windows Server 2019 STIG Benchmark - Ver 3, Rel 1 SCAP 1.2 Content - Microsoft Windows Server 2019 STIG Benchmark - Ver 2, Rel 5 Automated Content - SCC 5.10 Windows GPOs - Group Policy Objects (GPOs) - April 2024 Machine-Readable Format - Microsoft Windows Server 2019 STIG for Chef - Ver 1, Rel 2 Standalone XCCDF 1.1.4 - Microsoft Windows Server 2019 STIG - Ver 3, Rel 1
VMware NSX STIG (Version 1)	VMware NSX	Defense Information Systems Agency	08/27/2024	Standalone XCCDF 1.1.4 - VMware NSX 4.x STIG Standalone XCCDF 1.1.4 - VMware NSX Distributed Logical Router STIG, Ver 1 Standalone XCCDF 1.1.4 - VMware NSX Manager STIG, Ver 1
Vanguard Compliance Manager z/OS RACF Checklist for completing a automated SRR Audit for Stig (6.44/71,6.45/72 and 6.46/73)	IBM z/OS Version 2, Release 5	Vanguard Integrity Professionals, Inc.	08/27/2024	ZIP - Vanguard z/OS RACF Checklist 6.44-6.46/7.1-7.3(For Z/OS V2R4 release)
ForeScout CounterACT STIG (Version 2)	ForeScout CounterACT ALG ForeScout CounterACT NDM	Defense Information Systems Agency	08/21/2024	Standalone XCCDF 1.1.4 - Sunset - ForeScout CounterACT ALG STIG - Ver 1, Rel 3 Standalone XCCDF 1.1.4 - Sunset - ForeScout CounterACT NDM STIG Ver 1, Rel 2
Red Hat 7 STIG (Ver 3, Rel 15)	Red Hat Enterprise Linux 7.0	Defense Information Systems Agency	08/21/2024	SCAP 1.3 Content - Red Hat Enterprise Linux 7 STIG Benchmark - Ver 3, Rel 15 SCAP 1.2 Content - Sunset - Red Hat Enterprise Linux 7 STIG Benchmark - Ver 3, Rel 14 Automated Content - SCC 5.10 RHEL 7/Oracle Linux 7/SLES12/SLES 15 x86 64 Automated Content - SCC 5.10 RHEL 8/Oracle Linux 8 Aarch64 Automated Content - SCC 5.10 RHEL 8/Oracle Linux 8 x86 64 Automated Content - SCC 5.10 RHEL 9 x86 64 Standalone XCCDF 1.1.4 - Red Hat Enterprise Linux 7 STIG for Ansible - Ver 3, Rel 14 Standalone XCCDF 1.1.4 - Sunset - Red Hat Enterprise Linux 7 STIG - Ver 3, Rel 15 Standalone XCCDF 1.1.4 - Red Hat Enterprise Linux 7 STIG for Chef - Ver 3, Rel 8
TOSS 4 STIG Benchmark (Ver 2, Rel 1)	Tri-Lab Operating System Stack (TOSS)	Defense Information Systems Agency	08/21/2024	SCAP 1.3 Content - TOSS 4 STIG Benchmark - Ver 2, Rel 1 SCAP 1.2 Content - Sunset - TOSS 4 STIG Benchmark - Ver 1, Rel 3 Standalone XCCDF 1.1.4 - Tri-Lab Operating System Stack (TOSS) 4 STIG - Ver 2, Rel 1
Oracle 11.2g Database STIG (Version 2, Release 4)	Oracle Database 11g 11.2	Defense Information Systems Agency	08/21/2024	Standalone XCCDF 1.1.4 - Oracle Database 11.2g STIG - Ver 2, Rel 4
Project 2013 STIG (Version 1, Release 5)	Microsoft Project 2013	Defense Information Systems Agency	08/20/2024	Standalone XCCDF 1.1.4 - Sunset - Microsoft Project 2013 STIG - Ver 1, Rel 5
Motorola Solutions Android 11 (Ver 1, Rel 3)	Google Android 11.0	Defense Information Systems Agency	08/20/2024	Standalone XCCDF 1.1.4 - Sunset - Motorola Solutions Android 11 STIG - Ver 1, Rel 3
Microsoft Word 2010 STIG (Ver 1, Rel 12)	Microsoft Word 2010	Defense Information Systems Agency	08/20/2024	Standalone XCCDF 1.1.4 - Sunset - Microsoft Word 2010 STIG - Ver 1, Rel 12
Docker Enterprise 2.x Linux/UNIX STIG (Ver 2 Rel 2)	Docker Enterprise 2.0.0	Defense Information Systems Agency	08/20/2024	Machine-Readable Format - Docker Enterprise 2.x Linux/Unix STIG for Ansible - Ver 1, Rel 1 Standalone XCCDF 1.1.4 - Docker Enterprise 2.x Linux/Unix - Ver 2, Rel 1 Standalone XCCDF 1.1.4 - Sunset - Docker Enterprise 2.x Linux/Unix STIG - Ver 2, Rel 2
Canonical Ubuntu 18.04 LTS for Ansible (Version 2, Release 13)	Canonical Ubuntu 18.04 LTS for Ansible	Defense Information Systems Agency	08/15/2024	Automated Content - SCC 5.10 Ubuntu 18/20 AMD64 Automated Content - SCC 5.10 Ubuntu 20/Raspios-bulleye Aarch64 Standalone XCCDF 1.1.4 - Sunset - Canonical Ubuntu 18.04 LTS STIG for Ansible - Ver 2, Rel 13
Canonical Ubuntu 18.04 LTS STIG (Ver 2, Rel 15)	Canonical Ubuntu Linux 18.04 LTS	Defense Information Systems Agency	08/15/2024	SCAP 1.3 Content - Sunset - Canonical Ubuntu 18.04 LTS STIG Benchmark - Ver 2, Rel 12 SCAP 1.2 Content - Sunset - Canonical Ubuntu 18.04 LTS STIG Benchmark - Ver 2, Rel 11 Automated Content - SCC 5.10 Ubuntu 18/20 AMD64 Automated Content - SCC 5.10 Ubuntu 20/Raspios-bulleye Aarch64 Standalone XCCDF 1.1.4 - Sunset - Canonical Ubuntu 18.04 LTS STIG - Ver 2, Rel 15
Samsung Android 11 Knox 3.x (Ver 1, Rel 1)	Google Android 11.0	Defense Information Systems Agency	08/15/2024	Standalone XCCDF 1.1.4 - Sunset - Samsung Android 11 Knox 3.x STIG

* This checklist is still undergoing review for inclusion into the NCP.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Checklist Program

National Checklist Program

Checklist Repository