NCP

Checklist Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.
Please note that the current search fields have been adjusted to reflect NIST SP 800-70 Revision 4.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

Checklist Type:

Authority:

Target:

Order By:

Content Type:

Tool Compatibility:

Keyword:

There are 829 matching records. Displaying matches 441 through 460.

Name (Version)	Target	Authority	Last Modified	Resources
VMWare Workspace ONE UEM STIG (Ver 2, Rel 1)	Workspace ONE Unified Endpoint Management	Defense Information Systems Agency	08/13/2024	Standalone XCCDF 1.1.4 - Sunset - VMware Workspace ONE UEM STIG - Ver 2, Rel 2
Web Policy STIG (Version 1, Release 1)	Apache HTTP Server 1.3 Apache HTTP Server 2.0 Apache HTTP Server 2.2 Microsoft Internet Information Services	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Web Policy STIG - Ver 1, Rel 1
Windows Mobile 6-5 STIG (Version 1, Release 2)	Good Domino Mobile Control (GMC) Server 1.0.3 Good Domino Mobile Messaging (GMM) Server 6.0.3 Good Domino Mobile Messaging Client 6.0.1 Microsoft Windows Phone 6.5	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - Windows Mobile 6-5 STIG Version 1, Release 2
Windows Server 2003 STIG (Version 6 Release 1.33)	Microsoft Internet Explorer Microsoft Windows Media Player Microsoft Windows Messenger Microsoft Windows Server 2003 Microsoft Windows Server 2003 Service Pack 1 Microsoft Windows Server 2003 Service Pack 2 Microsoft Windows Server 2003 Service Pack 3 NetMeeting	Defense Information Systems Agency	04/15/2019	Standalone XCCDF 1.1.4 - Windows 2003 STIG - Version 6, Release 1.33
Windows Server 2022 STIG with Ansible (Ver 1, Rel 1)	Microsoft Windows Server 2022	Defense Information Systems Agency	04/13/2023	Standalone XCCDF 1.1.4 - Windows Server 2022 STIG with Ansible - Ver 1, Rel 1
Windows XP Symantec Virus Scan (Version 1.1)	Microsoft Windows XP Pro SP2 Symantec Antivirus	Defense Information Systems Agency	01/16/2020	Standalone XCCDF 1.1.4 - Symantec Antivirus running on Windows XP Pro SP2.
Word 2007 STIG (Version 4, Release 15)	Microsoft Word 2007	Defense Information Systems Agency	09/11/2019	Standalone XCCDF 1.1.4 - Sunset - Microsoft Word 2007 STIG - Ver 4, Rel 15
Xylok Security Suite 20.x STIG (Ver 1, Rel 1)	Xylok Security Suite	Defense Information Systems Agency	03/24/2025	Standalone XCCDF 1.1.4 - Xylok Security Suite 20.x STIG - Ver 1, Rel 1
z/OS ACF2 STIG (Y25M04)	IBM z/OS	Defense Information Systems Agency	04/09/2025	Standalone XCCDF 1.1.4 - IBM z/OS STIG Standalone XCCDF 1.1.4 - z/OS ACF2 Products
z/OS RACF STIG (Y25M04)	IBM z/OS	Defense Information Systems Agency	04/09/2025	Standalone XCCDF 1.1.4 - IBM z/OS STIG Standalone XCCDF 1.1.4 - z/OS RACF Products Standalone XCCDF 1.1.4 - z/OS SRR Scripts
z/OS TSS STIG (Y25M04)	IBM z/OS	Defense Information Systems Agency	04/09/2025	Standalone XCCDF 1.1.4 - IBM z/OS STIG Standalone XCCDF 1.1.4 - z/OS TSS Products STIG Standalone XCCDF 1.1.4 - z/OS SRR Scripts
Zebra Android 10 STIG (Y22M10)	Google Android 10.0	Defense Information Systems Agency	10/26/2022	Standalone XCCDF 1.1.4 - Sunset - Zebra Android 10 STIG
Zebra Android 11 COBO STIG (Ver 1, Rel 3)	Google Android 11.0	Defense Information Systems Agency	10/26/2023	Standalone XCCDF 1.1.4 - Zebra Android 11 COBO STIG - Ver 1, Rel 3
Zebra Android 13 STIG (Y24M12)	Google Android 13	Defense Information Systems Agency	03/24/2025	Standalone XCCDF 1.1.4 - Zebra Android 13 STIG
Bromium Secure Platform Secure Configuation Checklist (4.0)	Bromium Secure Platform 4.0	Bromium	05/19/2020	ZIP - Bromium Secure Checklist Policy Prose - Bromium Secure Configuration Checklist
iOS/iPadOS 16 Guidance (Revision 3.0)	Apple iOS/iPadOS 16	NIST, macOS Security Compliance Project	09/16/2024	ZIP - iOS/iPadOS 16 Guidance, Revision 3.0
iOS/iPadOS 17 Guidance (Revision 3.0)	Apple iOS 17.0	NIST, macOS Security Compliance Project	09/16/2024	ZIP - iOS/iPadOS 17 Guidance, Revision 3
iOS/iPadOS 18 Guidance (Revision 1.1)	Apple iPhone OS 18.0	NIST, macOS Security Compliance Project	12/19/2024	ZIP - iOS/iPadOS 18 Guidance, Revision 1.1
Vanguard Compliance Manager z/OS RACF ACF2 TSS Checklist for completing a manual SRR Audit for Stig (6.43)	IBM z/OS Version 2, Release 2 IBM z/OS Version 2, Release 3 IBM z/OS Version 2, Release 4 IBM z/OS Version 2, Release 5	Vanguard Integrity Professionals, Inc.	11/24/2021	ZIP - Vanguard z/OS RACF Checklist 6.43 PDF version ZIP - Vanguard z/OS RACF Checklist 6.43 XML version ZIP - Vanguard z/OS RACF Checklist 6.43 PDF version for ACF2 ZIP - Vanguard z/OS RACF Checklist 6.43 PDF version for TSS ZIP - Vanguard z/OS RACF Checklist 6.43 XML version for ACF2 ZIP - Vanguard z/OS RACF Checklist 6.43 XML version for TSS
Vanguard Compliance Manager z/OS RACF Checklist for completing a automated SRR Audit for Stig (6.43)	IBM z/OS Version 2, Release 2 IBM z/OS Version 2, Release 3 IBM z/OS Version 2, Release 4 IBM z/OS Version 2, Release 5	Vanguard Integrity Professionals, Inc.	11/24/2021	ZIP - Vanguard z/OS RACF Checklist 6.43(For Z/OS V2R2 release) ZIP - Vanguard z/OS RACF Checklist 6.43(For Z/OS V2R3 release) ZIP - Vanguard z/OS RACF Checklist 6.43(For Z/OS V2R4 release)

* This checklist is still undergoing review for inclusion into the NCP.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Checklist Program

National Checklist Program

Checklist Repository