U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

Checklist Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.
Please note that the current search fields have been adjusted to reflect NIST SP 800-70 Revision 4.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

There are 829 matching records. Displaying matches 784 through 803.

Name (Version) Target Authority Last Modified Resources
CIS Windows 2003 Server Member Server Benchmark (v2.0.0) Microsoft Windows Server 2003
 Center for Internet Security (CIS)
 02/23/2024 Prose - CIS Windows 2003 Server Member Server Benchmark v2.0.0
CIS Windows XP Professional Benchmark (v3.1.0) Microsoft Windows XP Professional
 Center for Internet Security (CIS)
 09/19/2022 Prose - CIS Windows XP Professional Benchmark v3.1.0
CIS Wireless Networks Apple Hardware addendum (v1.0.0) Apple Airport Extreme 4.0.8
 Center for Internet Security (CIS)
 12/20/2019 Prose - CIS Wireless Networks Apple Hardware addendum v1.0.0
CIS Wireless Networks Cisco Hardware addendum (v1.0.0) Cisco Aironet 1200 Access Point
 Center for Internet Security (CIS)
 12/20/2019 Prose - CIS Wireless Networks Cisco Hardware addendum v1.0.0
CIS Wireless Networks DLink Hardware addendum (V1.0.0) D-Link DI-624 2.42
 Center for Internet Security (CIS)
 12/20/2019 Prose - CIS Wireless Networks DLink Hardware addendum v1.0.0
CIS Wireless Networks Linksys Hardware addendum (v1.0.0) Linksys WRT54G 3.0.1.3
 Center for Internet Security (CIS)
 12/20/2019 Prose - CIS Wireless Networks Linksys Hardware addendum v1.0.0
CIS Xen 3.2 Benchmark (v1.0.0) Xen Virtualization Server 3.2.0
 Center for Internet Security (CIS)
 08/31/2023 Prose - CIS Xen 3.2 Benchmark v1.0.0
CIS Zoom Benchmark (1.0.0) Zoom
 Center for Internet Security (CIS)
 04/18/2024 Prose - CIS Zoom Benchmark v1.0.0
Cisco IOS Switch Security Configuration Guide (v1.0) Cisco Catalyst OS
Cisco IOS
 National Security Agency
 10/24/2018 Prose - Cisco IOS Switch Security Configuration Guide
Citrix XenApp STIG (Version 1, Release 1.4) Citrix Presentation Server
Citrix XenApp 5.0
Citrix XenApp Server 4.5
 Defense Information Systems Agency
 09/12/2019 Prose - Sunset - Citrix XenApp STIG - Ver 1, Rel 1.4
Database Security Checklist for MS SQL Server 2005 (Ver 8, Rel 1.9) Microsoft SQL Server 2000
Microsoft SQL Server 2005
Microsoft SQL Server 7.0
 Defense Information Systems Agency
 09/11/2019 Prose - Sunset - Microsoft SQL Server 2005 STIG - Ver 8, Rel 1.9
Desktop Application Antispyware General (Version 4, Release 1) McAfee Antispyware Enterprise Module 8.5
Symantec AntiVirus 10.1 Corporate Edition for Windows Vista
Symantec AntiVirus 10.2 Corporate Edition for Windows Vista
 Defense Information Systems Agency
 04/15/2019 Prose - Desktop Application Antispyware General - Version 4, Release 1.
DoD - Microsoft Internet Explorer 9 Settings (31May2011) Microsoft Internet Explorer 9
 Department of Defense
 03/12/2020 Prose - Microsoft Internet Explorer - Final Draft DoD Internet Explorer 9 Settings
DoD Consensus Security Configuration Checklist for Apple Mac OS 10.5 (Leopard) (1.0) Apple Mac OS X 10.5
 Department of Defense
 03/12/2020 Prose - Apple Mac OS 10.5 security recommendations
DoD Consensus Security Configuration Checklist for Microsoft IE 8 (1.0) Microsoft Internet Explorer 8
 Department of Defense
 03/12/2020 Prose - D0D IE 8 security recommendations
DoD Consensus Security Configuration Checklist for Microsoft Windows 7 (1.0) Microsoft Windows 7
 Department of Defense
 09/19/2022 Prose - DOD Windows 7 security recommendations
Enterprise Resource Planning (ERP) Checklist STIG (Version 1 Release 1.1) Microsoft Windows Server 2003
 Defense Information Systems Agency
 04/15/2019 Prose - Enterprise Resource Planning (ERP) Checklist - Version 1, Release 1.1
Prose - Enterprise Resource Planning (ERP) STIG - Version 1, Release 1
Enterprise System Management (ESM) STIG (Version 1, Release 1) Microsoft Systems Management Server 2003
 Defense Information Systems Agency
 04/15/2019 Prose - Enterprise System Management (ESM) STIG - Version 1 Release 1
Exchange 2010 Overview (Version 1, Release 6) Microsoft Exchange Server 2010
 Defense Information Systems Agency
 03/07/2024 Prose - Microsoft Exchange 2010 Overview - Ver 1, Rel 6
Google Cloud Platform Foundations Benchmark (3.0.0) Google Cloud Platform
 Center for Internet Security (CIS)
 05/07/2024 Prose - Google Cloud Platform Foundations Benchmark
* This checklist is still undergoing review for inclusion into the NCP.