National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

National Checklist Program Repository

The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.

NCP provides metadata and links to checklists of various formats including checklists that conform to the Security Content Automation Protocol (SCAP). SCAP enables validated security products to automatically perform configuration checking using NCP checklists. For more information relating to the NCP please visit the information page or the glossary of terms.
Please note that the current search fields have been adjusted to reflect NIST SP 800-70 Revision 4.

Search for Checklists using the fields below. The keyword search will search across the name, and summary.

There are 559 matching records. Displaying matches 181 through 200.


Name (Version) Target Product Category Authority Last Modified Resources
Good for Enterprise 8.x STIG (Version 1, Release 1) Mobile Device Manager for the Blackberry Enterprise Server Mobile Solution Defense Information Systems Agency 11/13/2017 Standalone XCCDF 1.1.4 - Good for Enterprise 8.x STIG - Version 1, Release 1
Google Search Appliance STIG (Version 1, Release 1) Google Search Appliance Enterprise Application Defense Information Systems Agency 04/30/2018 Standalone XCCDF 1.1.4 - Google Search Appliance STIG
HP FlexFabric Switch Router STIG (1.0) HP FlexFabric Defense Information Systems Agency 02/19/2019 Standalone XCCDF 1.1.4 - HP FlexFabric Switch Layer 2 Switch STIG, Ver 1, Rel 2
Standalone XCCDF 1.1.4 - HP FlexFabric Switch Network Device Management STIG, Version 1
Standalone XCCDF 1.1.4 - HP FlexFabric Switch Router STIG, Version 1
HPE 3PAR StoreServ 3.2.x STIG (version 1, release 3) HPE 3PAR StoreServ 3.2.x Server Defense Information Systems Agency 08/02/2017 Standalone XCCDF 1.1.4 - HPE 3PAR StoreServ 3.2.x STIG - Ver 1, Rel 3
IBM DataPower STIG (Ver 1, Rel 2) IBM DataPower Network Router Defense Information Systems Agency 12/02/2017 Standalone XCCDF 1.1.4 - IBM DataPower NDM STIG - Ver 1, Rel 2
Standalone XCCDF 1.1.4 - IBM DataPower STIG ALG STIG Version 1
IBM DB2 V10-5 LUW STIG (Ver 1, Rel 3) IBM DB2 V10-5 for Linux, Unix, and Windows (LUW) Database Management System Defense Information Systems Agency 11/26/2018 Standalone XCCDF 1.1.4 - IBM DB2 V10.5 LUW STIG - Ver 1, Rel 3
IBM Hardware Management Console (HMC) STIG (Version 1, Release 5) IBM z/OS Version 1 Release 10
IBM z/OS Version 1 Release 11
IBM z/OS Version 1 Release 12
Operating System Defense Information Systems Agency 01/24/2018 Standalone XCCDF 1.1.4 - IBM Hardware Management Console (HMC) STIG - Ver 1, Rel 5
IBM MaaS360 MDM STIG (Ver 1, Rel 2) IBM MaaS360 MDM Defense Information Systems Agency 11/26/2018 Standalone XCCDF 1.1.4 - IBM MaaS360 V2.3.x MDM STIG - Ver 1, Rel 2
IBM MQ Appliance v9-0 STIG (V1) IBM MQ Appliance v9-0 Application Server Defense Information Systems Agency 08/29/2017 Standalone XCCDF 1.1.4 - IBM MQ Appliance v9-0 AS STIG V1
Standalone XCCDF 1.1.4 - IBM MQ Appliance v9-0 NDM STIG V1
IBM WebSphere Traditional V9.x STIG (1.0) IBM WebSphere Application Server traditional V9 Application Server Defense Information Systems Agency 10/15/2018 Standalone XCCDF 1.1.4 - IBM WebSphere Traditional V9.x STIG Version 1
IBM zVM Using CA VMSecure STIG (Ver 1, Rel 2) IBM zVM Using CA VMSecure Virtual Machine Defense Information Systems Agency 05/25/2018 Standalone XCCDF 1.1.4 - IBM zVM using CA VMSecure STIG - Ver 1, Rel 2
IIS 6.0 STIG (Version 6, Release 16) Microsoft Internet Information Services 6.0 Web Server Defense Information Systems Agency 08/03/2017 Standalone XCCDF 1.1.4 - IIS 6.0 STIG - Version 6, Release 16
Infoblox 7.x Domain Name System (DNS) STIG (Version 1, Release 6) Infoblox 7.x Domain Name System (DNS) DNS Server Defense Information Systems Agency 11/26/2018 Standalone XCCDF 1.1.4 - Infoblox 7.x DNS STIG - Ver 1, Rel 6
Internet Explorer 7 STIG (Version 4, Release 19) Microsoft Internet Explorer 7 Web Browser Defense Information Systems Agency 08/15/2017 Standalone XCCDF 1.1.4 - Internet Explorer 7 STIG - Version 4, Release 19
IPSEC VPN Gateway STIG (Version 1, Release 16) Juniper IDP Series Intrusion Detection and Prevention Appliance
Juniper ISG Series Integrated Security Gateway
Intrusion Detection System
Security Server
Defense Information Systems Agency 02/19/2019 Standalone XCCDF 1.1.4 - IPSEC VPN Gateway STIG - Ver 1, Rel 16
Java Runtime Environment (JRE) 6 (Version 1, Release 5) Sun JRE 1.6.0 Desktop Application Defense Information Systems Agency 08/15/2017 Standalone XCCDF 1.1.4 - Java Runtime Environment (JRE) 6, Version 1, Release 5
Java Runtime Environment (JRE) 7 (Version 1, Release 5) Oracle Java Runtime Environment (JRE) 1.7.0 Desktop Application Defense Information Systems Agency 08/15/2017 Standalone XCCDF 1.1.4 - Java Runtime Environment (JRE) 7 - Version 1, Release 5
Juniper Router STIG (Version 1) Juniper JunOS Defense Information Systems Agency 02/01/2019 Standalone XCCDF 1.1.4 - Juniper Router NDM STIG Version 1
Standalone XCCDF 1.1.4 - Juniper Router RTR STIG Version 1
Juniper SRX Services Gateway (SG) STIG (Ver 1, Rel 2) Juniper SRX Services Gateway (SG) Network Router Defense Information Systems Agency 05/25/2018 Standalone XCCDF 1.1.4 - Juniper SRX Services Gateway (SG) Application Layer Gateway (ALG) STIG - Ver 1, Rel 3
Standalone XCCDF 1.1.4 - Juniper SRX Services Gateway (SG) Intrusion Detection and Prevention System (IDPS) STIG - Ver 1, Rel 2
Standalone XCCDF 1.1.4 - Juniper SRX Services Gateway (SG) Network Device Management (NDM) STIG, Ver 1, Rel 2
Standalone XCCDF 1.1.4 - Juniper SRX Services Gateway (SG) Virtual Private Network (VPN) STIG - Ver 1, Rel 2
Keyboard Video and Mouse Switch STIG (Version 2, Release 6) Dell KVM 2161DS_2 Peripheral Device Defense Information Systems Agency 08/15/2017 Standalone XCCDF 1.1.4 - Keyboard Video and Mouse Switch STIG - Ver 2, Rel 6
* This checklist is still undergoing review for inclusion into the NCP.