Checklist Repository
The National Checklist Program (NCP), defined by the NIST
SP 800-70, is the U.S. government repository of publicly available
security checklists (or benchmarks) that provide detailed low level
guidance on setting the security configuration of operating systems
and applications.
NCP provides metadata and links to checklists of various formats
including checklists that conform to the Security
Content Automation Protocol (SCAP). SCAP enables validated
security products to automatically perform configuration checking
using NCP checklists. For more information relating to the NCP please
visit the information page or
the glossary of terms.
Please note that the current search fields have been adjusted to
reflect NIST SP 800-70 Revision 4.
Search for Checklists using the fields below. The keyword
search will search across the name, and summary.
There are 787
matching records. Displaying matches 261 through 280.
| Name (Version) |
Target |
Authority |
Last Modified |
Resources |
| Project 2013 STIG (Version 1, Release 4) |
Microsoft Project 2013
|
Defense Information Systems Agency
|
02/07/2024 |
GPOs - Group Policy Objects (GPOs) - January 2024
Standalone XCCDF 1.1.4 - Microsoft Project 2013 STIG - Ver 1, Rel 4
|
| Excel 2013 STIG (Version 1, Release 7) |
Microsoft Excel 2013
|
Defense Information Systems Agency
|
02/07/2024 |
GPOs - Group Policy Objects (GPOs) - January 2024
Standalone XCCDF 1.1.4 - Microsoft Excel 2013 STIG - Ver 1, Rel 7
|
| Microsoft Outlook 2016 STIG (Version 2, Release 3) |
Microsoft Outlook 2016
|
Defense Information Systems Agency
|
02/07/2024 |
GPOs - Group Policy Objects (GPOs) - January 2024
Standalone XCCDF 1.1.4 - Microsoft Outlook 2016 STIG - Ver 2, Rel 3
|
| Microsoft Project 2016 STIG (Version 1, Release 2) |
Microsoft Project 2016
|
Defense Information Systems Agency
|
02/07/2024 |
GPOs - Group Policy Objects (GPOs) - January 2024
Standalone XCCDF 1.1.4 - Microsoft Project 2016 STIG - Ver 1, Rel 1
|
| Microsoft Excel 2016 STIG (Version 1, Release 3) |
Microsoft Excel 2016
|
Defense Information Systems Agency
|
02/07/2024 |
GPOs - Group Policy Objects (GPOs) - January 2024
Standalone XCCDF 1.1.4 - Microsoft Excel 2016 STIG - Ver 1, Rel 2
|
| Microsoft Outlook 2013 STIG (Version 1, Release 13) |
Microsoft Outlook 2013
|
Defense Information Systems Agency
|
02/07/2024 |
GPOs - Group Policy Objects (GPOs) - January 2024
Standalone XCCDF 1.1.4 - Microsoft Outlook 2013 STIG - Ver 1, Rel 13
|
| Apple iOS/iPadOS 17 STIG (Ver 1, Rel 1) |
Apple iOS 17.0
|
Defense Information Systems Agency
|
02/05/2024 |
Standalone XCCDF 1.1.4 - Apple iOS/iPadOS 17 BYOAD STIG
Standalone XCCDF 1.1.4 - Apple iOS/iPadOS 17 STIG - Ver 1, Rel 1
|
| F5 BIG-IP 11.x STIG (Y24M01) |
F5 BIG-IP Access Policy Manager (APM) 11.x STIG
|
Defense Information Systems Agency
|
01/30/2024 |
Standalone XCCDF 1.1.4 - F5 BIG-IP STIG
|
| EDB Postgres Advanced Server STIG (Ver 1, Rel 1) |
EDB Postgres Advanced Server
|
Defense Information Systems Agency
|
01/29/2024 |
Standalone XCCDF 1.1.4 - Sunset - EDB Postgres Advanced Server v9.6 STIG - Ver 2, Rel 3
Standalone XCCDF 1.1.4 - EDB Postgres Advanced Server STIG
|
| Juniper EX Series Switches STIG (Y24M01) |
Juniper EX2300
Juniper EX3400
Juniper EX4100
Juniper EX4300
Juniper EX4600
Juniper EX4650
Juniper EX9200
Juniper EX9250
|
Defense Information Systems Agency
|
01/29/2024 |
Standalone XCCDF 1.1.4 - Juniper EX Series Switches STIG
|
| zOS RACF STIG (Version 6, Release 58) |
IBM OS390
|
Defense Information Systems Agency
|
01/29/2024 |
Standalone XCCDF 1.1.4 - IBM zOS STIG
Standalone XCCDF 1.1.4 - z/OS RACF Products - Ver 6, Rel 59
|
| MarkLogic Server v9 STIG (Ver 2, Rel 2) |
MarkLogic Server v9
|
Defense Information Systems Agency
|
01/29/2024 |
Standalone XCCDF 1.1.4 - MarkLogic Server v9 STIG - Ver 2, Rel 2
|
| zOS TSS STIG (Version 6, Release 58) |
IBM OS390
|
Defense Information Systems Agency
|
01/29/2024 |
Standalone XCCDF 1.1.4 - IBM zOS STIG
Standalone XCCDF 1.1.4 - z/OS TSS Products - Ver 6, Rel 59
Standalone XCCDF 1.1.4 - z/OS SRR Scripts - Ver 6, Rel 59
|
| zOS ACF2 STIG (Version 6, Release 58) |
IBM OS390
|
Defense Information Systems Agency
|
01/29/2024 |
Standalone XCCDF 1.1.4 - IBM zOS STIG
Standalone XCCDF 1.1.4 - z/OS ACF2 Products - Ver 6, Rel 59
Standalone XCCDF 1.1.4 - z/OS SRR Scripts - Ver 6, Rel 59
|
| BlackBerry CylancePROTECT Mobile for UEM STIG (Ver 1, Rel 2) |
Blackberry CylancePROTECT Mobile for UEM
|
Defense Information Systems Agency
|
01/29/2024 |
Standalone XCCDF 1.1.4 - BlackBerry CylancePROTECT Mobile for UEM STIG - Ver 1, Rel 2
|
| TOSS 4 STIG Benchmark (Ver 1, Rel 3) |
Tri-Lab Operating System Stack (TOSS)
|
Defense Information Systems Agency
|
01/26/2024 |
SCAP 1.2 Content - TOSS 4 STIG Benchmark - Ver 1, Rel 3
|
| VMware vSphere 7.0 STIG (Y24M01) |
VMware vSphere 7.0
|
Defense Information Systems Agency
|
01/26/2024 |
Standalone XCCDF 1.1.4 - VMware vSphere 7.0 STIG
|
| MariaDB Enterprise 10.x STIG (Ver 1, Rel 3) |
MariaDB Enterprise Server 10.x
|
Defense Information Systems Agency
|
01/26/2024 |
Standalone XCCDF 1.1.4 - MariaDB Enterprise 10.x STIG - Ver 1, Rel 3
|
| Palo Alto Networks Network Device Management (NDM) STIG (Y22M10) |
Palo Alto Networks Network Device Management (NDM)
|
Defense Information Systems Agency
|
01/26/2024 |
Standalone XCCDF 1.1.4 - Palo Alto Networks STIG
|
| Cisco ISE STIG (Y24M01) |
Cisco Identity Services Engine
|
Defense Information Systems Agency
|
01/26/2024 |
Standalone XCCDF 1.1.4 - Cisco ISE STIG
|
* This checklist is still undergoing review for
inclusion into the NCP.
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
