DISA has released the following updated Security Guidance, Security Readiness Review Scripts and Benchmarks

DISA has released the following updated Security Guidance, Security Readiness Review Scripts and Benchmarks:

Unclassified SRGs:  http://iase.disa.mil/stigs/srgs/Pages/index.aspx

Database SRG Ver 2, Rel 3
General Purpose Operating System SRG Ver 1, Rel 3
Network Device Management SRG Ver 2, Rel 4

Unclassified Application STIGs/SRGs:  http://iase.disa.mil/stigs/app-security/Pages/index.aspx

Access 2007 STIG Ver 4, Rel 13
Exchange 2010 Client Access STIG Ver 1, Rel 8
Exchange 2010 Edge STIG Ver 1, Rel 11
Exchange 2010 Hub STIG Ver 1, Rel 11
Exchange 2010 Mailbox STIG Ver 1, Rel 7
Exchange 2010 Overview Ver 1, Rel 6
Internet Explorer 10 STIG Ver 1, Rel 12
Internet Explorer 11 STIG Ver 1, Rel 7
McAfee Virus Scan 8.8 Local Client STIG Ver 5, Rel 8
McAfee Virus Scan 8.8 Managed Client STIG Ver 5, Rel 9
Mozilla Firefox STIG Ver 4, Rel 14
Oracle 11.2g Database STIG Ver 1, Rel 6
Oracle 12c Database STIG Ver 1, Rel 2
Oracle 11g Database STIG Ver 8, Rel 16
Outlook 2013 STIG Ver 1, Rel 6
SQL Server 2012 STIG Ver 1, Rel 9

Unclassified Mobility ISCG:  http://iase.disa.mil/stigs/mobility/Pages/index.aspx

Apple iOS 9 ISCG Ver 1, Rel 2

Unclassified Network STIGs:  http://iase.disa.mil/stigs/net_perimeter/Pages/index.aspx

CISCO CS DNS STIG Ver 4, Rel 18
DNS Policy STIG Ver 4, Rel 17
Enclave Test and Development STIG Ver 1, Rel 3
Harris SecNet 11/54 STIG Ver 6, Rel 9
Keyboard Video and Mouse Switch STIG Ver 2, Rel 6
MultiFunction Device and Network Printers STIG Ver 2, Rel 8
Network WLAN STIG Ver 6, Rel 11
Network WMAN STIG Ver 6, Rel 10
Network Perimeter Router L3 Switch STIG Ver 8, Rel 22
Video Tele-Conference Services Policy STIG Ver 1, Rel 8
Video Tele-Conference STIG Ver 1, Rel 6
Voice and Video over Internet Protocol (VVoIP) Policy STIG Ver 3, Rel 8
Voice and Video over Internet Protocol (VVoIP) STIG Ver 3, Rel 8
Windows Server 2012 DNS STIG Ver 1, Rel 3

Unclassified Operating System STIGs: http://iase.disa.mil/stigs/os/Pages/index.aspx

AIX 6.1 STIG Ver 1, Rel 6
ESXi 5 Virtual Machine STIG Ver 1, Rel 6
HP-UX 11.31 Manual STIG Ver 1, Rel 9
Oracle Linux 5 Manual STIG Ver 1, Rel 5
Oracle Linux 6 Manual STIG Ver 1, Rel 5
Red Hat 5 Manual STIG Ver 1, Rel 13
Red Hat 6 STIG Ver 1, Rel 10
Solaris 10 SPARC Manual STIG Ver 1, Rel 13
Solaris 10 x86 Manual STIG Ver 1, Rel 13
Solaris 11 SPARC Manual STIG Ver 1, Rel 6
Solaris 11 x86 Manul STIG Ver 1, Rel 6
SUSE Linux Enterprise Server (SLES) v11 for System z STIG Ver 1, Rel 7
Windows 8/8.1 STIG Ver 1, Rel 12
zOS ACF2 STIG Ver 6, Rel 26
zOS RACF STIG Ver 6, Rel 26
zOS TSS STIG Ver 6, Rel 26

FOUO Cross Domain Solution:  http://iase.disa.mil/stigs/cds/Pages/index.aspx
NOTE:  DoD PKI Certificate Required

JVAP Administrative STIG Ver 3, Rel 17

FOUO HBSS: http://iase.disa.mil/stigs/hbss/Pages/index.aspx
NOTE: DoD PKI Certificate Required

HBSS Agent Handler STIG  Ver 1, Rel 7
HBSS ePO 4.5 Site STIG Ver 4, Rel 15
HBSS ePO 4.6 STIG Ver 4, Rel 16
HBSS ePO 5.1 STIG Ver 1, Rel 7
HBSS HIP 8 STIG Ver 4, Rel 14
HBSS HIP STIG Ver 4, Rel 10

FOUO Network Perimeter:  http://iase.disa.mil/stigs/net_perimeter/Pages/index.aspx
NOTE:  DoD PKI Certificate Required

DoD Internet-NIPRNet DMZ STIG Ver 3, Rel 2

Benchmarks: http://iase.disa.mil/stigs/scap/Pages/index.aspx

AIX 6.1 STIG Benchmark Ver 1, Rel 6
HP-UX 11.31 STIG Benchmark Ver 1 Rel 10
Internet Explorer 10 STIG Benchmark Ver 1, Rel 7
Outlook 2013 STIG Benchmark Ver 1, Rel 3
Red Hat 5 STIG Benchmark Ver 1, Rel 14
Red Hat 6 STIG Benchmark Ver 1, Rel 10
Solaris 10 SPARC STIG Benchmark Ver 1, Rel 13
Solaris 10 x86 STIG Benchmark Ver 1, Rel 13
Windows 2008 R2 MS STIG Benchmark Ver 1, Rel 20
Windows 8/8.1 Benchmark Ver 1, Rel 13

STIGs no longer supported:  http://iase.disa.mil/stigs/sunset/Pages/index.aspx

AirWatch MDM STIG Ver 1, Rel 3
Windows DNS STIG Ver 4, Rel 1.19 (NOTE:  This STIG was based on Windows 2003 Operating System)
HP-UX 11.23 Manual STIG Ver 1, Rel 8

About Bruce Brown

I have done a lot of work with Risk Management Framework for DoD IT (formerly DIACAP,DITSCAP). I noticed there was not a lot of information for security engineers on the nuts and bolts of it, so i started writing it down. security is just a hobby. my real job is to help humanity out of poverty (information & financial poverty). I am sure we can do it together maybe rmf will help humanity. ;p the internet maybe our greatest hope, we should keep it safe.

Leave a Reply