Tag Archives: benchmark

DISA has released the following updated Security Guidance, Security Readiness Review Scripts and Benchmarks

STIG Update – DISA has released the following updated Security Guidance, Security Readiness Review Scripts and Benchmarks
DISA has released the following updated Security Guidance, Security Readiness Review Scripts and Benchmarks:

Unclassified SRGs: http://iase.disa.mil/stigs/Pages/a-z.aspx
Database SRG – Ver 2, Rel 7
Intrusion Detection and Prevention System SRG – Ver 2, Rel 3
Mainframe Product SRG – Ver 1, Rel 2
Network Device Management SRG – Ver 2, Rel 11

Unclassified Application STIGs: http://iase.disa.mil/stigs/app-security/Pages/index.aspx
Adobe Coldfusion 11 STIG – Ver 1, Rel 3
Apache 2.2 STIG Windows – Ver 1, Rel 11
Esri ArcGIS Server 10.3 STIG – Ver 1, Rel 2
Google Chrome Browser STIG – Ver 1, Rel 9
IIS 7.0 STIG – Ver 1, Rel 14
McAfee Virus Scan 8.8 Managed Client STIG – Ver 5, Rel 16
Microsoft Exchange 2010 Mailbox STIG – Ver 1, Rel 10
Microsoft Internet Explorer 11 STIG – Ver 1, Rel 13
Microsoft .Net Framework 4 STIG – Ver 1, Rel 4
Microsoft Office System 2010 STIG – Ver 1, Rel 11
Microsoft Office System 2013 STIG – Ver 1, Rel 5
Microsoft Outlook 2016 STIG – Ver 1, Rel 2
Microsoft Project 2013 STIG – Ver 1, Rel 3
Microsoft SQL Server 2012 STIG – Ver 1, Rel 15
Microsoft SQL Server 2014 Database STIG – Ver 1, Rel 5
Microsoft SQL Server 2014 Instance STIG – Ver 1, Rel 6
Mozilla Firefox STIG – Ver 4, Rel 19
Oracle JRE 8 Windows STIG – Ver 1, Rel 4
Oracle 11g Database STIG – Ver 8, Rel 20
Oracle 11.2g Database STIG – Ver 1, Rel 12
Oracle 12c Database STIG – Ver 1, Rel 8

Unclassified Mobility STIG: http://iase.disa.mil/stigs/mobility/Pages/index.aspx
Mobile Iron Core v9.x STIG – Ver 1, Rel 3

Unclassified Network STIGs: http://iase.disa.mil/stigs/net_perimeter/Pages/index.aspx
BIND 9.x STIG – Ver 1, Rel 2
F5 Big-IP Device Management 11.x STIG – Ver 1, Rel 5
HPE 3PAR StoreServ 3.2.x STIG – Ver 1, Rel 3
Infoblox 7.x Domain Name System (DNS) STIG – Ver 1, Rel 4
Juniper SRX Services Gateway (SG) Intrusion Detection and Prevention System (IDPS) STIG – Ver 1, Rel 2
Microsoft Windows 2012 Server DNS STIG – Ver 1, Rel 7
MultiFunction Device and Network Printers STIG – Ver 2, Rel 10
Network Firewall STIG – Ver 8, Rel 23
Network Infrastructure Router L3 Switch STIG – Ver 8, Rel 23
Network L2 Switch STIG – Ver 8, Rel 21
Network Perimeter Router L3 Switch STIG – Ver 8, Rel 26
Palo Alto Networks Application Layer Gateway (ALG) STIG – Ver 1, Rel 3
Palo Alto Networks Network Device Management (NDM) STIG – Ver 1, Rel 3
Removable Storage STIG – Ver 1, Rel 6
Removable Storage STIG Ver 1, Rel 5

Unclassified Operating System STIGs: http://iase.disa.mil/stigs/os/Pages/index.aspx
Apple OS X 10.11 STIG – Ver 1, Rel 5
HP-UX 11.31 Manual STIG – Ver 1, Rel 14
Microsoft Windows 2008 DC STIG – Ver 6, Rel 37
Microsoft Windows 2008 MS STIG – Ver 6, Rel 37
Microsoft Windows 2008 R2 DC STIG – Ver 1, Rel 23
Microsoft Windows 2008 R2 MS STIG – Ver 1, Rel 23
Microsoft Windows 2012 and 2012 R2 DC STIG – Ver 2, Rel 9
Microsoft Windows 2012 and 2012 R2 MS STIG – Ver 2, Rel 9
Microsoft Windows Server 2016 STIG – Ver 1, Rel 2
Microsoft Windows 7 STIG – Ver 1, Rel 27
Microsoft Windows 8/8.1 STIG – Ver 1, Rel 18
Oracle Linux 5 Manual STIG – Ver 1, Rel 11
Red Hat 6 STIG – Ver 1, Rel 16
Red Hat 7 STIG – Ver 1, Rel 2
Solaris 10 SPARC Manual STIG – Ver 1, Rel 19
Solaris 10 x86 Manual STIG – Ver 1, Rel 19
Solaris 11 SPARC Manual STIG – Ver 1, Rel 12
Solaris 11 x86 Manual STIG – Ver 1, Rel 12
SUSE Linux Enterprise Server (SLES) v11 for System z STIG – Ver 1, Rel 10
VMware ESXi 5 Virtual Machine STIG – Ver 1, Rel 7
VMware vSphere 6.0 ESXi STIG – Ver 1, Rel 4
VMware vSphere 6.0 vCenter Server for Windows STIG – Ver 1, Rel 4
zOS ACF2 STIG – Ver 6, Rel 32
zOS RACF STIG – Ver 6, Rel 32
zOS TSS STIG – Ver 6, Rel 32

FOUO HBSS STIGs: http://iase.disa.mil/stigs/hbss/Pages/index.aspx
NOTE: DoD PKI Certificate Required
HBSS ePO 5.x STIG – Ver 1, Rel 13
HBSS HIP 8 Firewall STIG – Ver 1, Rel 9
HBSS McAfee Agent STIG – Ver 4, Rel 14
HBSS Remote Console STIG – Ver 4, Rel 14
HBSS Rogue Sensor STIG – Ver 4, Rel 9

FOUO Network STIGs: http://iase.disa.mil/stigs/net_perimeter/Pages/index.aspx
NOTE: DoD PKI Certificate Required
DoD Internet – NIPRNet DMZ STIG – Ver 3, Rel 4
JIE Core Data Center (CDC) STIG – Ver 2, Rel 2
JIE Installation Processing Node (IPN) STIG – Ver 2, Rel 2

Benchmarks: http://iase.disa.mil/stigs/scap/Pages/index.aspx
Google Chrome for Windows STIG Benchmark Ver 1, Rel 4
Microsoft Internet Explorer 11 STIG Benchmark Ver 1, Rel 10
Microsoft Office System 2010 STIG Benchmark – Ver 1, Rel 3 (SCC tool use only)
Microsoft Office System 2013 STIG Benchmark – Ver 1, Rel 4 (SCC tool use only)
Microsoft Outlook 2016 STIG – Ver 1, Rel 2 (SCC tool use only)
Microsoft Project 2013 STIG Benchmark – Ver 1, Rel 4 (SCC tool use only)
Microsoft Windows 2008 DC STIG Benchmark – Ver 6, Rel 39
Microsoft Windows 2008 MS STIG Benchmark – Ver 6, Rel 39
Microsoft Windows 2008 R2 DC STIG Benchmark – Ver 1, Rel 25
Microsoft Windows 2012 and 2012 R2 DC STIG Benchmark – Ver 2, Rel 9
Microsoft Windows 2012 and 2012 R2 MS STIG Benchmark – Ver 2, Rel 9
Microsoft Windows 7 STIG Benchmark – Ver 1, Rel 33
Microsoft Windows 8/8.1 STIG Benchmark – Ver 1, Rel 19
Microsoft Windows Server 2016 STIG Benchmark – Ver 1, Rel 2
Red Hat 6 STIG Benchmark – Ver 1, Rel 16
Solaris 10 SPARC STIG Benchmark – Ver 1, Rel 18
Solaris 10 x86 STIG Benchmark – Ver 1, Rel 18
Solaris 11 SPARC STIG Benchmark – Ver 1, Rel 7
Solaris 11 x86 STIG Benchmark – Ver 1, Rel 7

No Longer Supported: http://iase.disa.mil/stigs/sunset/Pages/index.aspx
Bind DNS STIG – Ver 4, Rel 1.20
Desktop Applications General STIG – Ver 4, Rel 5

For all STIG related questions, please contact the DISA STIG Customer Support Desk: disa.stig_spt@mail.mil

DISA has released the following updated Security Guidance, Security Readiness Review Scripts and Benchmarks

DISA has released the following updated Security Guidance, Security Readiness Review Scripts and Benchmarks:

Unclassified SRGs:  http://iase.disa.mil/stigs/srgs/Pages/index.aspx

Database SRG Ver 2, Rel 3
General Purpose Operating System SRG Ver 1, Rel 3
Network Device Management SRG Ver 2, Rel 4

Unclassified Application STIGs/SRGs:  http://iase.disa.mil/stigs/app-security/Pages/index.aspx

Access 2007 STIG Ver 4, Rel 13
Exchange 2010 Client Access STIG Ver 1, Rel 8
Exchange 2010 Edge STIG Ver 1, Rel 11
Exchange 2010 Hub STIG Ver 1, Rel 11
Exchange 2010 Mailbox STIG Ver 1, Rel 7
Exchange 2010 Overview Ver 1, Rel 6
Internet Explorer 10 STIG Ver 1, Rel 12
Internet Explorer 11 STIG Ver 1, Rel 7
McAfee Virus Scan 8.8 Local Client STIG Ver 5, Rel 8
McAfee Virus Scan 8.8 Managed Client STIG Ver 5, Rel 9
Mozilla Firefox STIG Ver 4, Rel 14
Oracle 11.2g Database STIG Ver 1, Rel 6
Oracle 12c Database STIG Ver 1, Rel 2
Oracle 11g Database STIG Ver 8, Rel 16
Outlook 2013 STIG Ver 1, Rel 6
SQL Server 2012 STIG Ver 1, Rel 9

Unclassified Mobility ISCG:  http://iase.disa.mil/stigs/mobility/Pages/index.aspx

Apple iOS 9 ISCG Ver 1, Rel 2

Unclassified Network STIGs:  http://iase.disa.mil/stigs/net_perimeter/Pages/index.aspx

CISCO CS DNS STIG Ver 4, Rel 18
DNS Policy STIG Ver 4, Rel 17
Enclave Test and Development STIG Ver 1, Rel 3
Harris SecNet 11/54 STIG Ver 6, Rel 9
Keyboard Video and Mouse Switch STIG Ver 2, Rel 6
MultiFunction Device and Network Printers STIG Ver 2, Rel 8
Network WLAN STIG Ver 6, Rel 11
Network WMAN STIG Ver 6, Rel 10
Network Perimeter Router L3 Switch STIG Ver 8, Rel 22
Video Tele-Conference Services Policy STIG Ver 1, Rel 8
Video Tele-Conference STIG Ver 1, Rel 6
Voice and Video over Internet Protocol (VVoIP) Policy STIG Ver 3, Rel 8
Voice and Video over Internet Protocol (VVoIP) STIG Ver 3, Rel 8
Windows Server 2012 DNS STIG Ver 1, Rel 3

Unclassified Operating System STIGs: http://iase.disa.mil/stigs/os/Pages/index.aspx

AIX 6.1 STIG Ver 1, Rel 6
ESXi 5 Virtual Machine STIG Ver 1, Rel 6
HP-UX 11.31 Manual STIG Ver 1, Rel 9
Oracle Linux 5 Manual STIG Ver 1, Rel 5
Oracle Linux 6 Manual STIG Ver 1, Rel 5
Red Hat 5 Manual STIG Ver 1, Rel 13
Red Hat 6 STIG Ver 1, Rel 10
Solaris 10 SPARC Manual STIG Ver 1, Rel 13
Solaris 10 x86 Manual STIG Ver 1, Rel 13
Solaris 11 SPARC Manual STIG Ver 1, Rel 6
Solaris 11 x86 Manul STIG Ver 1, Rel 6
SUSE Linux Enterprise Server (SLES) v11 for System z STIG Ver 1, Rel 7
Windows 8/8.1 STIG Ver 1, Rel 12
zOS ACF2 STIG Ver 6, Rel 26
zOS RACF STIG Ver 6, Rel 26
zOS TSS STIG Ver 6, Rel 26

FOUO Cross Domain Solution:  http://iase.disa.mil/stigs/cds/Pages/index.aspx
NOTE:  DoD PKI Certificate Required

JVAP Administrative STIG Ver 3, Rel 17

FOUO HBSS: http://iase.disa.mil/stigs/hbss/Pages/index.aspx
NOTE: DoD PKI Certificate Required

HBSS Agent Handler STIG  Ver 1, Rel 7
HBSS ePO 4.5 Site STIG Ver 4, Rel 15
HBSS ePO 4.6 STIG Ver 4, Rel 16
HBSS ePO 5.1 STIG Ver 1, Rel 7
HBSS HIP 8 STIG Ver 4, Rel 14
HBSS HIP STIG Ver 4, Rel 10

FOUO Network Perimeter:  http://iase.disa.mil/stigs/net_perimeter/Pages/index.aspx
NOTE:  DoD PKI Certificate Required

DoD Internet-NIPRNet DMZ STIG Ver 3, Rel 2

Benchmarks: http://iase.disa.mil/stigs/scap/Pages/index.aspx

AIX 6.1 STIG Benchmark Ver 1, Rel 6
HP-UX 11.31 STIG Benchmark Ver 1 Rel 10
Internet Explorer 10 STIG Benchmark Ver 1, Rel 7
Outlook 2013 STIG Benchmark Ver 1, Rel 3
Red Hat 5 STIG Benchmark Ver 1, Rel 14
Red Hat 6 STIG Benchmark Ver 1, Rel 10
Solaris 10 SPARC STIG Benchmark Ver 1, Rel 13
Solaris 10 x86 STIG Benchmark Ver 1, Rel 13
Windows 2008 R2 MS STIG Benchmark Ver 1, Rel 20
Windows 8/8.1 Benchmark Ver 1, Rel 13

STIGs no longer supported:  http://iase.disa.mil/stigs/sunset/Pages/index.aspx

AirWatch MDM STIG Ver 1, Rel 3
Windows DNS STIG Ver 4, Rel 1.19 (NOTE:  This STIG was based on Windows 2003 Operating System)
HP-UX 11.23 Manual STIG Ver 1, Rel 8