Benchmarks PLUS

These reports can be used help identify and mitigate known security vulnerabilities across a wide range of platforms by providing you with clear guidance on how to establish a secure configuration posture across your IT infrastructure.

Hardened Services Lists
What are the recommended hardened services settings for Windows for PCI DSS, NERC-CIP, NIST 800-53 / 800-171 or other compliance standards?

Sample DISA STIG Reports

Windows Server

Windows Server

• 2019
• 2016
• 2012R2
• 2008R2
• 2008

• 2019
• 2016
• 2012R2
• 2008R2
• 2008

2019

Windows Server 2019 STIG

2016

Windows Server 2016 STIG

2012R2

	Windows 2012 and 2012 R2 MS V2R6 Manual STIG
	Windows 2012 R2 Member Server STIG
	Windows 2012 and 2012 R2 MS V2R6 STIG Viewer Export
	NNT Windows 2012R2 MS STIG

2008R2

	Windows 2008 R2 MS V1R14 STIG Benchmark NNT
	Windows 2008 R2 Member Server STIG
	Windows 2008 R2 MS V1R20 STIG Viewer Export
	NNT Windows Server 2008 R2 Member Server STIG V1R20 Report Output

2008

Windows 2008 Domain Controller STIG

Windows Desktop

Windows Desktop

Windows 10 STIG

Cisco

Cisco

Cisco IOS Router NDM

Linux

Linux

• Red Hat

• Red Hat

Red Hat

	RedHat 6 V1R13 STIG Viewer Export
	NNT RHEL 6 STIG V1R13 Report Output

Database Server

Database Server

• MS SQL Server
• IBM DB2

• MS SQL Server
• IBM DB2

MS SQL Server

	MS SQL Server 2016 Database STIG
	MS SQL Server 2014 Instance STIG

IBM DB2

IBM DB2 V10.5 LUW STIG

Apple

Apple

Apple OS X 10.12 STIG

Unix

Unix

• IBM AIX
• Solaris

• IBM AIX
• Solaris

IBM AIX

IBM AIX 7.x STIG

Solaris

	Solaris 10 V1R16 STIG Viewer Output
	NNT Solaris 10 V1R16 Report Output

Virtualization and Container Servers

Virtualization and Container Servers

Docker Enterprise 2-x Linux UNIX STIG

Office Applications

Office Applications

• Office 2016
• Office 2013

• Office 2016
• Office 2013

Office 2016

	Microsoft Outlook 2016 STIG
	Microsoft Excel 2016 STIG
	Microsoft PowerPoint 2016 STIG

Office 2013

	Microsoft Outlook 2013 STIG
	Microsoft PowerPoint 2013 STIG

Firewalls

Firewalls

Juniper SRX SG ALG

Web Browsers

Web Browsers

	Microsoft Internet Explorer 11 STIG
	Google Chrome Current Windows

Web Servers

Web Servers

• Microsoft IIS
• Apache HTTP Server
• F5 BIG-IP

• Microsoft IIS
• Apache HTTP Server
• F5 BIG-IP

Microsoft IIS

	IIS 8.5 Server STIG
	IIIS 7.0 Server STIG

Apache HTTP Server

APACHE 2.2 Server for Windows STIG

F5 BIG-IP

F5 BIG-IP Device Management 11.x

General Purpose Operating Systems

General Purpose Operating Systems

General Purpose Operating System SRG

Sample Sarbanes-Oxley SOX Reports

Windows Server

Windows Server

• 2012R2

• 2012R2

2012R2

Sarbanes Oxley Security Audit Microsoft Windows Server 2012R2 Benchmark GEN7 IP18

Sample ISO 27K Reports

2012R2

2012R2

NNT ISO27K Microsoft Windows Server 2012 R2 Benchmark GEN7 IP18

Recommended Windows Audit Policy settings
Download the GPO template file for direct import and deployment via Active Directory

Recommended Linux Audit Policy settings
Download the NNT Audit Policy Wizard file for direct execution on your host, or for mass deployment using Puppet, for example, and automatically configure an auditor-ready audit policy.

Sample PCI DSS Reports

Sample NIST 800-53 reports

Sample NIST 800-171 reports