CIS Benchmark Hardening/Vulnerability Checklists
The Center for Internet Security is the primary recognized industry-standard for secure configuration guidance, developing comprehensive, consensus-derived checklists to help identify and mitigate known security vulnerabilities across a wide range of platforms.
Each CIS Benchmark provides prescriptive guidance for establishing a secure configuration posture for your IT Infrastructure, including a detailed description and rationale of potential vulnerabilities together with clear auditing and remediation steps. As such, the CIS Benchmarks are the overwhelming option of choice for auditors worldwide when advising organizations on the adoption of a secure build standard for any governance and security initiative, including PCI DSS, HIPAA, NIST 800-53, SOX, FISMA, ISO/IEC 27002, Graham Leech Bliley and ITIL.
Additional Info
As part of the CIS community, NNT has access to consensus security configuration benchmarks, software, metrics, and discussion forums where NNT is an integral stakeholder in collaborating on security best practices. NNT has leveraged these resources and best practices in our products to measure and improve the security posture of our customers. As of May 2014, NNT Change Tracker has been awarded CIS Security Software Certification for CIS Security Benchmarks across all Linux and Windows platforms, Unix and Database Systems, Applications and Web Servers - see section below for CIS Benchmark Downloads
Note: NNT is also an Official OVAL Adopter and can equally utilize any 3rd party source of SCAP, OVAL or XCCDF content, for example DISA STIG checklists.
As one of a handful of CIS Certified Vendors, NNT has a broad range of CIS Benchmark reports which can be used to audit enterprise networks and then monitor continuously for any drift from your hardened build standard, to ensure systems stay within compliance 24/7.
Windows Server
2016
CIS Microsoft Windows Server 2016 STIG Benchmark v1.0.0
CIS Microsoft Windows Server 2016 RTM (Rel 1607) Benchmark v1.2.0
COMPLETE
Complete Windows Servers CIS Benchmark Download
Contains Windows Server 2019, 2016, 2012R2, 2012, 2008R2, 2008 & 2003 CIS Benchmarks
Windows Desktop
Windows 10
CIS Microsoft Windows 10 Enterprise Release 2004 Benchmark v1.9.1
CIS Microsoft Windows 10 Enterprise Release 2004 Benchmark v1.9.0
CIS Microsoft Windows 10 Enterprise Release 1909 Benchmark v1.8.1
CIS Microsoft Windows 10 Enterprise Release 1903 Benchmark v1.7.1
CIS Microsoft Windows 10 Enterprise Release 1809 Benchmark v1.6.1
CIS Microsoft Windows 10 Enterprise Release 1803 Benchmark v1.5.0
CIS Microsoft Windows 10 Enterprise Release 1709 Benchmark v1.4.0
CIS Microsoft Windows 10 Enterprise Release 1703 Benchmark v1.3.0
CIS Microsoft Windows 10 Enterprise Release 1607 Benchmark v1.2.0
CIS Microsoft Windows 10 Enterprise Release 1511 Benchmark v1.1.1
Windows 8/8.1
CIS Microsoft Windows 8.1 Workstation Benchmark v2.4.0
CIS Microsoft Windows 8.1 Workstation Benchmark v2.3.0
CIS Microsoft Windows 8.1 Benchmark v2.2.0
COMPLETE
Complete Windows Desktop CIS Benchmark Download
Contains Windows 10, Windows 8, Windows 7 and Windows XP CIS Benchmarks
Linux
CentOS
CIS CentOS Linux 8 Benchmark v1.0.0
CIS CentOS Linux 7 Benchmark v3.0.0
CIS CentOS Linux 7 Benchmark v2.2.0
CIS CentOS Linux 6 Benchmark v2.1.0
RedHat
CIS Red Hat Enterprise Linux 8 Benchmark v1.0.0 NEW
CIS Red Hat Enterprise Linux 7 Benchmark v3.0.1
CIS Red Hat Enterprise Linux 6 Benchmark v2.1.0
CIS Red Hat Enterprise Linux 5 Benchmark v2.2.1
Oracle
CIS Oracle Linux 8 Benchmark v1.0.0
CIS Oracle Linux 7 Benchmark v3.0.0
CIS Oracle Linux 7 Benchmark v2.1.0
CIS Oracle Linux 6 Benchmark v1.1.0
SUSE
CIS SUSE Linux Enterprise 15 Benchmark v1.0.0
CIS SUSE Linux Enterprise 12 Benchmark v2.1.0
CIS SUSE Linux Enterprise 11 Benchmark v2.1.0
Ubuntu
CIS Ubuntu Linux 20.04 LTS Benchmark v1.0.0
CIS Ubuntu Linux 18.04 LTS Benchmark v2.0.1
CIS Ubuntu Linux 16.04 LTS Benchmark v1.1.0
CIS Ubuntu Linux 14.04 LTS Benchmark v2.1.0
CIS Ubuntu Linux 12.04 LTS Benchmark v1.1.0
Debian
CIS Debian Family Linux Benchmark v1.0.0
CIS Debian Linux 10 Benchmark v1.0.0
CIS Debian Linux 9 Benchmark v1.0.1
CIS Debian Linux 8 Benchmark v2.0.1
CIS Debian Linux 7 Benchmark v1.0.0
Apple OSX
CIS Apple OSX 10.15 Benchmark v1.1.0
CIS Apple OSX 10.14 Benchmark v1.1.0
CIS Apple OSX 10.13 Benchmark v1.1.0
CIS Apple OSX 10.12 Benchmark v1.2.0
CIS Apple OSX 10.11 Benchmark v1.1.0
CIS Apple OSX 10.10 Benchmark v1.2.0
CIS Apple OSX 10.9 Benchmark v1.3.0
CIS Apple OSX 10.8 Benchmark v1.3.0
Database Servers
MS SQL Server
CIS Microsoft SQL Server 2019 Benchmark v1.1.0
CIS Microsoft SQL Server 2019 Benchmark v1.0.0
CIS Microsoft SQL Server 2017 Benchmark v1.1.0
CIS Microsoft SQL Server 2017 Benchmark v1.0.0
CIS Microsoft SQL Server 2016 Benchmark v1.2.0
CIS Microsoft SQL Server 2016 Benchmark v1.1.0
CIS Microsoft SQL Server 2014 Benchmark v1.5.0
CIS Microsoft SQL Server 2012 Benchmark v1.5.0
CIS Microsoft SQL Server 2008 R2 Benchmark v1.7.0
CIS Microsoft SQL Server 2008 R2 Benchmark v1.6.0
MySQL
CIS Oracle MySQL Community Server 5.7 Benchmark v1.0.0
CIS Oracle MySQL Community Server 5.6 Benchmark v1.1.0
CIS Oracle MySQL Enterprise Edition 5.6 Benchmark v1.1.0
CIS Oracle MySQL Enterprise Edition 5.6 Benchmark v1.0.0
PostgreSQL




DNS and Authentication Servers
Office Applications
Office 365


Office 2016






Office 2013
CIS Microsoft Office 2013 Benchmark v1.1.0
CIS Microsoft Office Excel 2013 Benchmark v1.0.1
CIS Microsoft Office Outlook 2013 Benchmark v1.1.0
CIS Microsoft Office PowerPoint 2013 Benchmark v1.0.1
CIS Microsoft Office Word 2013 Benchmark v1.1.0
CIS Microsoft Office Access 2013 Benchmark v1.0.1
Virtualization and Container Servers
VMware
CIS VMware ESXi 6.7 Benchmark v1.1.0
CIS VMware ESXi 6.5 Benchmark v1.0.0
CIS VMware ESXi 5.5 Benchmark v1.2.0
CIS VMware ESXi 5.1 Benchmark v1.0.1
Docker
CIS Docker Benchmark v1.2.0
CIS Docker Community Edition Benchmark v1.1.0
CIS Docker 1.13.0 Benchmark v1.0.0
CIS Docker 1.12.0 Benchmark v1.0.0
CIS Docker 1.11.0 Benchmark v1.0.0
CIS Docker 1.6 Benchmark v1.0.0
Kubernetes
CIS Amazon Elastic Kubernetes Service (EKS) Benchmark v1.0.1
CIS Google Kubernetes Engine (GKE) Benchmark v1.1.0
CIS Google Kubernetes Engine (GKE) Benchmark v1.0.0
CIS Kubernetes Benchmark v1.6.1
CIS Kubernetes Benchmark v1.6.0
CIS Kubernetes Benchmark v1.5.1
CIS Kubernetes Benchmark v1.5.0
CIS Kubernetes Benchmark v1.4.0
CIS Kubernetes Benchmark v1.2.0
CIS Kubernetes Benchmark v1.1.0
CIS Oracle Cloud Infrastructure Container Engine for Kubernetes(OKE) Benchmark v1.0
Cloud Providers
Amazon Web Services




NIST 800-171
Sample NIST 800-171 reports
Windows Server
Find out more about NNT's NIST 800-171 compliance solutions »
HIPAA
Find out more about NNT Change Tracker for HIPAA: Non-Stop HIPAA Compliance »
New resources for healthcare systems
These consensus-based security recommendations may help medical device manufacturers and healthcare providers assess and mitigate cyber vulnerabilities. These mappings provide a detailed matrix aligning security configuration recommendations provided in the CIS Microsoft Windows 7 Benchmark v2.1.0 and Windows XP Benchmark v3.1.0 to the Security Capabilities included in a Technical Report (IEC/TR 80001-2-2) within International Electrotechnical Commission (IEC) 80001-1, a global standard for performing risk management of IT networks that include medical devices. NNT Change Tracker now delivers a fully automated assessment against these checklists and performs continuous compliance monitoring with real-time breach detection to maintain 24/7 security.
CIS Microsoft Windows 7 Benchmark v2.1.0 Mapped to IEC 80001-1 15-Oct-2014 | |
CIS Microsoft Windows XP Benchmark v3.1.0 Mapped to IEC 80001-1 15-Oct-2014 |
Want clarity on what you really need to be doing by way of security best practice in your organization? Left scratching your head for clearer guidance after reading the PCI DSS, NERC CIP, GDPR or any other Governance, Risk and Compliance (GRC) standard? Still confused about what you must do and should do in terms of data protection for your business, and why? NNT recommend the CIS Controls as an essential 'go to' resource for any data security and compliance professional. Our thanks to the Center for Internet Security for continuing to expand the world's understanding of cyber security best practices.
Are you ready to get started in securing your IT environment with
industry-approved foundational controls, intelligent change control and automation?