Skip to content

StigCoverageSummary

Jump to bottom
MrAutomater edited this page Feb 27, 2026 · 32 revisions

PowerSTIG Technology Coverage : Module Version 4.29.0

A Summary of Technology Coverage for PowerSTIG is listed below, for more detailed rule coverage, follow the technology specific link:

Adobe Acrobat Pro DC Continuous STIG, Version 2.1

Title: Adobe Acrobat Professional DC Continuous Track Security Technical Implementation Guide
Version: 2
Release: Release: 1 Benchmark Date: 23 Jul 2021 3.2.2.36079 1.10.0
FileName: U_Adobe_Acrobat_Pro_DC_Continuous_V2R1_Manual-xccdf.xml
Created: 8/17/2021
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 22 of 23 rules are automated; 96%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 11 of 11 rules are automated
  • Low (CAT III): 11 of 11 rules are automated

Adobe Acrobat Reader DC Continuous Track STIG, Version 1.6

Title: Adobe Acrobat Reader DC Continuous Track Security Technical Implementation Guide
Version: 1
Release: Release: 6 Benchmark Date: 26 Jul 2019
FileName: U_Adobe_Acrobat_Reader_DC_Continuous_STIG_V1R6_Manual-xccdf.xml
Created: 1/21/2020
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 26 of 27 rules are automated; 96%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 16 of 16 rules are automated
  • Low (CAT III): 10 of 10 rules are automated

Adobe Acrobat Reader DC Continuous Track STIG, Version 2.1

Title: Adobe Acrobat Reader DC Continuous Track Security Technical Implementation Guide
Version: 2
Release: Release: 1 Benchmark Date: 23 Jul 2021 3.2.2.36079 1.10.0
FileName: U_Adobe_Acrobat_Reader_DC_Continuous_STIG_V2R1_Manual-xccdf.xml
Created: 8/6/2021
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 26 of 27 rules are automated; 96%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 16 of 16 rules are automated
  • Low (CAT III): 10 of 10 rules are automated

MS Dot Net Framework, Version 2.6

Title: Microsoft DotNet Framework 4.0 Security Technical Implementation Guide
Version: 2
Release: Release: 6 Benchmark Date: 02 Apr 2025 3.5 1.10.0
FileName: U_MS_DotNet_Framework_4-0_STIG_V2R6_Manual-xccdf.xml
Created: 5/21/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 6 of 18 rules are automated; 33%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 6 of 16 rules are automated
  • Low (CAT III): 0 of 2 rules are automated

MS Dot Net Framework, Version 2.7

Title: Microsoft DotNet Framework 4.0 Security Technical Implementation Guide
Version: 2
Release: Release: 7 Benchmark Date: 02 Jul 2025 3.5 1.10.0
FileName: U_MS_DotNet_Framework_4-0_STIG_V2R7_Manual-xccdf.xml
Created: 8/25/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 6 of 18 rules are automated; 33%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 6 of 16 rules are automated
  • Low (CAT III): 0 of 2 rules are automated

MOZ Firefox STIG, Version 6.6

Title: Mozilla Firefox Security Technical Implementation Guide
Version: 6
Release: Release: 6 Benchmark Date: 02 Apr 2025 3.5 1.10.0
FileName: U_MOZ_Firefox_STIG_V6R6_Manual-xccdf.xml
Created: 5/21/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 43 of 51 rules are automated; 84%

  • High (CAT I): 1 of 2 rules are automated
  • Medium (CAT II): 40 of 47 rules are automated
  • Low (CAT III): 2 of 2 rules are automated

MOZ Firefox STIG, Version 6.7

Title: Mozilla Firefox Security Technical Implementation Guide
Version: 6
Release: Release: 7 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MOZ_Firefox_STIG_V6R7_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 43 of 51 rules are automated; 84%

  • High (CAT I): 1 of 2 rules are automated
  • Medium (CAT II): 40 of 47 rules are automated
  • Low (CAT III): 2 of 2 rules are automated

Google Chrome Current Windows, Version 2.10

Title: Google Chrome Current Windows Security Technical Implementation Guide
Version: 2
Release: Release: 10 Benchmark Date: 24 Oct 2024 3.5 1.10.0
FileName: U_Google_Chrome_STIG_V2R10_Manual-xccdf.xml
Created: 12/4/2024
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 41 of 42 rules are automated; 98%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 39 of 40 rules are automated
  • Low (CAT III): 2 of 2 rules are automated

Google Chrome Current Windows, Version 2.11

Title: Google Chrome Current Windows Security Technical Implementation Guide
Version: 2
Release: Release: 11 Benchmark Date: 02 Jul 2025 3.5 1.10.0
FileName: U_Google_Chrome_STIG_V2R11_Manual-xccdf.xml
Created: 8/25/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 45 of 46 rules are automated; 98%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 43 of 44 rules are automated
  • Low (CAT III): 2 of 2 rules are automated

IIS 10-0 Server STIG, Version 3.5

Title: Microsoft IIS 10.0 Server Security Technical Implementation Guide
Version: 3
Release: Release: 5 Benchmark Date: 01 Oct 2025 3.5.1 1.10.0
FileName: U_MS_IIS_10-0_Server_STIG_V3R5_Manual-xccdf.xml
Created: 12/2/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 28 of 56 rules are automated; 50%

  • High (CAT I): 9 of 12 rules are automated
  • Medium (CAT II): 19 of 42 rules are automated
  • Low (CAT III): 0 of 2 rules are automated

IIS 10-0 Server STIG, Version 3.6

Title: Microsoft IIS 10.0 Server Security Technical Implementation Guide
Version: 3
Release: Release: 6 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_IIS_10-0_Server_STIG_V3R6_Manual-xccdf.xml
Created: 2/20/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 28 of 56 rules are automated; 50%

  • High (CAT I): 9 of 12 rules are automated
  • Medium (CAT II): 19 of 42 rules are automated
  • Low (CAT III): 0 of 2 rules are automated

IIS 10-0 Site STIG, Version 2.13

Title: Microsoft IIS 10.0 Site Security Technical Implementation Guide
Version: 2
Release: Release: 13 Benchmark Date: 01 Oct 2025 3.5.1 1.10.0
FileName: U_MS_IIS_10-0_Site_STIG_V2R13_Manual-xccdf.xml
Created: 12/3/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 33 of 49 rules are automated; 67%

  • High (CAT I): 1 of 2 rules are automated
  • Medium (CAT II): 32 of 47 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

IIS 10-0 Site STIG, Version 2.14

Title: Microsoft IIS 10.0 Site Security Technical Implementation Guide
Version: 2
Release: Release: 14 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_IIS_10-0_Site_STIG_V2R14_Manual-xccdf.xml
Created: 2/21/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 31 of 48 rules are automated; 65%

  • High (CAT I): 1 of 2 rules are automated
  • Medium (CAT II): 30 of 46 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

IE 11 STIG, Version 2.5

Title: Microsoft Internet Explorer 11 Security Technical Implementation Guide
Version: 2
Release: Release: 5 Benchmark Date: 24 Jan 2024 3.4.1.22916 1.10.0
FileName: U_MS_IE11_STIG_V2R5_Manual-xccdf.xml
Created: 2/16/2024
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 138 of 139 rules are automated; 99%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 135 of 135 rules are automated
  • Low (CAT III): 3 of 3 rules are automated

IE 11 STIG, Version 2.6

Title: Microsoft Internet Explorer 11 Security Technical Implementation Guide
Version: 2
Release: Release: 6 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_IE11_STIG_V2R6_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 138 of 139 rules are automated; 99%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 135 of 135 rules are automated
  • Low (CAT III): 3 of 3 rules are automated

MS Edge STIG, Version 2.3

Title: Microsoft Edge Security Technical Implementation Guide
Version: 2
Release: Release: 3 Benchmark Date: 02 Jul 2025 3.5 1.10.0
FileName: U_MS_Edge_V2R3_STIG_Manual-xccdf.xml
Created: 8/26/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 54 of 59 rules are automated; 92%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 48 of 48 rules are automated
  • Low (CAT III): 6 of 10 rules are automated

MS Edge STIG, Version 2.4

Title: Microsoft Edge Security Technical Implementation Guide
Version: 2
Release: Release: 4 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Edge_V2R4_STIG_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 55 of 60 rules are automated; 92%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 49 of 49 rules are automated
  • Low (CAT III): 6 of 10 rules are automated

MS Office 365 ProPlus STIG, Version 3.3

Title: Microsoft Office 365 ProPlus Security Technical Implementation Guide
Version: 3
Release: Release: 3 Benchmark Date: 02 Apr 2025 3.5 1.10.0
FileName: U_MS_Office_365_ProPlus_STIG_V3R3_Manual-xccdf.xml
Created: 5/21/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 128 of 141 rules are automated; 91%

  • High (CAT I): 1 of 1 rules are automated
  • Medium (CAT II): 127 of 140 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

MS Office 365 ProPlus STIG, Version 3.4

Title: Microsoft Office 365 ProPlus Security Technical Implementation Guide
Version: 3
Release: Release: 4 Benchmark Date: 01 Oct 2025 3.5.2 1.10.0
FileName: U_MS_Office_365_ProPlus_STIG_V3R4_Manual-xccdf.xml
Created: 12/2/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 133 of 146 rules are automated; 91%

  • High (CAT I): 1 of 1 rules are automated
  • Medium (CAT II): 132 of 145 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Access 2016, Version 1.1

Title: Microsoft Access 2016 Security Technical Implementation Guide
Version: 1
Release: Release: 1 Benchmark Date: 14 Nov 2016
FileName: U_Microsoft_Access_2016_STIG_V1R1_Manual-xccdf.xml
Created: 1/10/2024
Description: The Microsoft Access 2016 Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 16 of 16 rules are automated; 100%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 16 of 16 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Access 2016, Version 2.1

Title: Microsoft Access 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 1 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Access_2016_STIG_V2R1_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 16 of 17 rules are automated; 94%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 16 of 16 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Excel 2016, Version 1.2

Title: Microsoft Excel 2016 Security Technical Implementation Guide
Version: 1
Release: Release: 2 Benchmark Date: 27 Oct 2017
FileName: U_MS_Excel_2016_STIG_V1R2_Manual-xccdf.xml
Created: 9/6/2019
Description: The Microsoft Excel 2016 Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 42 of 42 rules are automated; 100%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 42 of 42 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Excel 2016, Version 2.2

Title: Microsoft Excel 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 2 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Excel_2016_STIG_V2R2_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 41 of 42 rules are automated; 98%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 41 of 41 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft OneNote 2016, Version 1.2

Title: Microsoft OneNote 2016 Security Technical Implementation Guide
Version: 1
Release: Release: 2 Benchmark Date: 19 Jan 2017
FileName: U_Microsoft_OneNote_2016_STIG_V1R2_Manual-xccdf.xml
Created: 1/10/2024
Description: The Microsoft OneNote 2016 Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 10 of 10 rules are automated; 100%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 10 of 10 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft OneNote 2016, Version 2.1

Title: Microsoft OneNote 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 1 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_OneNote_2016_STIG_V2R1_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 10 of 11 rules are automated; 91%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 10 of 10 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Outlook 2016, Version 2.3

Title: Microsoft Outlook 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 3 Benchmark Date: 27 Apr 2022 3.3.0.27375 1.10.0
FileName: U_MS_Outlook_2016_STIG_V2R3_Manual-xccdf.xml
Created: 6/6/2022
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 63 of 63 rules are automated; 100%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 63 of 63 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Outlook 2016, Version 2.4

Title: Microsoft Outlook 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 4 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Outlook_2016_STIG_V2R4_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 63 of 64 rules are automated; 98%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 63 of 63 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft PowerPoint 2016, Version 1.1

Title: Microsoft PowerPoint 2016 Security Technical Implementation Guide
Version: 1
Release: Release: 1 Benchmark Date: 14 Nov 2016
FileName: U_Microsoft_PowerPoint_2016_STIG_V1R1_Manual-xccdf.xml
Created: 9/6/2019
Description: The Microsoft PowerPoint 2016 Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 38 of 38 rules are automated; 100%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 38 of 38 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft PowerPoint 2016, Version 2.1

Title: Microsoft PowerPoint 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 1 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_PowerPoint_2016_STIG_V2R1_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 37 of 38 rules are automated; 97%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 37 of 37 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Publisher 2016, Version 1.3

Title: Microsoft Publisher 2016 Security Technical Implementation Guide
Version: 1
Release: Release: 3 Benchmark Date: 27 Apr 2018
FileName: U_MS_Publisher_2016_STIG_V1R3_Manual-xccdf.xml
Created: 7/19/2022
Description: The Microsoft Publisher 2016 Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 15 of 15 rules are automated; 100%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 15 of 15 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Publisher 2016, Version 2.1

Title: Microsoft Publisher 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 1 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Publisher_2016_STIG_V2R1_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 15 of 16 rules are automated; 94%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 15 of 15 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Skype for Business 2016, Version 1.1

Title: Microsoft Skype for Business 2016 Security Technical Implementation Guide
Version: 1
Release: Release: 1 Benchmark Date: 14 Nov 2016
FileName: U_Microsoft_Skype_for_Business_2016_STIG_V1R1_Manual-xccdf.xml
Created: 1/10/2024
Description: The Microsoft Skype for Business 2016 Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 3 of 3 rules are automated; 100%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 3 of 3 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Skype for Business 2016, Version 2.1

Title: Microsoft Skype for Business 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 1 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Skype_for_Business_2016_STIG_V2R1_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 3 of 4 rules are automated; 75%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 3 of 3 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Office System 2016, Version 2.4

Title: Microsoft Office System 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 4 Benchmark Date: 30 Jan 2025 3.5 1.10.0
FileName: U_MS_Office_System_2016_STIG_V2R4_Manual-xccdf.xml
Created: 2/6/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 22 of 22 rules are automated; 100%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 22 of 22 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Office System 2016, Version 2.5

Title: Microsoft Office System 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 5 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Office_System_2016_STIG_V2R5_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 22 of 23 rules are automated; 96%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 22 of 22 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Word 2016, Version 1.1

Title: Microsoft Word 2016 Security Technical Implementation Guide
Version: 1
Release: Release: 1 Benchmark Date: 14 Nov 2016
FileName: U_Microsoft_Word_2016_STIG_V1R1_Manual-xccdf.xml
Created: 9/6/2019
Description: The Microsoft Word 2016 Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 35 of 35 rules are automated; 100%

  • High (CAT I): 0 of 0 rules are automated
  • Medium (CAT II): 35 of 35 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Word 2016, Version 2.1

Title: Microsoft Word 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 1 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Word_2016_STIG_V2R1_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 34 of 35 rules are automated; 97%

  • High (CAT I): 0 of 1 rules are automated
  • Medium (CAT II): 34 of 34 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Oracle Linux 8 STIG, Version 2.3

Title: Oracle Linux 8 Security Technical Implementation Guide
Version: 2
Release: Release: 3 Benchmark Date: 30 Jan 2025 3.5 1.10.0
FileName: U_Oracle_Linux_8_STIG_V2R3_Manual-xccdf.xml
Created: 2/25/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 278 of 431 rules are automated; 65%

  • High (CAT I): 5 of 21 rules are automated
  • Medium (CAT II): 257 of 384 rules are automated
  • Low (CAT III): 16 of 26 rules are automated

Oracle Linux 8 STIG, Version 2.4

Title: Oracle Linux 8 Security Technical Implementation Guide
Version: 2
Release: Release: 4 Benchmark Date: 02 Apr 2025 3.5 1.10.0
FileName: U_OracleLinux_8_STIG_V2R4_Manual-xccdf.xml
Created: 5/27/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 176 of 420 rules are automated; 42%

  • High (CAT I): 5 of 22 rules are automated
  • Medium (CAT II): 157 of 367 rules are automated
  • Low (CAT III): 14 of 31 rules are automated

Oracle Linux 9 STIG, Version 1.1

Title: Oracle Linux 9 Security Technical Implementation Guide
Version: 1
Release: Release: 1 Benchmark Date: 25 Mar 2025 3.5 1.10.0
FileName: U_OracleLinux_9_STIG_V1R1_Manual-xccdf.xml
Created: 5/27/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 122 of 411 rules are automated; 30%

  • High (CAT I): 0 of 17 rules are automated
  • Medium (CAT II): 117 of 382 rules are automated
  • Low (CAT III): 5 of 12 rules are automated

RHEL 7 STIG, Version 3.14

Title: Red Hat Enterprise Linux 7 Security Technical Implementation Guide
Version: 3
Release: Release: 14 Benchmark Date: 24 Jan 2024 3.4.1.22916 1.10.0
FileName: U_RHEL_7_STIG_V3R14_Manual-xccdf.xml
Created: 2/5/2024
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 166 of 275 rules are automated; 60%

  • High (CAT I): 10 of 26 rules are automated
  • Medium (CAT II): 153 of 236 rules are automated
  • Low (CAT III): 3 of 13 rules are automated

RHEL 7 STIG, Version 3.15

Title: Red Hat Enterprise Linux 7 Security Technical Implementation Guide
Version: 3
Release: Release: 15 Benchmark Date: 24 Jul 2024 3.5 1.10.0
FileName: U_RHEL_7_STIG_V3R15_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 166 of 275 rules are automated; 60%

  • High (CAT I): 10 of 26 rules are automated
  • Medium (CAT II): 153 of 236 rules are automated
  • Low (CAT III): 3 of 13 rules are automated

RHEL 9 STIG, Version 2.3

Title: Red Hat Enterprise Linux 9 Security Technical Implementation Guide
Version: 2
Release: Release: 3 Benchmark Date: 30 Jan 2025 3.5 1.10.0
FileName: U_RHEL_9_STIG_V2R3_Manual-xccdf.xml
Created: 2/20/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 131 of 412 rules are automated; 32%

  • High (CAT I): 0 of 17 rules are automated
  • Medium (CAT II): 127 of 384 rules are automated
  • Low (CAT III): 4 of 11 rules are automated

RHEL 9 STIG, Version 2.7

Title: Red Hat Enterprise Linux 9 Security Technical Implementation Guide
Version: 2
Release: Release: 7 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_RHEL_9_STIG_V2R7_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 135 of 481 rules are automated; 28%

  • High (CAT I): 1 of 20 rules are automated
  • Medium (CAT II): 131 of 446 rules are automated
  • Low (CAT III): 3 of 15 rules are automated

MS SQL Server 2016 Instance STIG, Version 3.5

Title: MS SQL Server 2016 Instance Security Technical Implementation Guide
Version: 3
Release: Release: 5 Benchmark Date: 02 Jul 2025 3.5 1.10.0
FileName: U_MS_SQL_Server_2016_Instance_STIG_V3R5_Manual-xccdf.xml
Created: 8/28/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 66 of 123 rules are automated; 54%

  • High (CAT I): 26 of 34 rules are automated
  • Medium (CAT II): 40 of 87 rules are automated
  • Low (CAT III): 0 of 2 rules are automated

MS SQL Server 2016 Instance STIG, Version 3.6

Title: MS SQL Server 2016 Instance Security Technical Implementation Guide
Version: 3
Release: Release: 6 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_SQL_Server_2016_Instance_STIG_V3R6_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 52 of 106 rules are automated; 49%

  • High (CAT I): 24 of 32 rules are automated
  • Medium (CAT II): 28 of 72 rules are automated
  • Low (CAT III): 0 of 2 rules are automated

MS SQL Server 2022 Instance STIG, Version 1.2

Title: Microsoft SQL Server 2022 Instance Security Technical Implementation Guide
Version: 1
Release: Release: 2 Benchmark Date: 01 Oct 2025 3.5.1 1.10.0
FileName: U_MS_SQL_Server_2022_Instance_STIG_V1R2_Manual-xccdf.xml
Created: 12/2/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 17 of 84 rules are automated; 20%

  • High (CAT I): 5 of 18 rules are automated
  • Medium (CAT II): 12 of 66 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

MS SQL Server 2022 Instance STIG, Version 1.3

Title: Microsoft SQL Server 2022 Instance Security Technical Implementation Guide
Version: 1
Release: Release: 3 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_SQL_Server_2022_Instance_STIG_V1R3_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 17 of 84 rules are automated; 20%

  • High (CAT I): 5 of 18 rules are automated
  • Medium (CAT II): 12 of 66 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

CAN Ubuntu 18-04 STIG, Version 2.14

Title: Canonical Ubuntu 18.04 LTS Security Technical Implementation Guide
Version: 2
Release: Release: 14 Benchmark Date: 24 Apr 2024 3.4.1.22916 1.10.0
FileName: U_CAN_Ubuntu_18-04_LTS_STIG_V2R14_Manual-xccdf.xml
Created: 5/20/2024
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 126 of 208 rules are automated; 61%

  • High (CAT I): 8 of 17 rules are automated
  • Medium (CAT II): 102 of 165 rules are automated
  • Low (CAT III): 16 of 26 rules are automated

CAN Ubuntu 18-04 STIG, Version 2.15

Title: Canonical Ubuntu 18.04 LTS Security Technical Implementation Guide
Version: 2
Release: Release: 15 Benchmark Date: 24 Jul 2024 3.5 1.10.0
FileName: U_CAN_Ubuntu_18-04_LTS_STIG_V2R15_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 126 of 209 rules are automated; 60%

  • High (CAT I): 8 of 18 rules are automated
  • Medium (CAT II): 102 of 165 rules are automated
  • Low (CAT III): 16 of 26 rules are automated

MS Windows 10 STIG, Version 3.5

Title: Microsoft Windows 10 Security Technical Implementation Guide
Version: 3
Release: Release: 5 Benchmark Date: 01 Oct 2025 3.5.1 1.10.0
FileName: U_MS_Windows_10_STIG_V3R5_Manual-xccdf.xml
Created: 12/2/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 245 of 286 rules are automated; 86%

  • High (CAT I): 26 of 30 rules are automated
  • Medium (CAT II): 203 of 237 rules are automated
  • Low (CAT III): 16 of 19 rules are automated

MS Windows 10 STIG, Version 3.6

Title: Microsoft Windows 10 Security Technical Implementation Guide
Version: 3
Release: Release: 6 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Windows_10_STIG_V3R6_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 245 of 285 rules are automated; 86%

  • High (CAT I): 25 of 30 rules are automated
  • Medium (CAT II): 204 of 236 rules are automated
  • Low (CAT III): 16 of 19 rules are automated

Microsoft Windows 11 STIG, Version 2.5

Title: Microsoft Windows 11 Security Technical Implementation Guide
Version: 2
Release: Release: 5 Benchmark Date: 01 Oct 2025 3.5.1 1.10.0
FileName: U_MS_Windows_11_STIG_V2R5_Manual-xccdf.xml
Created: 12/2/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 239 of 285 rules are automated; 84%

  • High (CAT I): 23 of 28 rules are automated
  • Medium (CAT II): 201 of 239 rules are automated
  • Low (CAT III): 15 of 18 rules are automated

Microsoft Windows 11 STIG, Version 2.6

Title: Microsoft Windows 11 Security Technical Implementation Guide
Version: 2
Release: Release: 6 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Windows_11_STIG_V2R6_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 239 of 283 rules are automated; 84%

  • High (CAT I): 23 of 28 rules are automated
  • Medium (CAT II): 201 of 237 rules are automated
  • Low (CAT III): 15 of 18 rules are automated

MS Defender Antivirus, Version 2.6

Title: Microsoft Defender Antivirus Security Technical Implementation Guide
Version: 2
Release: Release: 6 Benchmark Date: 24 Sep 2025 3.5.1 1.10.0
FileName: U_MS_Windows_Defender_Antivirus_STIG_V2R6_Manual-xccdf.xml
Created: 12/3/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 68 of 68 rules are automated; 100%

  • High (CAT I): 4 of 4 rules are automated
  • Medium (CAT II): 64 of 64 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

MS Defender Antivirus, Version 2.7

Title: Microsoft Defender Antivirus Security Technical Implementation Guide
Version: 2
Release: Release: 7 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Windows_Defender_Antivirus_STIG_V2R7_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 67 of 67 rules are automated; 100%

  • High (CAT I): 4 of 4 rules are automated
  • Medium (CAT II): 63 of 63 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Windows 2012 Server Domain Name System STIG, Version 2.5

Title: Microsoft Windows 2012 Server Domain Name System Security Technical Implementation Guide
Version: 2
Release: Release: 5 Benchmark Date: 31 May 2022 3.3.0.27375 1.10.0
FileName: U_MS_Windows_2012_Server_DNS_STIG_V2R5_Manual-xccdf.xml
Created: 6/6/2022
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 13 of 84 rules are automated; 15%

  • High (CAT I): 0 of 3 rules are automated
  • Medium (CAT II): 13 of 81 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Microsoft Windows 2012 Server Domain Name System STIG, Version 2.7

Title: Microsoft Windows 2012 Server Domain Name System Security Technical Implementation Guide
Version: 2
Release: Release: 7 Benchmark Date: 24 Jul 2024 3.5 1.10.0
FileName: U_MS_Windows_2012_Server_DNS_STIG_V2R7_Manual-xccdf.xml
Created: 2/18/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 13 of 85 rules are automated; 15%

  • High (CAT I): 0 of 5 rules are automated
  • Medium (CAT II): 13 of 80 rules are automated
  • Low (CAT III): 0 of 0 rules are automated

Windows Firewall with Advanced Security, Version 2.1

Title: Microsoft Windows Firewall with Advanced Security Security Technical Implementation Guide
Version: 2
Release: Release: 1 Benchmark Date: 01 Nov 2021 3.2.2.36079 1.10.0
FileName: U_MS_Windows_Firewall_STIG_V2R1_Manual-xccdf.xml
Created: 11/23/2021
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 38 of 39 rules are automated; 97%

  • High (CAT I): 6 of 6 rules are automated
  • Medium (CAT II): 14 of 15 rules are automated
  • Low (CAT III): 18 of 18 rules are automated

Windows Firewall with Advanced Security, Version 2.2

Title: Microsoft Windows Defender Firewall with Advanced Security Security Technical Implementation Guide
Version: 2
Release: Release: 2 Benchmark Date: 09 Nov 2023 3.4.1.22916 1.10.0
FileName: U_MS_Windows_Firewall_STIG_V2R2_Manual-xccdf.xml
Created: 11/20/2023
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 38 of 39 rules are automated; 97%

  • High (CAT I): 6 of 6 rules are automated
  • Medium (CAT II): 14 of 15 rules are automated
  • Low (CAT III): 18 of 18 rules are automated

Windows Server 2016 DC STIG, Version 2.10

Title: Microsoft Windows Server 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 10 Benchmark Date: 15 Jan 2025 3.5 1.10.0
FileName: U_MS_Windows_Server_2016_DC_STIG_V2R10_Manual-xccdf.xml
Created: 2/19/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 213 of 269 rules are automated; 79%

  • High (CAT I): 20 of 33 rules are automated
  • Medium (CAT II): 185 of 223 rules are automated
  • Low (CAT III): 8 of 13 rules are automated

Windows Server 2016 DC STIG, Version 2.9

Title: Microsoft Windows Server 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 9 Benchmark Date: 15 Nov 2024 3.5 1.10.0
FileName: U_MS_Windows_Server_2016_DC_STIG_V2R9_Manual-xccdf.xml
Created: 12/4/2024
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 214 of 268 rules are automated; 80%

  • High (CAT I): 20 of 32 rules are automated
  • Medium (CAT II): 186 of 223 rules are automated
  • Low (CAT III): 8 of 13 rules are automated

Windows Server 2016 MS STIG, Version 2.10

Title: Microsoft Windows Server 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 10 Benchmark Date: 15 Jan 2025 3.5 1.10.0
FileName: U_MS_Windows_Server_2016_MS_STIG_V2R10_Manual-xccdf.xml
Created: 2/19/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 206 of 240 rules are automated; 86%

  • High (CAT I): 20 of 25 rules are automated
  • Medium (CAT II): 178 of 203 rules are automated
  • Low (CAT III): 8 of 12 rules are automated

Windows Server 2016 MS STIG, Version 2.9

Title: Microsoft Windows Server 2016 Security Technical Implementation Guide
Version: 2
Release: Release: 9 Benchmark Date: 15 Nov 2024 3.5 1.10.0
FileName: U_MS_Windows_Server_2016_MS_STIG_V2R9_Manual-xccdf.xml
Created: 12/4/2024
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 206 of 240 rules are automated; 86%

  • High (CAT I): 20 of 25 rules are automated
  • Medium (CAT II): 178 of 203 rules are automated
  • Low (CAT III): 8 of 12 rules are automated

Windows Server 2019 DC STIG, Version 3.6

Title: Microsoft Windows Server 2019 Security Technical Implementation Guide
Version: 3
Release: Release: 6 Benchmark Date: 01 Oct 2025 3.5.1 1.10.0
FileName: U_MS_Windows_Server_2019_DC_STIG_V3R6_Manual-xccdf.xml
Created: 12/2/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 217 of 278 rules are automated; 78%

  • High (CAT I): 21 of 32 rules are automated
  • Medium (CAT II): 187 of 232 rules are automated
  • Low (CAT III): 9 of 14 rules are automated

Windows Server 2019 DC STIG, Version 3.7

Title: Microsoft Windows Server 2019 Security Technical Implementation Guide
Version: 3
Release: Release: 7 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Windows_Server_2019_DC_STIG_V3R7_Manual-xccdf.xml
Created: 2/19/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 217 of 278 rules are automated; 78%

  • High (CAT I): 21 of 32 rules are automated
  • Medium (CAT II): 187 of 232 rules are automated
  • Low (CAT III): 9 of 14 rules are automated

Windows Server 2019 MS STIG, Version 3.6

Title: Microsoft Windows Server 2019 Security Technical Implementation Guide
Version: 3
Release: Release: 6 Benchmark Date: 01 Oct 2025 3.5.1 1.10.0
FileName: U_MS_Windows_Server_2019_MS_STIG_V3R6_Manual-xccdf.xml
Created: 12/2/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 208 of 248 rules are automated; 84%

  • High (CAT I): 21 of 25 rules are automated
  • Medium (CAT II): 178 of 210 rules are automated
  • Low (CAT III): 9 of 13 rules are automated

Windows Server 2019 MS STIG, Version 3.7

Title: Microsoft Windows Server 2019 Security Technical Implementation Guide
Version: 3
Release: Release: 7 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Windows_Server_2019_MS_STIG_V3R7_Manual-xccdf.xml
Created: 2/19/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 208 of 248 rules are automated; 84%

  • High (CAT I): 21 of 25 rules are automated
  • Medium (CAT II): 178 of 210 rules are automated
  • Low (CAT III): 9 of 13 rules are automated

MS Windows Server 2022 DC STIG, Version 2.6

Title: Microsoft Windows Server 2022 Security Technical Implementation Guide
Version: 2
Release: Release: 6 Benchmark Date: 01 Oct 2025 3.5.1 1.10.0
FileName: U_MS_Windows_Server_2022_DC_STIG_V2R6_Manual-xccdf.xml
Created: 12/2/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 218 of 278 rules are automated; 78%

  • High (CAT I): 20 of 29 rules are automated
  • Medium (CAT II): 189 of 237 rules are automated
  • Low (CAT III): 9 of 12 rules are automated

MS Windows Server 2022 DC STIG, Version 2.7

Title: Microsoft Windows Server 2022 Security Technical Implementation Guide
Version: 2
Release: Release: 7 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Windows_Server_2022_DC_STIG_V2R7_Manual-xccdf.xml
Created: 2/19/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 216 of 277 rules are automated; 78%

  • High (CAT I): 20 of 29 rules are automated
  • Medium (CAT II): 187 of 236 rules are automated
  • Low (CAT III): 9 of 12 rules are automated

MS Windows Server 2022 MS STIG, Version 2.6

Title: Microsoft Windows Server 2022 Security Technical Implementation Guide
Version: 2
Release: Release: 6 Benchmark Date: 01 Oct 2025 3.5.1 1.10.0
FileName: U_MS_Windows_Server_2022_MS_STIG_V2R6_Manual-xccdf.xml
Created: 12/2/2025
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 208 of 248 rules are automated; 84%

  • High (CAT I): 19 of 22 rules are automated
  • Medium (CAT II): 180 of 215 rules are automated
  • Low (CAT III): 9 of 11 rules are automated

MS Windows Server 2022 MS STIG, Version 2.7

Title: Microsoft Windows Server 2022 Security Technical Implementation Guide
Version: 2
Release: Release: 7 Benchmark Date: 05 Jan 2026 3.5.2 1.10.0
FileName: U_MS_Windows_Server_2022_MS_STIG_V2R7_Manual-xccdf.xml
Created: 2/19/2026
Description: This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
Total Stig Rule Coverage: 206 of 247 rules are automated; 83%

  • High (CAT I): 19 of 22 rules are automated
  • Medium (CAT II): 178 of 214 rules are automated
  • Low (CAT III): 9 of 11 rules are automated

PowerStig

Composite Resources
Stig Coverage

Clone this wiki locally