CIS Benchmarks List
The CIS Benchmarks™ are prescriptive configuration recommendations for more than 25+ vendor product families. They represent the consensus-based effort of cybersecurity experts globally to help you protect your systems against threats more confidently.
DOWNLOAD BENCHMARKS
Are you new to the CIS Benchmarks? Learn More
Find the CIS Benchmark you're looking for
Step 1Select your technology.Choose from operating systems, cloud providers, network devices, and more.
Step 2If applicable, select a subcategory for your technology.Some of the technologies have subcategories that can help you narrow down your search even further.
Step 3(Optional) Filter by Product Coverage.Crossreference CIS Benchmarks with CIS Hardened Images and/or CIS-CAT Pro.
Step 4Explore and download CIS Benchmarks.Open the CIS Benchmark dropdowns below to learn what resources are available for them or to download the latest version.
Step 5(Optional) Access older versions of CIS Benchmarks in CIS Workbench.For quick access to our archived, scroll down the CIS Benchmarks list in this page to the “older versions” callout.
Filter by
Build Kits
Easily configure your systems in accordance with a CIS Benchmark.
View Available Build KitsAlibaba Cloud
- Alibaba Cloud Foundation (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Aliyun Linux
- Alibaba Cloud Linux 3 (1.0.0)
- Aliyun Linux 2 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
AlmaLinux OS
- AlmaLinux OS 9 (2.0.0)
- AlmaLinux OS 8 (3.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Amazon Linux
- Amazon Linux 2 (3.0.0)
- Amazon Linux 2023 (1.0.0)
- Amazon Linux 2 STIG (2.0.0)
- Amazon Linux (2.1.0)
- Amazon Linux 2014.09-2015.03 (1.1.0)
- Amazon Linux 2014.09 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Amazon Web Services
- Amazon Web Services Foundations (4.0.0)
- AWS Storage Services (1.0.0)
- AWS Database Services (1.0.0)
- AWS End User Compute Services (1.1.0)
- AWS Compute Services (1.0.0)
- Amazon Web Services Three-tier Web Architecture (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Apache Cassandra
- Apache Cassandra 4.1 (1.0.0)
- Apache Cassandra 4.0 (1.1.0)
- Apache Cassandra 3.11 (1.2.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Apache HTTP Server
- Apache HTTP Server 2.4 (2.2.0)
- Apache HTTP Server 2.2 (3.6.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Apache Tomcat
- Apache Tomcat 10.1 (1.0.0)
- Apache Tomcat 10 (1.1.0)
- Apache Tomcat 9 (1.2.0)
- Apache Tomcat 8 (1.1.0)
- Apache Tomcat 7 (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Apple iOS
- Apple iPadOS 18 (1.0.0)
- Apple iOS 18 (1.0.0)
- Apple iPadOS 17 (1.1.0)
- Apple iOS 17 (1.1.0)
- Microsoft Intune for Apple iOS 17 and iPadOS 17 (1.0.0)
- Apple iOS 16 and iPadOS 16 Intune (1.0.0)
- Apple iOS 16 and iPadOS 16 (1.1.0)
- Apple iOS 16 (1.0.0)
- Apple iOS 15 and iPadOS 15 (1.1.0)
- Apple iOS 14 and iPadOS 14 (1.0.0)
- Apple iOS 13 and iPadOS 13 (1.0.0)
- Apple iOS 12 (1.0.0)
- Apple iOS 11 (1.0.0)
- Apple iOS 10 (2.0.0)
- Apple iOS 9 (1.0.0)
- Apple iOS 8 (1.0.0)
- Apple iOS 7 (1.1.0)
- Apple iOS 6 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Apple macOS
- Apple macOS 13.0 Ventura Cloud-tailored (1.1.0)
- Apple macOS 13.0 Ventura (3.0.0)
- Apple macOS 14.0 Sonoma (2.0.0)
- Apple macOS 15.0 Sequoia (1.0.0)
- Apple macOS 12.0 Monterey (3.1.0)
- Apple macOS 14.0 Sonoma Cloud-tailored (1.0.0)
- Apple macOS 12.0 Monterey Cloud-tailored (1.0.0)
- Apple macOS 11.0 Big Sur (4.0.0)
- Apple macOS 10.15 Catalina (3.0.0)
- Apple macOS 10.14 Mojave (2.0.0)
- Apple macOS 11.0 (1.2.0)
- Apple macOS 10.14 (1.4.0)
- Apple macOS 10.15 (1.4.0)
- Apple macOS 10.12 (1.2.0)
- Apple macOS 10.13 (1.1.0)
- Apple OSX 10.12 (1.0.0)
- Apple OSX 10.10 (1.2.0)
- Apple OSX 10.9 (1.3.0)
- Apple OSX 10.11 (1.1.0)
- Apple OSX 10.8 (1.3.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Azure Linux
- AKS Optimized Azure Linux (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
BIND
- ISC BIND DNS Server 9.11 (1.0.0)
- ISC BIND DNS Server 9.9 (3.0.1)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Bottlerocket
- Bottlerocket (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
CentOS Linux
- CentOS Linux 7 (4.0.0)
- CentOS Linux 6 (3.0.0)
- CentOS Linux 8 (2.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Check Point Firewall
- Check Point Firewall (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Cisco
- Cisco ASA 9.x Firewall (1.1.0)
- Cisco IOS XE 16.x (2.1.0)
- Cisco IOS XE 17.x (2.1.0)
- Cisco NX-OS (1.1.0)
- Cisco Wireless LAN Controller 7 (1.1.0)
- Cisco IOS 15 (4.1.1)
- Cisco IOS 12 (4.0.0)
- Cisco Firepower Threat Defense (1.0.0)
- Cisco Firewall (4.1.0)
- Cisco Firewall v8.x (4.2.0)
- Cisco IOS XR 7.x (1.0.0)
- Cisco IOS 17.x (2.0.0)
- Cisco IOS 16 (2.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Debian Linux
- Debian Linux 12 (1.1.0)
- Debian Linux 11 (2.0.0)
- Debian Linux 11 STIG (1.0.0)
- Debian Linux 10 (2.0.0)
- Debian Linux 8 (2.0.2)
- Debian Linux 9 (1.0.1)
- Debian Linux 7 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Distribution Independent Linux
- Distribution Independent Linux (2.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Docker
- Docker (1.7.0)
- Docker 1.6 (1.0.0)
- Docker Community Edition (1.1.0)
- Docker 1.13.0 (1.0.0)
- Docker 1.12.0 (1.0.0)
- Docker 1.11.0 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
F5
- F5 Networks (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Fortinet
- Fortigate 7.0.x (1.3.0)
- Fortigate (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
FreeBSD
- FreeBSD 14 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Google Android
- Google Android (1.5.0)
- Google Android 7 (1.0.0)
- Google Android 4 (1.0.0)
- Google Android 2.3 (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Google Chrome
- Google Chrome Browser Cloud Management (1.0.0)
- Google Chrome (3.0.0)
- Google Chrome 46 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Google Cloud Computing Platform
- Google Container-Optimized OS (1.2.0)
- Google Cloud Platform Foundation (3.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Google Workspace
- Google Workspace Foundations (1.2.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
IBM AIX
- IBM AIX 7 (1.0.0)
- IBM AIX 7.2 (1.1.0)
- IBM AIX 7.1 (2.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
IBM Cloud Foundations
- IBM Cloud Foundations (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
IBM Db2
- IBM Db2 11 (1.1.0)
- IBM DB2 9 (3.0.1)
- IBM DB2 (1.2.0)
- IBM DB2 10 (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
IBM i
- IBM i V7R5M0 (2.0.0)
- IBM i V7R4M0 (2.0.0)
- IBM i V7R2M0 (1.0.2)
- IBM i V7R3M0 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
IBM WebSphere
- IBM WebSphere Liberty (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
IBM Z System
- IBM z/OS V2R5 with RACF (1.1.0)
- IBM Db2 13 for z/OS (1.0.0)
- IBM CICS Transaction Server 6.1 (1.0.0)
- RHEL8 on IBM Z Linux (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Juniper
- Juniper OS (2.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Kubernetes
- Oracle Cloud Infrastructure Container Engine for Kubernetes(OKE) (1.6.0)
- Azure Kubernetes Service (AKS) (1.6.0)
- Google Kubernetes Engine (GKE) (1.6.1)
- Google Kubernetes Engine (GKE) Autopilot (1.0.0)
- Red Hat OpenShift Container Platform (1.6.0)
- Amazon Elastic Kubernetes Service (EKS) (1.5.0)
- Kubernetes (1.9.0)
- RedHat OpenShift Container Platform (1.4.0)
- Kubernetes V1.24 (1.0.0)
- Kubernetes V1.23 (1.0.1)
- Kubernetes V1.20 (1.0.1)
- RedHat OpenShift Container Platform v4 (1.1.0)
- Alibaba Cloud Container Service For Kubernetes (ACK) (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
LXD
- Ubuntu 18.04 LXD Container (1.0.0)
- Ubuntu Linux 18.04 LXD Host (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
MariaDB
- MariaDB 10.11 (1.0.0)
- MariaDB 10.6 (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft 365
- Microsoft 365 Foundations (3.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft Azure
- Microsoft Azure Foundations (3.0.0)
- Microsoft Azure Database Services (1.0.0)
- Microsoft Azure Compute Services (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft Dynamics 365 Power Platform
- Microsoft Dynamics 365 Power Platform (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft Exchange Server
- Microsoft Exchange Server 2019 (1.0.0)
- Microsoft Exchange Server 2016 (1.0.0)
- Microsoft Exchange Server 2013 (1.1.0)
- Microsoft Exchange Server 2010 (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft IIS
- Microsoft IIS 10 (1.2.1)
- Microsoft IIS 8 (1.5.1)
- Microsoft IIS 7 (1.8.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft Intune for Microsoft Windows
- Microsoft Intune for Windows 11 (3.0.1)
- Microsoft Intune for Windows 10 (3.0.1)
- Microsoft Intune for Office (1.0.0)
- Microsoft Intune for Windows 10 Release 2004 (1.0.1)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft Office
- Microsoft Office Enterprise (1.2.0)
- Microsoft Office 2013 (1.1.0)
- Microsoft Office Excel 2016 (1.0.1)
- Microsoft Office Excel 2013 (1.0.1)
- Microsoft Office Access 2013 (1.0.1)
- Microsoft Office PowerPoint 2016 (1.0.1)
- Microsoft Office PowerPoint 2013 (1.0.1)
- Microsoft Office 2016 (1.1.0)
- Microsoft Office Access 2016 (1.0.1)
- Microsoft Office Word 2013 (1.1.0)
- Microsoft Office Outlook 2013 (1.1.0)
- Microsoft Office Outlook 2016 (1.1.0)
- Microsoft Office Word 2016 (1.1.0)
- Microsoft PowerPoint 2013 (1.0.0)
- Microsoft Outlook 2010 (1.0.0)
- Microsoft Outlook 2013 (1.0.0)
- Microsoft Access 2013 (1.0.0)
- Microsoft Word 2013 (1.0.0)
- Microsoft Excel 2013 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft SharePoint
- Microsoft SharePoint 2019 (1.0.0)
- Microsoft SharePoint 2016 (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft SQL Server
- Microsoft SQL Server 2019 (1.4.0)
- Microsoft SQL Server 2022 (1.1.0)
- Microsoft SQL Server 2017 (1.3.0)
- Microsoft SQL Server 2016 (1.4.0)
- Microsoft SQL Server 2008 R2 (1.7.0)
- Microsoft SQL Server 2012 (1.6.0)
- Microsoft SQL Server 2014 (1.5.0)
- Microsoft SQL Server 2008 R2 Database Engine (1.1.0)
- Microsoft SQL Server 2012 Database Engine (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft Web Browser
- Microsoft Edge (3.0.0)
- Microsoft Internet Explorer 11 (1.0.0)
- Microsoft Internet Explorer 10 (1.1.0)
- Microsoft Internet Explorer 9 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft Windows Desktop
- Microsoft Windows 11 Stand-alone (3.0.0)
- Microsoft Windows 10 EMS Gateway (3.0.0)
- Microsoft Windows 10 Stand-alone (3.0.0)
- Microsoft Windows 11 Enterprise (3.0.0)
- Microsoft Windows 10 Enterprise (3.0.0)
- Microsoft Windows 8.1 Workstation (2.4.1)
- Microsoft Windows 10 Enterprise Release 21H1 (1.11.0)
- Microsoft Windows 10 Enterprise Release 20H2 (1.10.1)
- Microsoft Windows 10 Enterprise Release 2004 (1.9.1)
- Microsoft Windows 7 Workstation (3.2.0)
- Microsoft Windows 10 Enterprise Release 1909 (1.8.1)
- Microsoft Windows 10 Enterprise Release 1903 (1.7.1)
- Microsoft Windows 10 Enterprise Release 1809 (1.6.1)
- Microsoft Windows 10 Enterprise Release 1803 (1.5.0)
- Microsoft Windows 10 Enterprise Release 1709 (1.4.0)
- Microsoft Windows 10 Enterprise Release 1703 (1.3.0)
- Microsoft Windows 10 Enterprise Release 1607 (1.2.0)
- Microsoft Windows 10 Enterprise Release 1511 (1.1.1)
- Microsoft Windows 7 (3.0.0)
- Microsoft Windows 8.1 (2.2.0)
- Microsoft Windows 10 Enterprise RTM (Release 1507) (1.0.0)
- Microsoft Windows XP (3.1.0)
- Microsoft Windows 8 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Microsoft Windows Server
- Microsoft Windows Server 2016 STIG (3.0.0)
- Microsoft Windows Server 2019 Stand-alone (2.0.0)
- Microsoft Windows Server 2019 (3.0.1)
- Microsoft Windows Server 2016 (3.0.0)
- Microsoft Windows Server 2022 (3.0.0)
- Microsoft Windows Server 2022 STIG (1.0.0)
- Microsoft Windows Server 2019 STIG (2.0.0)
- Microsoft Windows Server 2008 (2.0.0)
- Microsoft Windows Server 2012 R2 (3.0.0)
- Microsoft Windows Server 2012 (non-R2) (3.0.0)
- Microsoft Windows Server 2008 (non-R2) (3.3.1)
- Microsoft Windows Server 2008 R2 (3.3.1)
- Azure Compute Microsoft Windows Server 2022 (1.0.0)
- Azure Compute Microsoft Windows Server 2019 (1.0.0)
- Microsoft Windows Server 2016 RTM (Release 1607) (1.3.0)
- * Microsoft Windows Server 2012 R2 (1.0.0)
- Microsoft Windows Server 2003 (3.1.0)
- Microsoft Windows Server 2008 (2.1.0)
- Microsoft Windows Server 2003 (3.0.0)
- Microsoft Windows Server 2008 R2 (2.0.0)
- Microsoft Windows Server 2012 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
MIT Kerberos
- MIT Kerberos 1.10 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
MongoDB
- MongoDB 7 (1.1.0)
- MongoDB 6 (1.2.0)
- MongoDB 5 (1.2.0)
- MongoDB 3.6 (1.1.0)
- MongoDB 4 (1.0.0)
- MongoDB 3.4 (1.0.0)
- MongoDB 3.2 (1.0.0)
- MongoDB (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Mozilla Firefox
- Mozilla Firefox ESR GPO (1.0.0)
- Mozilla Firefox 102 ESR (1.0.0)
- Mozilla Firefox 38 ESR (1.0.0)
- Mozilla Firefox 24 ESR (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
NGINX
- NGINX (2.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Oracle Cloud Infrastructure
- Oracle Cloud Infrastructure Foundations (2.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Oracle Database
- Oracle Database 19c (1.2.0)
- Oracle Database 18c (1.1.0)
- Oracle Database 12c (3.0.0)
- Oracle Database 11g R2 (2.2.0)
- Oracle Database Server 11 - 11g R2 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Oracle Linux
- Oracle Linux 9 (2.0.0)
- Oracle Linux 7 (4.0.0)
- Oracle Linux 8 (3.0.0)
- Oracle Linux 6 (2.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Oracle MySQL
- Oracle MySQL Enterprise Edition 8.0 (1.3.0)
- Oracle MySQL Community Server 8.0 (1.0.0)
- Oracle MySQL Enterprise Edition 5.7 (2.0.0)
- Oracle MySQL Community Server 5.7 (2.0.0)
- Oracle MySQL Enterprise Edition 5.6 (2.0.0)
- Oracle MySQL Community Server 5.6 (2.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Oracle Solaris
- Oracle Solaris 11.4 (1.1.0)
- Oracle Solaris 10 (5.2.0)
- Oracle Solaris 11.1 (1.0.0)
- Oracle Solaris 11 (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Palo Alto Networks
- Palo Alto Firewall 11 (1.1.0)
- Palo Alto Firewall 10 (1.2.0)
- Palo Alto Firewall 6 (1.0.0)
- Palo Alto Firewall 8 (1.0.0)
- Palo Alto Firewall 7 (1.0.0)
- Palo Alto Firewall 9 (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
pfSense Firewall
- pfSense Firewall (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
PostgreSQL
- PostgreSQL 13 (1.2.0)
- PostgreSQL 14 (1.2.0)
- PostgreSQL 15 (1.1.0)
- PostgreSQL 16 (1.0.0)
- PostgreSQL 12 (1.1.0)
- PostgreSQL 10 (1.0.0)
- PostgreSQL 11 (1.0.0)
- PostgreSQL 9.5 (1.1.0)
- PostgreSQL 9.6 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Print Devices
- Multi-Function Device (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Red Hat Enterprise Linux
- Red Hat Enterprise Linux 9 (2.0.0)
- Red Hat Enterprise Linux 7 (4.0.0)
- Red Hat Enterprise Linux 8 (3.0.0)
- Red Hat Enterprise Linux 7 STIG (2.0.0)
- Red Hat Enterprise Linux 8 STIG (1.0.0)
- Red Hat Enterprise Linux 6 (3.0.0)
- Red Hat Enterprise Linux 5 (2.2.1)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Robot Operating System (ROS)
- ROS Melodic (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Rocky Linux
- Rocky Linux 9 (2.0.0)
- Rocky Linux 8 (2.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Safari Browser
- macOS Safari (2.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Snowflake
- Snowflake Foundations (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Software Supply Chain Security
- GitLab (1.0.1)
- GitHub (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Sophos
- SOPHOS XG Firewall v18 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
SUSE Linux Enterprise Server
- SUSE Linux Enterprise 12 (3.2.0)
- SUSE Linux Enterprise 11 (2.1.1)
- SUSE Linux Enterprise 15 (1.1.1)
- SUSE Linux Enterprise Server 12 (1.0.0)
- SUSE Linux Enterprise Server 11 (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Talos Linux
- Talos Linux (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Ubuntu Linux
- Ubuntu Linux 24.04 LTS (1.0.0)
- Ubuntu Linux 22.04 LTS (2.0.0)
- Ubuntu Linux 18.04 LTS (2.2.0)
- Ubuntu Linux 20.04 LTS STIG (2.0.0)
- Ubuntu Linux 20.04 LTS (2.0.1)
- Ubuntu Linux 16.04 LTS (2.0.0)
- Ubuntu Linux 14.04 LTS (2.1.0)
- Ubuntu 14.04 LTS Server (1.0.0)
- Ubuntu 12.04 LTS Server (1.1.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
VMware
- VMware ESXi 6.7 - Final Update (1.4.0)
- VMware ESXi 7.0 (1.4.0)
- VMware ESXi 8.0 (1.1.0)
- VMware ESXi 5.1 (1.0.1)
- VMware ESXi 6.7 (1.3.0)
- VMware ESXi 6.5 (1.0.0)
- VMware ESXi 5.5 (1.2.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
YugabyteDB
- YugabyteDB 2.x (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Zoom
- Zoom (1.0.0)
To further explore this Benchmark, click here. If you want to tailor the security recommendations of this Benchmark, you can do so using a CIS SecureSuite Membership
Can’t find an older version?
Old Benchmarks that are no longer supported by CIS and the CIS Benchmarks Community are not listed above. To see the list of archived CIS Benchmarks, access the CIS WorkBench here.
Want a CIS Benchmarks Walkthrough?
Join our CIS SecureSuite webinar and learn how you can prioritize your security program to meet the requirements of regulatory and compliance frameworks.
Have a Question About the CIS Benchmarks?
Check out our FAQ page for more information about the whats, the hows, and the whys of CIS Benchmarks.
Still need help?
At CIS, we are committed to serving the greater IT security community. We value your questions and feedback.