The DoD Cyber Exchange Public site may experience intermittent outages due to maintenance starting November 26th, 2024 and ending November 27th, 2024.

Search

Enter text in box below

STIG Update

October 24, 2024

Note: All STIGs converted to NIST SP 800-53 Rev. 5 CCIs for Q3 (July 2024) were updated to include the deprecated Rev. 4 CCIs to ensure all vulnerabilities are captured in eMASS. STIGs with Rev. 4 reversions that had no...

https://public.cyber.mil/announcement/stig-update/

July 2024 Quarterly Release Rev. 5 STIG Update

July 19, 2024

DISA recently released the following Security Guidance, Security Readiness Review Scripts, and Benchmarks that have been updated to comply with NIST 800-53 Rev. 5:  Note: The previous version of all STIGs updated for Rev. 5 will be retained in the...

https://public.cyber.mil/announcement/july-2024-quarterly-release-rev-5-stig-update/

STIGs Document Library

February 21, 2018

Microsoft Windows Server DNS - This STIG will be used for all Windows DNS servers, whether they are Active   Directory (AD)- integrated, authoritative file-backed DNS zones, a hybrid of both, or a recursive caching server. This STIG must also be...

https://public.cyber.mil/stigs/downloads/

STIGs Frequently Asked Questions

February 21, 2018

Microsoft SharePoint 2007 - No STIG was released for Microsoft SharePoint 2007.  The Microsoft SharePoint 2010 STIG should be used and can be found here: Link Oracle 12c Release 2 Database STIG - There are no current plans to develop a STIG. Please...

https://public.cyber.mil/stigs/faqs/

GPO Update

October 30, 2024

Group Policy Objects (GPOs) have been updated for October 2024. Refer to the Change Log document included in the zip file for additional information.    The DISA Risk Management Executive posts the GPOs for use by system administrators to ease...

https://public.cyber.mil/announcement/gpo-update/
Topics

U.S. Government Notice and Consent

You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.

By using this IS (which includes any device attached to this IS), you consent to the following conditions:

· The USG routinely intercepts and monitors communications on this IS for purposes including, but not limited to, penetration testing, COMSEC monitoring, network operations and defense, personnel misconduct (PM), law enforcement (LE), and counterintelligence (CI) investigations.

· At any time, the USG may inspect and seize data stored on this IS.

· Communications using, or data stored on, this IS are not private, are subject to routine monitoring, interception, and search, and may be disclosed or used for any USG authorized purpose.

· This IS includes security measures (e.g., authentication and access controls) to protect USG interests – not for your personal benefit or privacy.

Notwithstanding the above, using this IS does not constitute consent to PM, LE or CI investigative searching or monitoring of the content of privileged communications, or work product, related to personal representation or services by attorneys, psychotherapists, or clergy, and their assistants. Such communications and work product are private and confidential. See User Agreement for details.

OK