STIG Viewing Tools
XCCDF formatted SRGs and STIGs are intended be ingested into an SCAP validated tool for use in validating compliance of a Target of Evaluation (TOE). As such, getting to the content of a XCCDF formatted STIG to read and understand the content is not as easy as opening a .doc or .pdf file and reading it. The process can be a little confusing and trying. Below are tools which can be used to view the STIGs and a Whitepaper describing the STIG Viewing processes.
DISA has produced standalone versions of STIG Viewer for the Windows and Linux platforms on 64-bit x86 processors. With the end of free support for Java 8 in early 2019, Oracle Corporation changed the licensing and distribution model for Java software. Users without supported Java 8 SE environments should use the standalone versions of STIG Viewer. Users with supported Java 8 SE environments may still use the current JAR file. DISA will base future STIG Viewer development on open-source software developed by the OpenJDK and OpenJFX projects.
Title | Size | Updated | |
---|---|---|---|
STIG Viewer User Guide (Sep 2022)
|
1.77 MB |
21 Sep 2022
|
|
STIG Viewer 2.17 Hashes
|
1.36 KB |
21 Sep 2022
|
|
STIG Viewer 2.17-Win64
|
54.03 MB |
21 Sep 2022
|
|
STIG Viewer 2.17-Win64 msi
|
54.26 MB |
21 Sep 2022
|
|
STIG Viewer 2.17-Linux
|
73.38 MB |
21 Sep 2022
|
|
STIG Viewer 2.17
|
1.14 MB |
21 Sep 2022
|
|
How to Create and SRG-STIG ID Mapping Spreadsheet
|
298.21 KB |
03 Feb 2021
|
|
Vendor STIG Acronym List
|
178.74 KB |
16 Jan 2020
|
|
STIG Viewer Video
|
— |
14 Jun 2018
|
|
STIG Sorted by STIG ID
|
103.46 KB |
30 Mar 2015
|
|
STIG Sorted by Vulnerability ID
|
101.59 KB |
30 Mar 2015
|
SRG/STIG Applicability Guide and Collection Tool
The purpose of the SRG/STIG Applicability Guide and Collection Tool is to assist the SRG/STIG user community in determining what SRGs and/or STIGs apply to a particular situation or Information System (IS) and to create a fully formatted document containing a “Collection” of SRGs and STIGs applicable to the situation being addressed.
The ISs or situations covered include a Base/Camp/Post/or Station (B/C/P/S), facility, Program /Service/major application, enclave, network, system, device, or vendor’s product.
The Collection document can serve as an artifact in the System Authorization and Risk Management processes.
The SRG/STIG Applicability Guide and Collection Tool will be updated periodically to include the most recent new SRG/STIG releases and sunset products.
For assistance, please contact disa.stig_spt@mail.mil
Title | Size | Updated | |
---|---|---|---|
STIG Applicability Guide - Hashes v1.9
|
1.06 KB |
16 Sep 2021
|
|
STIG Applicability Guide - Linux v1.9
|
38.61 MB |
15 Sep 2021
|
|
STIG Applicability Guide - Windows v1.9
|
36.88 MB |
15 Sep 2021
|
|
STIG Applicability Guide - User Guide v1.x
|
2.65 MB |
12 May 2021
|
SRG-STIG Applicability Guide (BETA)
This is a pre-release of the next version of the SRG-STIG Applicability Guide.
Please provide feedback to disa.stig_spt@mail.mil
Title | Size | Updated | |
---|---|---|---|
STIG Applicability Guide (BETA) - Windows MSI v2.3.0
|
91.83 MB |
09 Nov 2022
|
|
STIG Applicability Guide (BETA) - Windows v2.3.0
|
92.24 MB |
09 Nov 2022
|
|
STIG Applicability Guide (BETA) - Linux v2.3.0
|
88.11 MB |
09 Nov 2022
|
|
STIG Applicability Guide (BETA) - Hashes v2.3.0
|
2.19 KB |
09 Nov 2022
|
|
STIG Applicability Guide (BETA) - User Guide v2.x
|
1.88 MB |
07 Sep 2022
|