STIG Viewing Tools

XCCDF formatted SRGs and STIGs are intended be ingested into an SCAP validated tool for use in validating compliance of a Target of Evaluation (TOE). As such, getting to the content of a XCCDF formatted STIG to read and understand the content is not as easy as opening a .doc or .pdf file and reading it. The process can be a little confusing and trying.  Below are tools which can be used to view the STIGs and a Whitepaper describing the STIG Viewing processes.

DISA has produced standalone versions of STIG Viewer for the Windows, Linux, and macOS platforms on 64-bit x86 processors. With the end of free support for Java 8 in early 2019, Oracle Corporation changed the licensing and distribution model for Java software. Users without supported Java 8 SE environments should use the standalone versions of STIG Viewer. Users with supported Java 8 SE environments may still use the current JAR file. DISA will base future STIG Viewer development on open-source software developed by the OpenJDK and OpenJFX projects.

  Title Size Updated
Vendor STIG Acronym List Vendor STIG Acronym List
178.74 KB 2020 01 16
STIG Viewer 2.9.1 - Win64 STIG Viewer 2.9.1 - Win64
57.24 MB 2019 09 27
STIG Viewer 2.9.1 - Mac STIG Viewer 2.9.1 - Mac
58.19 MB 2019 09 27
STIG Viewer 2.9.1 - Linux STIG Viewer 2.9.1 - Linux
66.09 MB 2019 09 27
STIG Viewer 2.9.1 STIG Viewer 2.9.1
8.07 MB 2019 09 27
STIG Viewer 2.9.1 Hashes STIG Viewer 2.9.1 Hashes
1.38 KB 2019 09 27
STIG Viewer 2.x User Guide STIG Viewer 2.x User Guide
2.2 MB 2019 09 27
STIG Viewer Version 2.9 Change Log​ STIG Viewer Version 2.9 Change Log​
181.41 KB 2019 04 04
HOW_TO_VIEW_SRGs_and_STIGs HOW_TO_VIEW_SRGs_and_STIGs
79.49 KB 2018 11 30
STIG Viewer Video STIG Viewer Video
2018 06 14
STIG Sorted by STIG ID STIG Sorted by STIG ID
103.46 KB 2015 03 30
STIG Sorted by Vulnerability ID STIG Sorted by Vulnerability ID
101.59 KB 2015 03 30

SRG/STIG Applicability Guide and Collection Tool

The purpose of the SRG/STIG Applicability Guide and Collection Tool is to assist the SRG/STIG user community in determining what SRGs and/or STIGs apply to a particular situation or Information System (IS) and to create a fully formatted document containing a “Collection” of SRGs and STIGs applicable to the situation being addressed.

The ISs or situations covered include a Base/Camp/Post/or Station (B/C/P/S), facility, Program /Service/major application, enclave, network, system, device, or vendor’s product.

The Collection document can serve as an artifact in the System Authorization and Risk Management processes.

The SRG/STIG Applicability Guide and Collection Tool will be updated periodically to include the most recent new SRG/STIG releases and sunset products.

For assistance, please contact disa.stig_spt@mail.mil

  Title Size Updated
Network Router Switch STIGS Applicability Guide Network Router Switch STIGS Applicability Guide
25.38 KB 2020 02 20
SRG-STIG Applicability Guide - User Guide v1.4 SRG-STIG Applicability Guide - User Guide v1.4
2.09 MB 2020 02 20
STIG Applicability Guide-Mac STIG Applicability Guide-Mac
33.43 MB 2019 11 12
STIG Applicability Guide-Win64 STIG Applicability Guide-Win64
34.05 MB 2019 11 12
STIG Applicability Guide-Linux STIG Applicability Guide-Linux
37.66 MB 2019 11 12