Welcome to the Cyber Data Trackr

DoD Cyber Security Compliance requirements present an ever-changing target that needs constant management. Simplify your compliance processes with the latest DISA and NIST security requirements in an easy to use and searchable format.

RMF DIACAP STIGs SCAPs CCIs
  • Latest STIGs / SCAPs

  • Release Date Title Version
    2019-08-06 STIG - Microsoft Sql Server 2012 V1R19
    2019-08-06 STIG - Microsoft Sql Server 2012 V1R19
    2019-08-06 STIG - Ms Sql Server 2016 Instance V1R6
    2019-08-06 STIG - Oracle Database 11.2g V1R15
    2019-08-06 STIG - Oracle Database 12c V1R13
    2019-07-26 SCAP - Adobe Acrobat Reader Dc Classic Track V001.006R1
    2019-07-26 SCAP - Adobe Acrobat Reader Dc Continuous Track V001.005R1
    2019-07-26 SCAP - Google Chrome Current Windows V001.012R1
    2019-07-26 SCAP - Windows 10 V001.015R1
    2019-07-26 SCAP - Windows 2008 Domain Controller V006.044R6
    2019-07-26 SCAP - Windows 2008 Member Server V006.044R6
    2019-07-26 SCAP - Windows Server 2008 R2 Domain Controller V001.032R1
    2019-07-26 SCAP - Windows Server 2008 R2 Member Server V001.033R1
    2019-07-26 SCAP - Windows Server 2012/2012 R2 Domain Controller V002.017R2
    2019-07-26 SCAP - Windows Server 2012/2012 R2 Member Server V002.016R2
    2019-07-26 SCAP - Ms Windows Defender Antivirus V001.003R1
    2019-07-26 SCAP - Windows Server 2016 V001.010R1
    2019-07-26 SCAP - Mozilla Firefox V001.003R1
    2019-07-26 SCAP - Mozilla Firefox V001.003R1
    2019-07-26 SCAP - Red Hat Enterprise Linux 6 V001.024R1
    2019-07-26 SCAP - Red Hat Enterprise Linux 7 V002.004R2
    2019-07-26 SCAP - Solaris 10 Sparc V001.022R1
    2019-07-26 SCAP - Solaris 10 X86 V001.023R1
    2019-07-26 SCAP - Solaris 11 Sparc V001.012R1
    2019-07-26 SCAP - Solaris 11 X86 V001.012R1
    2019-07-16 STIG - Microsoft Dotnet Framework 4.0 V1R8
    2019-07-09 STIG - Windows 10 V1R18
    2019-07-09 STIG - Windows Server 2016 V1R9
    2019-07-09 STIG - Windows Server 2019 V1R2
    2019-07-07 STIG - Ms Sharepoint 2013 V1R7
    2019-07-06 STIG - Adobe Acrobat Reader Dc Continuous Track V1R6
    2019-07-03 STIG - Layer 2 Switch Security Requirements Guide V1R4
    2019-07-03 STIG - Microsoft Windows 2008 Server Domain Name System V1R6
    2019-07-03 STIG - Mcafee Application Control 8.x V1R5
    2019-07-01 STIG - Adobe Acrobat Professional Dc Classic V1R3
    2019-07-01 STIG - Adobe Acrobat Professional Dc Continuous V1R2
    2019-07-01 STIG - Adobe Acrobat Reader Dc Classic Track V1R5
    2019-07-01 STIG - Apple Os X 10.12 V1R5
    2019-07-01 STIG - Apple Os X 10.13 V1R3
    2019-07-01 STIG - Application Server Security Requirements Guide V2R6
    2019-07-01 STIG - General Purpose Operating System Srg V1R6
    2019-07-01 STIG - Juniper Router Ndm V1R2
    2019-07-01 STIG - Juniper Router Rtr V1R2
    2019-07-01 STIG - Oracle Weblogic Server 12c V1R6
    2019-07-01 STIG - Router Security Requirements Guide V3R3
    2019-06-28 STIG - Bind 9.x V1R7
    2019-06-28 STIG - Central Log Server Security Requirements Guide V1R2
    2019-06-28 STIG - Firewall Security Requirements Guide V1R4
    2019-06-28 STIG - Juniper Srx Sg Alg V1R4
    2019-06-28 STIG - Juniper Srx Sg Ndm V1R3
    • Change Log:

    • 9-25-2019:
      • ScansToPoam Module
        • Created fixes to make module cross browser compatible
        • Updated output on POAM56 to use eMASS Security Check Values
        • Updated POAM56 to not include a line break in the Milestone With Completion Date column
        • Updated Predisposing Conditions columns to clean up scan result data dumps
        • Updated POAM56 tab to properly show risk levels
      • STIG Comparison Page
        • Updated STIG Compare page to properly display highlights on all themes
      • General Site
        • Added Feedback form for users on site
    • August 2019:
      • 8-8-2019:
        • Ingested the latest DISA release of STIGs and SCAPs.
    • July 2019:
      • 7-6-2019:
        • Refactored application to simultaneously support the commercial, standalone and future DoN installs on a singular code base.
        • Updated the STIG pages to allow for the updating and generation of CKL files (with comments, finding details and requirement statuses) in the standalone installation
        • Created a STIG to Excel transcoder that will convert between CKL and XLS files. Available on the commercial site, and on the stand alone site with additional scan data properties.
        • Updated the Scans To Poam module in the stand alone installation to include:
          • PPSM - Ports, Protocols and Services and descriptions
          • Linux Patches - Applications installed on Linux/Unix systems
          • Scan Info - A Breakdown of the automated scans executed and important scan details
          • Local Users - Local users installed on each host scanned
          • Missing Patches - Patches that need to be installed on hosts
          • Traceability - A traceability sync between the RAR, POAM and POAM56 tabs
        • Updates to the standalone download to only use the site source and native portable installations of Apache HTTPD 2.4 and PHP 7.2
        • Updates to the Laravel framework to version 5.8
        • Updates to the site needed PHP modules
        • Updates to the site needed JS modules
        • Ingested the latest STIGs and SCAPs from DISA
    • May 2019:
      • 5-7-2019:
        • Added options to 'compare' all STIGs on the STIGs panel
        • Updated sorting of STIG Versions and Releases
    • April 2019:
      • 4-26-2019:
        • Removed all external data processing functions
    • March 2019:
      • 3-19-2019:
        • Added RMF Controls to STIG and SCAP Requirement display
      • 3-15-2019:
        • Updated Laravel Framework to version 5.7.28
        • Updated Bootstrap Framework to version 4.3.1
        • Updated backend to properly route URLs with multiple slashes
        • Updated site to include theming support (Check Out Flatly)
        • Updated all NPM modules, internallized all library calls (The site is not entirely standalone)
        • Added large alert for Internet Explorer Users (Browser not supported)
        • Corrected an XSS bug on the new CKL page that was allowing javascript to execute on field update
        • Changed the import verbiage when SCAP files are imported for CKL Requirements
        • Updated ScansToPoam to properly map fields to the POAM, POAM56 and RAR Tabs
        • Corrected a bug preventing multiple upload tasks from parsing on the ScansToPoam Module
      • 3-03-2019:
        • Ingested new STIGs and SCAPs
        • Added CCI Definition Data to Scans2Poam Export
        • Updated STIG Module:
          • Import CKL and XCCDF Data
          • Allow inline editing of CKL Data
          • Export valid CKL files based on updated fields
    • February 2019:
      • 2-10-2019:
        • Added linked RMF and DIACAP controls to CCI tab
      • 2-9-2019:
        • Created a Standalone Bundle of this site available on the Utilities tab
        • Updates to the Scans to POAM Module
          • Added filters to the Software List to remove unnecessary applications
          • Added a PPSM tab
          • Added an Operating System Count tab
          • Added a Missing Patches tab
          • Fixed a bug on the STIG Data tab
      • 2-3-2019:
        • Added routes to view latest STIGs or SCAPs without specifying version and release in the URL
        • Updates to the Scans to POAM Module
          • Updated the parsing and rendering engine to be more efficient
          • Added Windows software list tab
          • Added C-I-A outputs for RAR tab
          • Added RMF Control Data tab
          • Added applicable STIG Data tab
    • January 2019:
      • 1-30-2019:
        • Fixed DIFF coloring bug for STIG comparison
        • Fixed sorting mechanism for low, medium and high
        • Added search modules for Checks and Fixes
      • 1-29-2019:
        • Bug Fixes and Updates
          • Fixed sorting issue with STIG Releases
          • Added 'No Change' category to Comparison Totals
          • Fixed bug where 'added' and 'removed' were backwards
      • 1-27-2019:
        • Ingested the latest STIGs and SCAPs from DISA
        • Added the option to export STIGs directly to Stig Viewer v2.8 Checklists
        • Added the option to update existing Checklists to the current STIG version on the STIG pages
      • 1-14-2019:
        • Made updates to Scans to Poam module
          • Added data point fill ins
          • Added option to pre-fill SCD dates
          • Added option to Expand hostnames
          • Added option to Condense Test Plan tab to single entries per scan type
          • Added option to automatically lower the Residual Risk
      • 1-12-2019:
        • Added a Traceability Tab to the Scans to Poam module
        • Added new data points (CCI, Security Control, etc.) to the Scans to Poam module
    • December 2018:
      • 12-14-2018:
        • Bug Fixes for the Scans to Poam module
      • 12-8-2018:
        • Ingested STIGs and SCAPs that have dropped since last quarterly release
        • Updated Welcome Page STIG/SCAP listing to show more history
      • 12-5-2018:
        • Bug fixes for the new Scans to Poam utility
      • 12-2-2018:
        • Developed a Scan Files to RAR/POAM Module in the utilities section of the site
        • Fixed a bug preventing the sortable/filterable table from showing up on the STIG/SCAP pages
    • November 2018:
      • 11-24-2018:
        • Regenerated the Benchmark - CCI - Control Crosswalk with updated data pull
        • Added Previous and Next Arrows to the modal windows for the controls, STIGs and SCAPs
        • Added CCI Data Dump page with sortable data table
        • Added recently viewed page widget to navigation bar
      • 11-3-2018:
        • Ingested latest STIGs and SCAPs from DISA
    • October 2018:
      • 10-17-2018:
        • Added a new Crosswalk Download to the SCAP and STIG pages
        • Added an option to download the SCAP XML files
      • 10-16-2018:
        • Added download options for STIGs
        • Updated Contact form to use form mailer
      • 10-11-2018:
        • Updated ingest scripts to handle SCAP 1.1 and 1.2
        • Imported Sunsetted Products
        • Updated Search Engine to search for CCI items related to STIGs and SCAPs
        • Updated Welcome page to differentiate between STIGs and SCAPs
        • Updated SCAP page to properly handle the new Rule and Vulnerability formats
        • Imported missing SCAP and STIG benchmarks from DISA
      • 10-10-2018:
        • Created a Contact Us page
        • Added RMF Version to the heading on the RMF Page
        • Updated search engine to allow searching for RMF Enhancements
        • Updated RMF filters to properly filter the control table
        • Added Enhancement filter buttons to the RMF Control Details page
        • Updated introduction paragraphs on the STIG and SCAP Pages
      • 10-03-2018:
        • Fixed a symbolic link issue that was prevent STIG details from populating
    • September 2018:
      • 9-26-2018:
        • Continued developing the compare function
        • Added more SCAP 1.1 Benchmarks
        • Reseached SCAP 1.2 Changes
      • 9-25-2018:
        • Fixed a bug with the new quote search engine
        • Re-ordered and updated navigation bar
        • Linked SCAP and STIG severity buttons to table filters
        • Added search results for CCI Queries
        • Began working on compare functions
      • 9-24-2018:
        • Fixed HTTPS Global Switch
        • Attached filters to DIACAP and RMF buttons
        • Updated search engine to accept quoted terms

    • Notices:

    • This web site uses advanced JavaScript for several data processing functions. Internet Explorer has severe deficiencies in it's JavaScript engine. Please use a modern day browser, such as Chrome or Edge, in order to take full advantage of this web site.
    • The content on this site is based off of quarterly data dumps from DISA and from publicly available information from NIST. All updates and data loads will be documented in the change log below.