Security Configuration Benchmarks
Center for Internet Security (CIS) Security Benchmarks

The Center for Internet Security provides standard for deploying secure network and computing resources to measure information security status and help system administrators make informed decisions about  security investments. CIS develops and distributes consensus best practice standards for security configurations, each benchmark includes:

•    description – short explanation of the problem
•    rationale – the effect that the remedy will provide
•    remediation – instructions what to do to fix the problem
•    audit – procedure allowing you to check whether the issue is relevant for your environment

While these benchmarks recommendations are very thorough, system administrators should rigorously test them before applying them on production systems.

For more information, follow this link:  http://benchmarks.cisecurity.org/

CIS Android Benchmark v1.0.0
CIS Apple iOS Benchmark v1.3.0
CIS Apple OSX 10.6 Benchmark v1.0.0
CIS Apple Safari Benchmark v1.0.0
CIS Debian Benchmark v1.0
CIS Exchange2003 Benchmark v1.0
CIS IIS Benchmark v1.0
CIS Microsoft Exchange 2007 Benchmark v1.1.0
CIS Microsoft IIS7 Benchmark v1.2.0
CIS Microsoft Office 2007 Benchmark v1.0.0
CIS Microsoft Office SharePoint Server 2007 Benchmark v1.0.0
CIS Microsoft Windows 7 Benchmark v1.1.0
CIS Mozilla Firefox Benchmark v1.2.0
CIS Redhat Linux 5 Benchmark v2.0.0
CIS Slackware Linux Benchmark v1.1
CIS SQL2005 Benchmark v1.2.0
CIS SUSE Linux Benchmark v2.0
CIS VMware ESX Server 3.5 Benchmark v1.2.0
CIS VMware ESX Server 4 Benchmark v1.0.0
CIS Win2k Srv Benchmark v2.2.1
CIS Win2003 DC Benchmark v2.0
CIS Win2003 Srv DC Benchmark v2.0
CIS Win2003 Srv MS Benchmark v2.0
CIS Windows Server 2008 Benchmark v1.2.0
CIS WindowsXP Benchmark v2.01