CIS-CAT

CIS-CAT is a Java-based tool, developed by the Center for Internet Security, that can be used to assess and report on the status of a computer's security configurations. It has both a graphical user interface and a command link interface. CIS-CAT can read security benchmarks written in XCCDF format and reports results in either HTML or XML format. The following benchmarks have been developed by the Center for Internet Security and are included in this download:

- Apache Tomcat
- Apple OSX 10.5
- Debian Linux
- HP-UX 11i
- IBM AIX 4.3-5.1
- Microsoft Windows Server 2003
- Microsoft Windows Server 2008
- Microsoft Windows XP
- Microsoft Windows Vista
- Microsoft Windows 7
- Mozilla Firefox
- Oracle Database 11g
- Oracle Database 9i-10g
- RedHat Enterprise Linux 4
- RedHat Enterprise Linux 5.0 and 5.1
- RedHat Enterprise Linux 5.1
- Slackware Linux 10.2
- Solaris 10
- Solaris 2.5.1-9
- SUSE Linux Enterprise Server_10
- SUSE Linux Enterprise Server_9
- VMware ESX 3.5

Get It

Download CIS-CAT

Support Contact

Information Security Office
iso@andrew.cmu.edu

Documentation & Training

CIS-CAT User Guide