Chef Premium Content
CIS and DISA-STIG Curated Content for Automated IT Auditing and Remediation
Access Chef Premium Content which provides curated, standards-based coded policies for compliance scanning and remediation across enterprise assets.
Jump Start Compliance Audit and Remediation With Standards-Based Guidelines
Chef Premium Content offers curated compliance and configuration profiles based on Center for Internet Security (CIS) benchmarks and Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs).
Hybrid and Multi-Platform Compliance
Achieve compliance across hybrid environments, operating systems, applications and clouds.
Consistent Configuration
Access configuration cookbooks, audit profiles and remediation content easily.
Updated and Certified Profiles
Subscribe to get updated and certified profiles quickly.
Industry-based Standards Benchmark
Achieve compliance based on benchmarks for your industry.
Updates for Subscribers
Subscribe to receive email updates every month about your profiles.
Bundled Availability
Chef Premium Content is available with Chef Compliance and Chef Desktop.
Compliance Profiles Available for You
Chef Premium Content provides traditional target scanning and remediation guidelines, enabling users to easily scan an extensive range of operating systems, applications and cloud environments using industry-defined, standards-based guidelines. Here is a list of policies that we provide.
Chef Premium Content for Operating Systems
Access curated compliance and configuration profiles for operating systems, including Windows, Linux and more, based on industry standards like CIS Benchmarks and DISA STIGs.
| Infrastructure | Audit | Remediation |
|---|---|---|
| CIS AIX 5 - Level 1 & 2 | ||
| CIS AIX 7 - Level 1 & 2 | ||
| CIS AIX 7.1 - Level 1 & 2 | ||
| CIS AIX 7.2 - Level 1 & 2 | ||
| CIS Alma Linux 8 - Level 1 & 2 | ||
| CIS Amazon Linux 2 - Level 1 & 2 - Server | ||
| CIS Amazon Linux 2014 - Level 1 & 2 | ||
| CIS Amazon Linux 2023 - Level 1 & 2 | ||
| CIS CentOS Linux 6 - Level 1 & 2 - Server | ||
| CIS CentOS Linux 7 - Level 1 & 2 - Server | ||
| CIS CentOS Linux 8 - Level 1 & 2 - Server | ||
| CIS SUSE Enterprise Linux 11 - Level 1 & 2 | ||
| CIS SUSE Enterprise Linux 12 - Level 1 & 2 | ||
| CIS SUSE Enterprise Linux 15 - Level 1 & 2 | ||
| CIS Debian Linux 9 - Level 1 & 2 - Server | ||
| CIS HP UX 11 - Level 1 & 2 | ||
| CIS Oracle Linux 7 - Level 1 & 2 | ||
| CIS Oracle Linux 8 - Level 1 & 2 | ||
| CIS Oracle Linux 9 - Level 1 & 2 | ||
| CIS Oracle Solaris 10 - Level 1 & 2 | ||
| CIS Oracle Solaris 11.1 - Level 1 & 2 | ||
| CIS Oracle Solaris 11.2 - Level 1 & 2 | ||
| CIS Oracle Solaris 11.4 - Level 1 & 2 | ||
| CIS Red Hat Enterprise Linux 5 - Level 1 & 2 - Server | ||
| CIS Red Hat Enterprise Linux 6 - Level 1 & 2 – Server | ||
| CIS Red Hat Enterprise Linux 7 - Level 1 & 2 – Server | ||
| CIS Red Hat Enterprise Linux 8 - Level 1 & 2 – Server | ||
| CIS Red Hat Enterprise Linux 9 - Level 1 & 2 – Server | ||
| CIS Rocky Linux 8 - Level 1 & 2 | ||
| CIS Rocky Linux 9 - Level 1 & 2 | ||
| CIS Ubuntu Linux 12.04 - Level 1 & 2 - Server | ||
| CIS Ubuntu Linux 14.04 - Level 1 & 2 - Server | ||
| CIS Ubuntu Linux 16.04 - Level 1 & 2 - Server | ||
| CIS Ubuntu Linux 18.04 - Level 1 & 2 - Server | ||
| CIS Ubuntu Linux 20.04 - Level 1 & 2 - Server | ||
| CIS Ubuntu Linux 22.04 - Level 1 & 2 - Server | ||
| CIS Windows Server 2012 / R2 - Level 1 & 2 – Domain Controller | ||
| CIS Windows Server 2012 / R2 - Level 1 & 2 | ||
| CIS Windows Server 2012 - Level 1 & 2 – Domain Controller | ||
| CIS Windows Server 2012 - Level 1 & 2 | ||
| CIS Windows Server 2016 - Level 1 & 2 – Domain Controller | ||
| CIS Windows Server 2016 - Level 1 & 2 – Member Server | ||
| CIS Windows Server 2019 - Level 1 & 2 – Domain Controller | ||
| CIS Windows Server 2019 - Level 1 & 2 – Member Server | ||
| CIS Windows Server 2022 - Level 1 & 2 – Domain Controller | ||
| CIS Windows Server 2022 - Level 1 & 2 – Member Server | ||
| CIS Windows Server 2025 - Level 1 & 2 – Domain Controller | ||
| CIS Windows Server 2025 - Level 1 & 2 – Member Server | ||
| DISA STIG Red Hat Enterprise Linux 6 - Cat 1/2/3 | ||
| DISA STIG Red Hat Enterprise Linux 7 - Cat 1/2/3 | ||
| DISA STIG Red Hat Enterprise Linux 8 - Cat 1/2/3 | ||
| DISA STIG Red Hat Enterprise Linux 9 - Cat 1/2/3 | ||
| DISA STIG Oracle Linux 8 CAT 1/2/3 | ||
| DISA STIG Windows 10 - Cat 1/2/3 | ||
| DISA STIG Windows 11 - Cat 1/2/3 | ||
| DISA STIG Windows Server 2012 / R2 – Member Server - Cat 1/2/3 | ||
| DISA STIG Windows Server 2016 - Cat 1/2/3 | ||
| DISA STIG Windows Server 2019 - Cat 1/2/3 | ||
| DISA STIG Windows Server 2022 - Cat 1/2/3 | ||
| DISA STIG Ubuntu 20.04 | ||
| CIS Debian 11 Level 1 & Level 2 Server | ||
| CIS Debian 11 Level 1 & Level 2 Workstation | ||
| CIS Debian 12 Level 1 & Level 2 Server | ||
| CIS Debian 12 Level 1 & Level 2 Workstation | ||
| CIS MSSQL Server 2022 AWS RDS & Database Engine | ||
| CIS Ubuntu 24.04 OS Level 1 & Level 2 Server | ||
| CIS Ubuntu 24.04 OS Level 1 & Level 2 Workstation |
Applications
Extend compliance to your applications with Chef Premium Content, offering curated profiles aligned with industry standards.
| Applications | Audit | Remediate |
|---|---|---|
| CIS Apache HTTP 2.2 - Level 1 & 2 | ||
| CIS Apache HTTP 2.4 - Level 1 & 2 | ||
| CIS Apache Tomcat 5.5 - Level 1 & 2 | ||
| CIS Apache Tomcat 8.0 - Level 1 & 2 | ||
| CIS Apache Tomcat 9.0 - Level 1 & 2 | ||
| CIS Apache Tomcat 10.0 - Level 1 & 2 | ||
| CIS Cisco IOS 12 - Level 1 & 2 | ||
| CIS Cisco IOS 15 - Level 1 & 2 | ||
| CIS Microsoft Exchange 2016 - Level 1 & 2 | ||
| CIS Docker Community Edition 1.1.0 - Level 1 & 2 | ||
| CIS Microsoft Exchange 10 - Level 1 & 2 | ||
| CIS Microsoft IIS 10 - Level 1 & 2 | ||
| CIS Microsoft Sharepoint 2016 - Level 1 & 2 | ||
| CIS Microsoft SQL Server 2016 - Level 1 & 2 | ||
| CIS Microsoft SQL Server 2017 - Level 1 & 2 | ||
| CIS Microsoft SQL Server 2019 - Level 1 & 2 | ||
| CIS MongoDB - Level 1 & 2 | ||
| CIS NGINX - Level 1 & 2 | ||
| CIS Oracle MySQL Community Server 5.7 - Level 1 & 2 | ||
| CIS Oracle Database 12c - Level 1 & 2 | ||
| CIS Oracle Database 18c - Level 1 & 2 | ||
| CIS Oracle Database 19c - Level 1 & 2 | ||
| CIS Oracle Database 23ai - Level 1 & 2 | ||
| CIS PostgresSQL 10 - Level 1 & 2 | ||
| CIS PostgresSQL 11 - Level 1 & 2 | ||
| CIS PostgresSQL 16 - Level 1 & 2 | ||
| CIS VMWare ESXI 6.5 - Level 1 & 2 | ||
| CIS VMWare ESXI 6.7 - Level 1 & 2 | ||
| CIS VMWare ESXI 7.0 - Level 1 & 2 | ||
| CIS VMWare ESXI 8.0 - Level 1 & 2 | ||
| CIS Microsoft 365 Foundations Benchmark - Level 1 & 2 | ||
| CIS Maria DB 10.6 Level 1 & 2 | ||
| DISA STIG Marklogic 9 - Cat 1/2/3 |
Chef Premium Content for Cloud Environments
Scan cloud resources across major providers, containers, and Kubernetes deployments with new cloud target scanning in Chef Premium Content.
| Cloud | Audit | Remediate |
|---|---|---|
| CIS Amazon Web Services Foundation Benchmark - Level 1 & 2 | ||
| CIS Azure Foundations Benchmark - Level 1 & 2 | ||
| CIS Docker Community Edition Benchmark - Level 1 & 2 | ||
| CIS Google Cloud Platform Foundation Benchmark - Level 1 & 2 | ||
| CIS Kubernetes Benchmark - Level 1 & 2 | ||
| CIS Google Kuberenetes Engine | ||
| CIS Redhat OpenShift Container Platform | ||
| CIS Amazon Elastic Kubernetes Service (EKS) Benchmark - Level 1 & 2 | ||
| STIG Kubernetes Benchmark - Cat 1/2/3 |
Chef Premium Content for Chef Desktop
Leverage Chef Premium Content with Chef Desktop to provide configuration content for setting up and testing basic configurations. It includes audit profiles based on CIS Benchmarks for platforms like Windows 10 and Linux, along with automated remediation to maintain continuous compliance.
| Desktop | Audit | Remediate |
|---|---|---|
| CIS Apple OS 10.5, 10.6, 10.8, 10.9, 10.10, 10.11, 10.12, 10.13 - Level 1 & 2 | ||
| CIS Apple OS 10.14, 10.15 - Level 1 & 2 | ||
| CIS CentOS 6 - Level 1 & 2 | ||
| CIS CentOS 7, 8 - Level 1 & 2 | ||
| CIS Debian Linux 9 - Level 1 & 2 | ||
| CIS Mac OS 11 - Level 1 & 2 | ||
| CIS Red Hat Enterprise Linux 6 - Level 1 & 2 | ||
| CIS Red Hat Enterprise Linux 7, 8 - Level 1 & 2 | ||
| CIS Red Hat Enterprise Linux 9 - Level 1 & 2 | ||
| CIS SUSE Linux Enterprise 12 - Level 1 & 2 | ||
| CIS SUSE Linux Enterprise 15 - Level 1 & 2 | ||
| CIS Windows 7 - Level 1 & 2 | ||
| CIS Windows 7 - Level 1 & 2 - BitLocker | ||
| CIS Windows 8 - Level 1 | ||
| CIS Windows 8 - Level 1 - BitLocker | ||
| CIS Windows 8.1 - Level 1 & 2 | ||
| CIS Windows 8.1 - Level 1 & 2 - BitLocker | ||
| DISA STIG Windows 10 - Cat 1/2/3 | ||
| CIS Windows 10 Enterprise 1909 - Level 1 & 2 | ||
| CIS Windows 10 Enterprise 1909 - Level 1 & 2 - BitLocker | ||
| CIS Windows 10 Enterprise 2004 - Level 1 & 2 | ||
| CIS Windows 10 Enterprise 2004 - Level 1 & 2 - BitLocker | ||
| CIS Windows 10 Pro 1511 - Level 1 & 2 | ||
| CIS Windows 10 20H2 - Level 1 & 2 BitLocker | ||
| CIS Windows 10 20H2 - Level 1 & 2 | ||
| CIS Windows 10 21H1 - Level 1 & 2 BitLocker | ||
| CIS Windows 10 21H1 - Level 1 & 2 | ||
| CIS WIndows 11 Enterprise - Level 1 & 2 Bitlocker | ||
| CIS WIndows 11 Enterprise - Level 1 Bitlocker optional add | ||
| CIS WIndows 11 Enterprise - Level 1 General Use | ||
| CIS WIndows 11 Enterprise - Level 2 Sensitive Data Limited Functionality | ||
| CIS Ubuntu 16 - Level 1 & 2 | ||
| CIS Ubuntu 18 - Level 1 & 2 | ||
| CIS Ubuntu 20 - Level 1 & 2 | ||
| CIS Ubuntu 22 - Level 1 & 2 | ||
| CIS Ubuntu 24 - Level 1 & 2 |
Additional Chef Content
The Chef solution provides additional content to customers and community members in several other ways.
Chef Automate Content
Standard audit content through Chef Automate
Chef Supermarket
More cookbook content available in the Supermarket
Chef Habitat Builder
Additional application bundles are available through Habitat Builder
Recommended Content
Start Your Journey Today
Try Chef Compliance free for 30 days or connect with our team to see how we support your frameworks, workflows, and scale requirements.