SCAP Compliance Checker (SCC)
SCAP Compliance Checker (SCC) is a tool used to run automated system configuration checks against STIG benchmarks.
- by the Department of Defense (DoD)
- available for download for free
- includes GPO objects that contain many best practice security configurations
- GPOs must be carefully inspected and tested prior to use/deployment to avoid unintended consequences
- https://www.cyber.mil/stigs/SCAP/