Password Recovery

A password is a secret word or string of characters that is used for authentication, to prove identity or gain access to a resource and if a employee working in your organization leaves the organization without telling the password of his machine or the resources he accessed then your organization can get into trouble.

Secure Auditor Demonstration Videos Download Realplayer Video

To solve this problem, Secure Auditor™ offers a utility called Password Auditor which helps organizations to password recovery. For password recovery, first you have to connect this utility with that resource. After connecting, this utility will show you user names and will bring password in the form of hashes. Now by using this utility organizations can use different techniques to guess passwords.

The first technique is Dictionary Attack. In dictionary attack, you can select different options like check for similar user names & passwords, reverse order of characters, concatenation with reverse order, concatenation of reverse order and you can also locate password dictionary for password recovery. The second technique is Brute Force Attack. In Brute Force Attack, you select combinations of characters sets and try to recover password using different combinations up to 14 characters. The third technique is Hybrid Attack. In this sort of attack, you add digits before and after the password to recover passwords like john322, 666john etc.
By using these attacks or techniques, organizations can recover passwords. This utility also helps organizations to identify weak & easily guessed passwords and helping organizations to enforce strict password policy.