Windows Password Auditor helps auditors, network administrator, and security administrators to enforce strict password security policy by identifying weak and default passwords in the Windows based machines. Weak passwords have been cited by experts from SANS, industry, government, and academia as one of the most critical security threats to computer networks.
Password recovery becomes extremely easy with Windows Password Auditor because it automatically retrieves password hashes from the registry and allows auditors, system administrators, and security administrators to either password recovery or test the strength of the password according to an organization policy through comprehensive auditing and control measures. Windows Password Auditor is compatible with Windows 2000 / Windows XP / Windows 2003 Server / Windows VISTA / Windows 2008 Server / Windows 7. It also facilitates in achieving strengthened governance and Regulatory Compliance standards like Sarbanes-Oxley Act (SOX ) (USA) , HIPAA (USA), GLBA (USA), FISMA (USA), Data Protection Act (EU, UK, Canadian) J-SOX (Japan), LSF (France), PCI/DSS, security frameworks such as ISO 27001, and COBIT or NIST.
Windows Password Auditor is a password strength analyzer that proactively identifies the strength of a password against an intrusion attempt. It also checks for defaults passwords those are not changed on Windows based machines because all default and weak passwords are security threat for the confidentiality, integrity and availability of data. It also provides options like dictionary attacks, bruteforce attacks and hybrid attacks to audit the weaknesses in enforced password security policy. Windows Password Auditor also has the ability to present all cracked passwords in the form of a vulnerability report so that it complies with a defined controls and organizational security policy.
