Audit security policies, examine network security and recover account passwords with Proactive Password Auditor. Find out exactly how secure your network is by running a full-scale attack on account passwords. By recovering exposing insecure passwords, Proactive Password Auditor determines the security of your network.

Not all security policies are equally secure. A single password that is easy to break becomes the weak link in the chain that compromises security of the entire network. It is common for corporate users to use passwords too short or too simple. These passwords are easy to remember, but essentially insecure.

Proactive Password Auditor determines the security of your network by attempting to break into a network by recovering one of the passwords. If just one account is unlocked within certain time, this demonstrates vulnerability of the entire network. If the network withstands the attack for the period of time between password expirations, the password security policy is considered strong enough.

Recovering lost and forgotten passwords to user accounts is another purpose of Proactive Password Auditor. By analyzing password hashes and recovering plain-text passwords, Proactive Password Auditor makes it possible to access and log in to user accounts, exposing the EFS-encrypted files and folders. A wide range of available attacks from dictionary to brute force makes it possible to recover passwords over the network, while the Rainbow attack recovers up to 95% of passwords in a matter of just minutes. Fortunately, the Rainbow attack cannot be executed from the outside!

Proactive Password Auditor can analyze Registry binaries and extracted dump files, allowing for off-line password recovery. Proactive Password Auditor runs on Windows NT4, 2000, XP, Vista, Windows Server 2003, and Windows Server 2008.

Requirements: Windows 2000/XP/Vista/Server 2003/Server 2008 ; About 6 megabytes of free space ; Administrator priv