crack-dit makes it easier to perform password audits against Windows-based corporate environments.

crack-dit makes it easier to perform password audits against Windows-based corporate environments.

cracke-dit(“Cracked It”) makes it easier to perform regular password audits against Active Directory environments.
Ensuring your users have strong passwords throughout the organisation is still your best line of defence against common attacks. Many organisations over estimate just how secure their users’ passwords are. “London123”, “Winter2017”, “Passw0rd” – all complex passwords, according to the default Group Policy rules.

By performing regular audits, you can identify users with weak passwords and take action inline with your policies and procedures.

cracke-dit v1.0

# General Tips

1. Introduce internal training on what a secure password is, why they’re important and embed it in to your induction programme.

2. Consider rolling out a password manager and adequate training for all of your users – stronger, longer and more unique passwords is better for everyone.

3. Gradually increase your password minimum length requirement to 12 characters.

4. Phase out forcing your users to “reset password every X days”. There is research to suggest that this doesn’t help create strong passwords, but in fact has the opposite effect.

5. Carry out a password audit quarterly. Do not name and shame people. Get HR buy-in and introduce a “3 strike system” that will carry a formal warning.

Usage:

Source: https://github.com/eth0izzle