I was recently asked to perform a password audit on our Window users. The tools that I have encounteed so far, Cain&Abel, Jack the Ripper, don’t apear to extract password hashes from the Active Directory, only the SAM file. Does anyone have any information on a password audit tool that works with AD and documention on how it works?
Thanks
SECUREIT
