Finding Pwned Passwords in Active Directory

Weak and pwned passwords accounted for 73% of breaches in the last year, as reported by Verizon and Rapid7. Do you know how many of your users are using a blacklisted password? If you test user passwords, you’ll know Microsoft has never made it easy. There are always tricks to export password hashes but each method has its pros and cons. Why? The New NIST Password Guidelines make sensible new recommendations.