ASK ESS Cryptographic Services will provide definitive proof to the effectiveness of your organization’s password policy. Using our GPGPU password cracking cluster, we can test password strength using your defined parameters. Offerings include a passive brute force or actively performed engagement, utilizing varying degrees of logic and complexity.
Customers can choose between using the ASK ESS tool to extract a password file from a domain controller or workstation or you can request that an ASK Security Analyst perform the password extraction procedure. Multiple data transfer and chain of custody options are available upon request.
ASK ESS recommends a minimum password policy of 9 characters to avoid passive brute force audit failures. All password audit services include brute force password cracking of all ≥6, and you can choose to move that up to ≥7 character passwords.