Proactive Password Auditor is a password security test tool that's designed to allow Windows NT, Windows 2000 and Windows Server 2003-based systems administrators to identify and close security holes in their networks. It helps secure networks by executing an audit of account passwords, and exposing insecure account passwords. A few different methods of obtaining password hashes for further auditing are supported: from pwdump-files, Registry files, and memory of local and remote computers, including ones running Active Directory. The product features brute-force and dictionary attacks on password hashes, effectively optimized for speed (including dual-core processors), plus "rainbow" attack, that uses pre-computed hash tables that allow to find most passwords in minutes instead of days or weeks.

Version 1.7 build 3619 adds full Unicode support, supports Rainbow Attack for NTLM hashes, works on machines with DEP feature enabled, and supports Windows Vista.

Editor's review of Proactive Password Auditor

This reliable program allows you to safeguard your network by attacking user passwords. Proactive Windows Security Explorer lets you attack passwords via brute-force, mask, rainbow, or dictionary methods and can dump password hashes from a PC's Registry. You'll also find a tool for recovering passwords.

The interface might confuse people not familiar with this type of software but will be easy enough to use for this application's target audience. In our tests, the utility performed admirably, quickly, and accurately in cracking several passwords. Network administrators concerned about security certainly should take this program for a test drive.