- dotTech - http://dottech.org -

[Windows] Audit (some) passwords with Password Security Scanner

[1]

Think you (or someone you know) have weak passwords? Then you (or the person you know) need to read dotTech’s advice on how to have strong passwords [2]. Still unsure about your (or someone else’s) passwords? Then give Password Security Scanner a try.

What Is Password Security Scanner

Password Security Scanner is a small utility (created by our favorite NirSofer from NirSoft) that audits passwords. It scans your computer for relevant passwords and, without actually showing the passwords, displays the following security information regarding each password:

[3]

Does It Work On All Passwords?

No. Password Security Scanner currently only works with a handful of applications, with NirSofer promising to add support for more applications in later updates.

The applications who’s passwords Password Security Scanner can currently audit are:

*Password Security Scanner won’t be able to audit Firefox passwords if a master password is used.

**Users must run Password Security Scanner with administrator access in order to get dialup passwords.

Does It Crack My Passwords?

No. Password Security Scanner does no cracking. All passwords it audits are freely available by the specific application that stores it. For example, unless you use a master password in Firefox, any and all stored passwords are available to anyone that looks under Options -> Security -> Saved Passwords. Password Security Scanner simply scans for these freely-available passwords.

Advanced Options

To assist in not wasting your time looking at “strong” passwords, Password Security Scanner has the ability to not audit passwords longer than X characters (you set X) and/or to only display passwords with strength lower than X (you set X):

[4]

The Advanced Options are found via Options -> Advanced Options.

Other Features

As with all NirSoft apps, Password Security Scanner: Can generate an HTML report of the results; save results in a TXT, CSV, or XML file; can copy results; and has a built-in search function.

Conclusion

Although Password Security Scanner has limited usefulness since it only supports a handful of programs, it is a very good self-check tool for people who tend to use weak passwords; and it is very useful for helping friends and family improve their passwords. If nothing else, then Password Security Scanner can at least show people how vulnerable your passwords are when stored in some applications, e.g. Firefox’s password saver.

You can grab Password Security Scanner from the links below:

Version reviewed: v1.00

Supported OS: Windows 2000/XP/Vista/Win7

Download size: 60-120 KB depending on the version you download

Malware scan: Jotti malware scan results (0/20) [5]

Password Security Scanner homepage [6]

[Direct download – portable version [7]]

[Direct download – installer version [8]]

[via Ghacks [9]]