Objectif Sécurité offers a new on-site password auditing service for Windows passwords. We install our own secure and transportable password-cracking machine at the customer’s location. The Windows password hashes can be copied to the machine without ever leaving the data centre of the customer. Using our finest rainbow tables, our expertise and other appropriate tools, we then attempt to crack all passwords, over a period of a few weeks. We then create a custom report explaining what proportion of passwords comply with a given password policy, what the average time is for cracking passwords of observed categories, how many default passwords are used and whether the administration of passwords can be optimized.