Password Auditor - Find Weak Credentials
Find weak passwords in network services and web applications automatically
Find weak passwords in network services and web applications automatically
Unlock the full power and feature of our Password Auditor - Find Weak Credentials! Compare pricing plans and discover more tools and features.
Here is a Password Auditor - Find Weak Credentials sample report:
The tool scans an URL, IP address or hostname for network services that require authentication (ex. HTTP web forms, SSH, FTP, MYSQL, RDP, etc) and detects weak credentials by trying to login using the usernames and passwords from the input wordlists.
The tool can be used to easily check if any common username/password was used in any network service. This could be an easy entry point into the network.
As a system administrator, you want to check if any of your users have set weak passwords on the services exposed to the internet. This verification should be done periodically.
When auditing the configuration settings of a network infrastructure, it is always needed to check the usage of default passwords (ex. cisco/cisco, admin/admin, etc).
Parameter | Description |
---|---|
Target | This is the hostname or IP address to scan |
Ports | Choose which ports to check for authentication (default: Top 100 common ports) |
Services | Choose the services you want to be audited (HTTP, SSH, FTP, etc). They will be automatically matched to the open ports. Example: Apache running on port 2174 will trigger the HTTP module. |
Wordlists | Specify a custom wordlist for usernames/ passwords |