Oh FFS! : Practical Password Auditing for Windows Networks

OVERVIEW

“Password1!” is a terrible password, right? Surely no one would be foolish enough to use that in your organization, right? RIGHT???

Not *only* is someone almost certainly using “Password1!,” when they next change their password, you _know_ it’s going to be “Password2!” unless it’s “Winter2019.”

In this session, get an (very!) brief overview of gauging password strength, then take a deep–ish dive into exactly how to audit the strength of the live passwords in your Windows environment.

Things you’ll get from this session:

    • Chuckles over real-life tales of woe;
    • A sense of urgency around auditing the passwords in your org;
    • A set of custom scripts and recommended tools you can use;
    • Playbooks for different kinds of password validation strategies;
    • Examples of targeted, educational “communications” to send to users;
    • High-fives from your boss and team for being a “proactive security go-getter!”

Presented By

AJ VAN BEEST
AJ VAN BEEST
Technical Lead for Global Cyber Security Operations Team, Dexcom