<ul data-eligibleForWebStory="true"><li>Domain Password Audit Tool (DPAT) is a python script used to generate password use statistics from password hashes extracted from a domain controller and a password crack file.</li><li>The tool creates an HTML report with clickable links for analysis.</li><li>It requires parameters like the extracted hashes from the domain controller and the list of cracked passwords from tools like Hashcat.</li><li>Optional parameters include specifying group lists for users like 'Domain Admins' or 'Enterprise Admins'.</li><li>The tool extracts password hashes using ntdsutil and secretsdump.py from the domain controller.</li><li>To crack passwords, the tool supports hash formats from Hashcat or John the Ripper.</li><li>DPAT has the ability to finish cracking LM hashes where the NT hash was not cracked.</li><li>It provides various options like writing SQLite database info to disk and sanitizing the report by redacting sensitive information.</li><li>DPAT can be run with different command-line options to perform domain password audits efficiently.</li><li>The tool is useful for security professionals in assessing password security within a domain environment.</li></ul>

Domain Password Audit Tool (DPAT)

Discover more