This week I came across Lithnet’s Password Protection for Active Directory (not a sponsor!). It’s awesome! It’s a free utility you can install on your domain controllers to block all of the Have I Been Pwned password list, as well as any custom password lists and words you want to manually import. Perhaps my favorite feature is the ability to add a banned word like 7minutesecurity and have it automatically block variations such as:

• 7minutesecurity!

• 7minutesecurity2025!

• 7m1nut3s3cur1ty2028

Check it out, and while you’re here, why not subscribe?

Comment/question for me?

Oh and before I forget, I’ve got a cheat sheet write-up on installing password protection here.

Thanks,

-Brian