Free assessment
See which of your AD accounts are already exposed.
In a free assessment with the PassVision team, the read-only Password Auditor runs on your domain controller and checks every account against a breached-password database, using irreversible fingerprints, so no password ever leaves your environment. You get a clear report in minutes.
What you'll see
A clear report of where you're exposed.
Breached passwords
Accounts whose password appears in known breach data.
Blank passwords
Accounts with no password set.
Never-expiring passwords
Accounts exempt from rotation.
Account overview
Enabled vs. disabled, at a glance.
How it works
Three steps, minutes to results.
Request the assessment
Tell us about your environment; we schedule a session together.
We run it together
The read-only auditor runs on your domain controller, checking each account by irreversible k-anonymity fingerprint against the breach database.
Review it together
A self-contained HTML report; we walk through the findings with you.
Safe by design
Built to be safe to run in production.
The auditor reads account fingerprints only, never plaintext passwords, and produces a local report. Nothing about your directory is transmitted in the clear, and there's no persistent agent to remove afterward.
Get started
Request your free assessment.
Tell us a bit about your environment and we'll reach out to schedule the session. No purchase required; everything runs on your own domain controller.
Prefer email? Reach us at [email protected].
From auditor to platform
The auditor is a snapshot. The platform never stops.
The free auditor shows you what's exposed today. The full PassVision platform prevents weak passwords at the source, verifies which leaked credentials still work, and remediates continuously, automatically.
Request a Demo →FAQ
Common questions.
What is the free PassVision Auditor?
The free PassVision Password Auditor runs on a domain controller and reports which accounts use breached, blank, or never-expiring passwords. It reads irreversible fingerprints only (no password leaves your environment) and produces a self-contained HTML report in minutes.
Does PassVision store or see our passwords?
No. On the Active Directory screening path, PassVision checks passwords as irreversible fingerprints: no plaintext password is stored, and none leaves your environment. Because PassVision is self-hosted, your credential data stays inside your perimeter.
Start with a free look inside your directory.
See which accounts are exposed today, in minutes, on your own domain controller, no purchase required.