Skip to content

Free assessment

See which of your AD accounts are already exposed.

In a free assessment with the PassVision team, the read-only Password Auditor runs on your domain controller and checks every account against a breached-password database, using irreversible fingerprints, so no password ever leaves your environment. You get a clear report in minutes.

Request the Free Assessment Request a Demo
READ-ONLY·RUNS ON YOUR DC·NO PASSWORD LEAVES YOUR ENVIRONMENT·NO AGENT LEFT BEHIND
PASSWORD_AUDIT · REPORT.HTMLDC-01
BREACHED PASSWORDS143Exposed
BLANK PASSWORDS12Exposed
NEVER-EXPIRING PASSWORDS391At risk
SCREENED CLEAN3,636Verified
4,182 ACCOUNTS SCANNED · COMPLETED IN 04:12 · FINGERPRINTS ONLY

What you'll see

A clear report of where you're exposed.

Breached passwords

Accounts whose password appears in known breach data.

Blank passwords

Accounts with no password set.

Never-expiring passwords

Accounts exempt from rotation.

Account overview

Enabled vs. disabled, at a glance.

How it works

Three steps, minutes to results.

01

Request the assessment

Tell us about your environment; we schedule a session together.

02

We run it together

The read-only auditor runs on your domain controller, checking each account by irreversible k-anonymity fingerprint against the breach database.

03

Review it together

A self-contained HTML report; we walk through the findings with you.

Safe by design

Built to be safe to run in production.

The auditor reads account fingerprints only, never plaintext passwords, and produces a local report. Nothing about your directory is transmitted in the clear, and there's no persistent agent to remove afterward.

READ-ONLY·FINGERPRINTS ONLY·LOCAL HTML REPORT·NO AGENT LEFT BEHIND

Get started

Request your free assessment.

Tell us a bit about your environment and we'll reach out to schedule the session. No purchase required; everything runs on your own domain controller.

Read-only: reads account fingerprints, never plaintext.
Runs on your DC: nothing leaves your environment in the clear.
Self-contained HTML report: open it in any browser.

Prefer email? Reach us at [email protected].

From auditor to platform

The auditor is a snapshot. The platform never stops.

The free auditor shows you what's exposed today. The full PassVision platform prevents weak passwords at the source, verifies which leaked credentials still work, and remediates continuously, automatically.

Request a Demo →

FAQ

Common questions.

What is the free PassVision Auditor?

The free PassVision Password Auditor runs on a domain controller and reports which accounts use breached, blank, or never-expiring passwords. It reads irreversible fingerprints only (no password leaves your environment) and produces a self-contained HTML report in minutes.

Does PassVision store or see our passwords?

No. On the Active Directory screening path, PassVision checks passwords as irreversible fingerprints: no plaintext password is stored, and none leaves your environment. Because PassVision is self-hosted, your credential data stays inside your perimeter.

Read the full FAQ →

Start with a free look inside your directory.

See which accounts are exposed today, in minutes, on your own domain controller, no purchase required.

Request the Free Assessment Request a Demo