Follow @Openwall on Twitter for new release announcements and other news

passwdqc for Windows - password/passphrase policy enforcement

passwdqc is a well-known proactive password and passphrase strength checking and policy enforcement toolset. It is available for (and included as part of) a variety of Unix-like systems since 2000 (with many updates), and is now also offered for Windows. Supported are both domain controllers and end-user systems.

Full support for passphrases, extensive testing [1] [2] [3] on real-world passwords, being able to exactly match the policy you use on Unix (if applicable), bundled end-user programs (their use is optional), and simple site-wide licensing and pricing (not per-user, nor per-computer) differentiate this product from the competition.

The product, once installed, registers with the system a password filter DLL, which is where the policy is enforced. Also included are three programs: Configuration, Change Password, and Reset Password - please see the screenshots. The latter two programs may be used to easily duplicate the domain controller's password policy on end-user systems, so that the users are informed of the specific reason why their initial choice of new password did not meet policy and are offered randomly-generated passphrases.

We currently support Server 2008 or Vista and above (currently tested up through Windows 10), just like Microsoft does.


The free downloads offered above are for pre-purchase evaluation only (no more than 30 days of consecutive use), unless and until you purchase a license.


The link above allows you to pay online with a variety of payment methods, or to choose to pay offline. Your purchase will be from FastSpring, a trusted reseller of software products and services.

Your private download directory will be created and a link to it e-mailed to you immediately upon receipt of your payment. Initially the directory will contain only the exact same files you can download above, so your purchase is primarily of a license (legal right) to use the software. There are no license keys or the like - rather, we trust that you will only use the software if you have purchased a license (or the required number of licenses, if your use is at multiple locations). At a later time, your private download directory will also be the place to download any upgrades you're entitled to.

Unconditional 7-day money back guarantee for purely online payments (including credit card payments, but not including bank wire transfers): if you're for any reason or for no reason at all unsatisfied with the download service or the product, we will issue a refund for your order on your request if the request arrives within 7 days after your order date.

Low price guarantee: our prices on this product are the lowest you can find. If you find a better price on a commercial product with at least the same functionality, for the same operating system, with upgrades and support similar to those included with your purchase, and if you inform us within 30 days of your purchase, we will gladly refund the price difference. Shop with confidence!

Please don't hesitate to e-mail us at <orders at> if you experience any problems placing an order or completing your download, or to request a refund.

passwdqc for Windows - screenshots made on Windows 8.1

Configuration utility:
passwdqc for Windows - Configuration utility
Change Password utility:
passwdqc for Windows - Change Password utility

The generated passphrases have been confirmed to meet the expected statistical properties (no excessive repetitions among millions generated for testing purposes on Windows 8.1 64-bit). We use CryptGenRandom, an interface to Windows' cryptographically secure pseudorandom number generator.

Reset Password utility, user choice dialog:
passwdqc for Windows - Reset Password utility - user choice dialog

Reset Password utility, new password dialog:
passwdqc for Windows - Reset Password utility - new password dialog

Quick Comment:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ