Cyber Ark is offering a free trial of a new tool that can identify and map exposed password hashes and vulnerable machines on a network.
According to the company, CyberArk DNS (discovery and audit) is a patent-pending, lightweight, stand-alone tool that exposes the magnitude of privileged account security risks by enabling organisations to easily identify and analyse all privileged accounts across their network. CyberArk DNA v4 free trial licenses are currently available to all businesses for a limited time.
Pass-the-hash attacks capture account logon credentials on one computer and then use those credentials to gain access to other computers on the same network, and this is used by attackers to gain a foothold and harvest hashes to steal access to privileged systems and machines.
CyberArk said that DNA v4 is the first tool to identify password hashes, locating all vulnerable machines on a network to provide the most accurate and reliable data about an organisation’s exposure.
Roy Adar, vice president of product management at CyberArk, said: “Pass-the-hash attacks have been an attack vector in some of the most spectacular breaches, and they continue to be a major threat to businesses. Understanding the extent of the vulnerability is the critical first step in mitigating the risk of pass-the-hash.
“CyberArk DNA is the only tool on the market designed to identify and visualise an organisation’s privileged account risk exposure – being able to simultaneously scan for pass-the-hash vulnerabilities is a natural extension of the security and audit tool.”