Data verified May 2026
ADYour product here. Reach security decision-makers.Launch a campaignPass the Hash Guidance Description
This project hosts scripts for aiding administrators in implementing Pass the Hash mitigations as outlined in the Reducing the Effectiveness of Pass the Hash paper. The PtHTools module contains the main commands for helping with implementing PtH mitigations: - Find-PotentialPtHEvents - Invoke-DenyNetworkAccess - Edit-AllLocalAccountPasswords - Get-LocalAccountSummaryOnDomain - Invoke-SmartcardHashRefresh - Find-OldSmartcardHash See the PtHTools readme file for more information on how to use them. Guidance: Reducing the Effectiveness of Pass the Hash Long-Lived Hashes for AD Smartcard Required Accounts Limit Workstation-to-Workstation Communication Microsoft guidance: https://aka.ms/pth - Microsoft's Pass-the-Hash general resource page. Mitigating Pass-the-Hash and Other Credential Theft v1 Mitigating Pass-the-Hash and Other Credential Theft v2 How Pass-the-Hash works Local Administrator Password Solution - LAPS is a Microsoft supported tool that ensures local administrator accounts do not all have the same password. It is an alternative to the Edit-AllLocalAccountPasswords command found in PtHTools. krbtgt refresh script - Resets the krbtgt account password twice to invalidate the hash.
Pass the Hash Guidance FAQ
Common questions about Pass the Hash Guidance including features, pricing, alternatives, and user reviews.
Pass the Hash Guidance is Project hosting scripts for implementing Pass the Hash mitigations with PtHTools module commands. It is a IAM solution designed to help security teams with Active Directory, Mitigation.
Pass the Hash Guidance is a free IAM tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/nsacyber/Pass-the-Hash-Guidance/ for download and installation instructions.
Popular alternatives to Pass the Hash Guidance include:
1.Securden Unified PAM - Unified PAM platform for privileged account, session, endpoint & vendor access mgmt (Commercial)
2.One Identity Safeguard - PAM solution for securing privileged accounts and access across enterprises (Commercial)
3.Securden Endpoint Privilege Manager - Endpoint privilege mgmt solution for removing local admin rights on endpoints (Commercial)
4.cyberelements Privileged Access Management Solution - Zero Trust PAM solution for IT/OT environments with session recording (Commercial)
5.Defakto On-Prem - Identity mgmt for on-prem systems replacing static credentials w/ ephemeral IDs (Commercial)
Compare these tools and more at https://cybersectools.com/categories/iam
Pass the Hash Guidance is for security teams and organizations that need Active Directory, Mitigation. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other IAM tools can be found at https://cybersectools.com/categories/iam
Have more questions? Browse our categories or search for specific tools.
