The password policy helps ensure that a user's password is strong and is changed periodically so that it becomes impossible for an attacker to crack the password.

By default, the password policy is configured like this:

From an attacker's point of view it is useful to list the password policy in force on the domain and then be able to do either:

• Bruteforce

• Guessing

• Spraying

• Cracking

cme smb 192.168.1.0/24 -u <USERNAME> -p '<PASSWORD>' --pass-pol

net accounts

get-addomain | get-adobject -propertcies * | select *pwd*er

Get-ADDefaultDomainPasswordPolicy -Identity domain.local

Get-DomainPolicy