Password Policy Best Practices

(Photo by Sajad Nori on Unsplash)

In this article, we will discuss some “uncommon” password policy best practices, that are not followed by a lot of companies. Those are collected from the Penetration Testing assessments I have conducted over the years.

Company-related Passwords

Let’s take the following scenario:

1. We have a company named “Hooli”