Countermeasures to prevent password hacks on Windows systems

Password cracking is one of the most enjoyable hacks for the bad guys. They uses many software to crack the password. Some of the technique and software are hashing rainbow table by oph crack ,brute force by Proactive Password Auditor ,directory attack etc.
So, from where should you start to protect your system’s passwords hacking. Here is the solution.

1. Some Windows passwords can be gleaned by simply reading the cleartext
or crackable ciphertext from the Windows Registry. So, Allow only administrator access.
2. Use SYSKEY for enhanced Windows password protection. By default, Windows 2000 and newer systems encrypts the SAM database that stores hashes of the Windows account passwords in disable.

Don’t rely on only the SYSKEY utility. Many tools can crack SYSKEY
encryption.
3. Disable null sessions in your Windows version. In Windows NT, enable the following Registry key:

4. Password protect the system BIOS. This is especially important on servers
and laptops that are susceptible to physical security threats and
vulnerabilities, change the order of boot menu.
5.Change passwords every 6 to 12 months or immediately if they’re suspected
of being compromised.