npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@loginguards/loginguards-win

v2.0.0

Published

LoginGuards Active Directory Password Protection for Windows

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

loginguardsloginguards

Keywords

active-directorypasswordsecuritywindowsloginpolicybreachzerotrust

Readme

LoginGuards Active Directory Password Protection (Windows)

Enterprise-grade password breach prevention for Windows domains.

Features

  • Zero Trust password validation via LoginGuards API
  • Windows Password Filter DLL for domain-wide enforcement on DCs
  • Local Windows service policy engine (named pipe IPC)
  • No password storage; passwords never logged
  • Secure API key storage (Windows Credential Manager via keytar)
  • CLI: configure, install, test, uninstall, check, pipe-test

Install (development)

npm i -g @loginguards/loginguards-win
loginguards-win configure
loginguards-win install
loginguards-win test
loginguards-win --help

Configuration

  • API base: https://api.loginguards.com/v1
  • Required header: x-api-key: <LOGIN_GUARDS_API_KEY>
  • Behavior on API failure is configurable: fail-open (default) or fail-closed
  • Timeout default: 1500ms (configurable)

Security

  • Never logs plaintext passwords
  • API key stored in Windows Credential Manager
  • HTTPS only

Active Directory Integration (V2)

V2 includes a signed x64 Windows Password Filter DLL that runs inside LSASS on Domain Controllers and communicates with the local policy engine via a named pipe (\\.\\pipe\\LoginGuardsPwdFilter). The service calls the LoginGuards API and returns an allow/deny decision to the DLL.

Decision mapping uses the API field breached and returns reasons: SAFE, COMPROMISED, API_DOWN, TIMEOUT, NO_API_KEY. Default policy is fail-open.

Deployment (Domain Controller only)

  1. Configure API connectivity on the DC:
    loginguards-win configure
  2. Install service and register the password filter (admin required; reboot recommended):
    # A prebuilt DLL can be bundled at assets/LoginGuardsPwdFilter/x64/LoginGuardsPwdFilter.dll
# Or provide an explicit path via --dllPath
loginguards-win install \
  --failMode open \
  --timeoutMs 1500 \
  --pipeName "\\.\\pipe\\LoginGuardsPwdFilter" \
  --reboot
  3. Reboot is required for the password filter to load into LSASS.

To uninstall on a DC:

loginguards-win uninstall --reboot

Test and Diagnostics

  • Domain Controller mode:

    loginguards-win test --mode dc

    Validates service, pipe, registry (Notification Packages), DLL presence, API reachability, and evaluates a non-destructive test password.

  • Client mode (domain-joined workstation):

    loginguards-win test --mode client

    Shows domain membership and logon server; enforcement validation must be run on a DC.

  • Direct password check (no storage/logging):

    loginguards-win check --prompt
# or
loginguards-win check --password "YourPassword" --debug

Recommended Rollout (Safety)

  • Deploy to a secondary Domain Controller first
  • Validate password resets/changes with test users
  • Roll out to all Domain Controllers after validation

Uninstall

loginguards-win uninstall