We have an opportunity to do some on-site password integrity testing for a few days at a medium sized client site. The service group who normally does this thinks it is too small of a job to bother with, so we're handling it through a consulting contract.

So, we don't have any licensed software or anything yet to work with. Just a laptop and access. What are your suggestions for tools to go about this?

I am planning on a dual boot system so we can run tools under both Windows and *NIX. The bulk of the testing will be 500+ Active Directory accounts, but we'll have a handful of /etc/passwd and /etc/shadow files, plus some accounts from routers and other devices on the network.

What would *your* wishlist be, and why?