The other challenge is that a popular way to crack windows passwords is by extracting the hashes from the SAM or the cached domain passwords (see IronGeek's post here http://www.antionline.com/showthread...hreadid=266698 )

Cracked passwords using either of these methods are undetectable, since the cracking occurs "off-line."