Strong passwords are important, so maybe it would be nice to add a password strength audit feature to Defender.
- check which of your users are using weak passwords
- enforce the use of strong passwords.
- show a visual password strength indicator when creating a new password in signup and password reset forms
- force users to create a new password every x days/weeks, etc.
- compare an entered password with a list of known leaked passwords (Wordfence does this)