nccgroup/mimikatz-detector-condrv external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nccgroup/mimikatz-detector-condrv

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nccgroup/mimikatz-detector-condrv)

Close

nccgroup / mimikatz-detector-condrvView on GitHubMore

• External links
• Readme badge

The Console Monitor Driver is a KMDF kernel-mode filter driver that captures certain Fast I/O operations (input and output) that is sent to or from the ConDrv. ConDrv is a device created by condrv.sys, which handles the traffic between the Console Application (cmd/powershell/etc) and the actual console (conhost.exe).

☆41Sep 6, 2022Updated 3 years ago

Alternatives and similar repositories for mimikatz-detector-condrv

Users that are interested in mimikatz-detector-condrv are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• nccgroup / mimikatz-detector-busylight

  View on GitHub
  USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
  ☆21Sep 6, 2022Updated 3 years ago
• arsium / BypassGetModuleBaseAddressAndGetExportAddress

  View on GitHub
  A proof of concept of real custom GetProcAddress and GetModuleBaseAddress
  ☆21Jul 9, 2022Updated 3 years ago
• susMdT / effective-waffle

  View on GitHub
  yet another sleep encryption thing. also used the default github repo name for this one.
  ☆69May 11, 2023Updated 2 years ago
• 0xRedpoll / ludus_mythic_teamserver

  View on GitHub
  Ludus role for deploying a Mythic Teamserver onto Linux servers
  ☆23Mar 16, 2025Updated last year
• ch3rn0byl / WinDbg-Extensions

  View on GitHub
  ☆18Mar 1, 2021Updated 5 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• klezVirus / DCKFinder

  View on GitHub
  Dangling COM Keys Finder
  ☆17Nov 16, 2021Updated 4 years ago
• paranoidninja / DotNetTracer

  View on GitHub
  C code to enable ETW tracing for Dotnet Assemblies
  ☆32Aug 12, 2022Updated 3 years ago
• corbamico / masm64_simple_example

  View on GitHub
  very simple masm64 example to demonstrate how to compile MASM 64 bit using NMake/CMake
  ☆14Aug 23, 2022Updated 3 years ago
• jonny-jhnson / ProcCallback

  View on GitHub
  An example of how a driver can register a handle creation callback.
  ☆16Jun 12, 2023Updated 2 years ago
• msuiche / dinfo

  View on GitHub
  Offline Active Directory Domain Services (AD DS) Join
  ☆12Jan 4, 2017Updated 9 years ago
• a7t0fwa7 / windows-ps-callbacks-experiments

  View on GitHub
  Files for http://deniable.org/windows/windows-callbacks
  ☆26Jul 9, 2020Updated 5 years ago
• tringi / x32-abi-windows

  View on GitHub
  Test/benchmark of using 32-bit pointers in 64-bit code on Windows. Not an actual ABI, only inspired by Linux's x32 ABI.
  ☆13Jun 7, 2019Updated 6 years ago
• xpn / RpcEnum

  View on GitHub
  An command-line RPC method enumerator, born out of RPCView's awesomeness
  ☆109Jul 31, 2019Updated 6 years ago
• LloydLabs / process-enumeration-stealth

  View on GitHub
  ☆84Aug 26, 2024Updated last year
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• OtterHacker / CoffLoader

  View on GitHub
  ☆62Jan 9, 2023Updated 3 years ago
• kkent030315 / Van1338

  View on GitHub
  A journal for $6,000 Riot Vanguard bounty.
  ☆70Sep 22, 2023Updated 2 years ago
• 0xMegaByte / COM-Explained

  View on GitHub
  ☆26Sep 29, 2022Updated 3 years ago
• xpn / stego-playground

  View on GitHub
  ☆36Oct 26, 2023Updated 2 years ago
• armvirus / VanguardTrace

  View on GitHub
  Decrypting and intercepting encrypted imports of Vanguards Kernel Driver
  ☆35Feb 13, 2024Updated 2 years ago
• CodeXTF2 / cobaltstrike-sleepmask-yara

  View on GitHub
  Just a git repo for the sleepmask detection rule i found in https://codex-7.gitbook.io/codexs-terminal-window/blue-team/detecting-cobalt-…
  ☆16Jun 4, 2025Updated 10 months ago
• nccgroup / WindowsPatchDetector

  View on GitHub
  Experimental Windows .text section Patch Detector
  ☆22Jan 26, 2015Updated 11 years ago
• trustedsec / Windows-MS-LSAT-RPC-Example

  View on GitHub
  Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD
  ☆28Jan 4, 2024Updated 2 years ago
• whokilleddb / ETWListicle

  View on GitHub
  List the ETW provider(s) in the registration table of a process.
  ☆82Sep 20, 2023Updated 2 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• diversenok / Suspending-Techniques

  View on GitHub
  Comparing, discussing, and bypassing various techniques for suspending and freezing processes on Windows.
  ☆137Nov 10, 2021Updated 4 years ago
• synacktiv / sccmsqlclient

  View on GitHub
  ☆26Apr 10, 2026Updated 3 weeks ago
• FuzzySecurity / WWHF-WayWest-2022

  View on GitHub
  ☆37May 8, 2022Updated 3 years ago
• am0nsec / wkpe

  View on GitHub
  Windows Kernel Programming Experiments
  ☆84Sep 18, 2022Updated 3 years ago
• qwqdanchun / Little-CRT

  View on GitHub
  ☆11Sep 30, 2023Updated 2 years ago
• ionescu007 / clfs-docs

  View on GitHub
  Unofficial Common Log File System (CLFS) Documentation
  ☆189Oct 5, 2021Updated 4 years ago
• GetRektBoy724 / SharpLoadLibrary

  View on GitHub
  An attempt to make a LoadLibrary designed for offensive operations, in C# obviously.
  ☆55Mar 3, 2022Updated 4 years ago
• S3cur3Th1sSh1t / SharpOxidResolver

  View on GitHub
  IOXIDResolver from AirBus Security/PingCastle
  ☆51Nov 25, 2020Updated 5 years ago
• yanghaoi / 360SecuritySandboxEscape

  View on GitHub
  Proofs-Of-360Security Sandbox Escape
  ☆10Mar 18, 2022Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• t94j0 / gophish-notifier

  View on GitHub
  Notification webhook for GoPhish
  ☆57Jun 10, 2024Updated last year
• mannyfred / MentalTi

  View on GitHub
  Mentally ill EtwTi parser
  ☆70Jan 11, 2026Updated 3 months ago
• a7t0fwa7 / SymProcSleuth

  View on GitHub
  A pure C version of SymProcAddress
  ☆30Mar 17, 2024Updated 2 years ago
• MrTuxx / aad-sso-enum-brute-spray

  View on GitHub
  Proof of Concept in Go from Secureworks' research on Azure Active Directory Brute-Force Attacks. Inspired by @treebuilder's POC on PowerS…
  ☆14Feb 23, 2022Updated 4 years ago
• ricardojoserf / NativeTokenImpersonate

  View on GitHub
  Impersonate Tokens using only NTAPI functions
  ☆84Apr 4, 2025Updated last year
• arsium / ShellCodeExec

  View on GitHub
  My personal shellcode loader
  ☆31Mar 9, 2023Updated 3 years ago
• Jasper1467 / WindowsDefender_Rebuild

  View on GitHub
  An attempt at reversing WindowsDefender
  ☆20Oct 6, 2024Updated last year