Mimikatz is often used by threat actors to capture the credentials of current sessions (active or disconnected), which can then be used for lateral movement through an environment.

Every ransomware event we've seen in recent times has made use of Mimikatz.

Another vote for this, especially with the constant threat of Mimikatz these days.

You can already do that with a database maintenance action. Ours purge after 90 days.

https://snipboard.io/xBX2wc.jpg

Another bump for this one. The adding of links for send ctrl+alt+del was nice, as well as send saved creds, but the hotkeys would be brilliant too.

Being able to exclude particular sessions from video capture would be helpful, we've got a few sessions that are CCTV DVRs so max out the file size pretty quick. Being able to exclude them temporarily would be very helpful!