Microsoft Sysmon now detects malware process tampering attempts

Microsoft has released Sysmon 13 with a new security feature that detects if a process has been tampered using process hollowing or process herpaderping techniques. […] This post appeared first on Bleeping Computer
Author: Lawrence Abrams