Background First two parts are related to observing process: what is it doing? Part 1 touched on Windows Process Auditing & Part 2 covered Sysmon. This part illustrates how we can use events from Event Tracing for Windows to disrupt malicious Code-...
1 min read
4 min read
1 follower
Technologist specialising in Cyber Defense
7 min read
5 min read
2 min read