Vulmon
SysmonEoP Proof of Concept for arbitrary file delete/write in Sysmon (CVE-2022-41120/CVE-2022-44704) Vulnerability Vulnerability is in code responsible for ClipboardChange event that can be reached through RPC Local users can send data to RPC server which will then be written in C:\Sysmon directory (default ArchiveDirectory) and deleted afterwards In version before 1411 Sysm