CVE-2023-29343 This is PoC for arbitrary file write bug in Sysmon version 1414 After last patch Sysmon would check if Archive directory exists and if it exists it would check if archive directory is owned by NT AUTHORITY\SYSTEM and access is only granted to NT AUTHORITY\SYSTEM If both conditions are true then Sysmon will write/delete files in that directory As its not possi