Hi.

Microsoft does all of this for you by design before you even need to elevate privileges or get into the kernel...

My list includes around a hundred AV or endpoint security solutions to evaluate. Any idea which ones I should start with? The question is. If we talk about unauthorized actions.

Hi.

https://hexderef.com/windows-11-passwords-in-memory-lsass-ctfmon-analysis

Should it be a concern if another AV behaves like this? Definitely, especially if it transmits credentials over the network.

Search engines don’t return anything similar that works with the latest versions, so I thought I’d leave this here.

https://overlayhack.com/unknown-malware-threat