Process Doppelgänging: a more stealth alternative of the process hollowing technique?

Recently at Black Hat Europe conference, Tal Liberman and Eugene Kogan (enSilo lab) presented a a new code injection technique called “Process Doppelgänging”, that works on all Windows versions and seems to be able to bypass most of today’s major security products. This technique is a possible alternative to the …

Article Link: https://andreafortuna.org/cybersecurity/process-doppelganging-a-more-stealth-alternative-of-the-process-hollowing-technique/