RT @cyb3rops: Reg. CISA's report We have a Sigma rule that would've detected that renamed procdump since 2019 & we use a similar YARA rule…