How to track thread termination if Invoke-Phant0m terminates a thread with no trace in Sysmon?
I recently learned about such a tool as Invoke-Phant0m, this tool has several implementations, one of which is a PowerShell script.
The Invoke-Phant0m.ps1 script is a PowerShell script that uses WMI (Windows Management Instrumentation) tec…