…with the Buffer Overflow protection switched on? If no, then can anyone explain how monitoring the “physical memory” works differently from the “Memory Firewall”?
I can try, Metalforlife.
The Memory firewall checks and protects against Buffer Overflow attacks as you well know.
Checking physical memory would be an AV issue as malware can also hide in your physical memory (not Buffer Overflow, the two are different).
Does this help any?
Buffer overflow does not prevent writing to memory. It prevents execution of the memory, the memory being inside the application
I believe physical memory protection will prevent writing to memory outside the application.
I will have CIS monitor it, then. Being on the safer side.