Skip to content

Commit

Permalink
Merge pull request #11 from Ekitji/patch-2
Browse files Browse the repository at this point in the history
Update README.md
  • Loading branch information
mthcht authored Oct 21, 2023
2 parents 77828f5 + c3a7bcf commit 24b83fe
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion elk/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -33,7 +33,7 @@ Different lists to work with the Elastic Stack without using sigma rules by http
15. Go on and finish your rule creating according to your routines.


You can do the same with th_keywords_processnames_elk.txt.
You can do the same with th_keywords_processnames_elk.txt and the other files **as long as the field type is text**
Upload it and follow the same steps, at number 12 change the list_id to th_keywords_processnames_elk.txt
Then change the indicator mapping field to process.name instead.

Expand Down

0 comments on commit 24b83fe

Please sign in to comment.