Skip to content

Commit

Permalink
Update README.md
Browse files Browse the repository at this point in the history 
on field type: text
  • Loading branch information
@Ekitji
Ekitji authored Oct 21, 2023
1 parent 77828f5 commit c3a7bcf
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion elk/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,7 +33,7 @@ Different lists to work with the Elastic Stack without using sigma rules by http
15. Go on and finish your rule creating according to your routines.


You can do the same with th_keywords_processnames_elk.txt.
You can do the same with th_keywords_processnames_elk.txt and the other files **as long as the field type is text**
Upload it and follow the same steps, at number 12 change the list_id to th_keywords_processnames_elk.txt
Then change the indicator mapping field to process.name instead.

Expand Down

0 comments on commit c3a7bcf

Please sign in to comment.