Merge branch 'V1-to-V2-apps-migration' of https://github.com/SumoLogic/sumologic-documentation into V1-to-V2-apps-migration

JV0812 · JV0812 · commit c75856d0e476 · 2025-05-02T10:59:07.000+05:30
diff --git a/docs/integrations/security-threat-detection/threat-intel-quick-analysis.md b/docs/integrations/security-threat-detection/threat-intel-quick-analysis.md
@@ -267,12 +267,11 @@ You can further investigate bad IP triggers by updating your query to check the
 **Description:** Indicates a confidence level by which an indicator is considered to be malicious. For example, a malicious file hash may always have a value of high while domains and IP addresses will very likely change over time. The malicious confidence level is also represented under the labels list in the JSON data structure.<br/>
 Once an indicator has been marked with a malicious confidence level, it continues to have that confidence level value until updated by CrowdStrike. If you think there is a false positive, please file a Support ticket, and we'll work with CrowdStrike to investigate the IOC in question and update the threat details.<br/>
 **Values:**
-
-* high
-* medium
-* low
-* unverified—This indicator has not been verified by a CrowdStrike Intelligence analyst or an automated system.
-* null—Indicates that Sumo Logic has no information about the threat record.
+   * high
+   * medium
+   * low
+   * unverified—This indicator has not been verified by a CrowdStrike Intelligence analyst or an automated system.
+   * null—Indicates that Sumo Logic has no information about the threat record.
 
 ---
 #### `published_date`
@@ -298,13 +297,13 @@ Once an indicator has been marked with a malicious confidence level, it continue
 **Data Type:** string<br/>
 **Description:** The point in the kill chain at which an indicator is associated. The kill chain list is also represented under the labels list in the JSON data structure.<br/>
 **Values:**  
-* reconnaissance—This indicator is associated with the research, identification, and selection of targets by a malicious actor.
-* weaponization—This indicator is associated with assisting a malicious actor create malicious content.
-* delivery—This indicator is associated with the delivery of an exploit or malicious payload.
-* exploitation—This indicator is associated with the exploitation of a target system or environment.
-* installation—This indicator is associated with the installation or infection of a target system with a remote access tool or other tool allowing for persistence in the target environment.
-* c2 (Command and Control)—This indicator is associated with malicious actor command and control.
-* actionOnObjectives—This indicator is associated with a malicious actor's desired effects and goals.
+   * reconnaissance—This indicator is associated with the research, identification, and selection of targets by a malicious actor.
+   * weaponization—This indicator is associated with assisting a malicious actor create malicious content.
+   * delivery—This indicator is associated with the delivery of an exploit or malicious payload.
+   * exploitation—This indicator is associated with the exploitation of a target system or environment.
+   * installation—This indicator is associated with the installation or infection of a target system with a remote access tool or other tool allowing for persistence in the target environment.
+   * c2 (Command and Control)—This indicator is associated with malicious actor command and control.
+   * actionOnObjectives—This indicator is associated with a malicious actor's desired effects and goals.
 
 ---
 #### `labels`
