Update command_and_control_suricata_elastic_defend_c2.toml

Author: Samirbous

rules/cross-platform/command_and_control_suricata_elastic_defend_c2.toml

@@ -11,7 +11,7 @@ This detection correlates Suricata alerts and events with Elastic Defend network
 performing the network activity.
 """
 from = "now-9m"
-index = ["logs-endpoint.events.network-*", "filebeat-*"]
+index = ["logs-endpoint.events.network-*", "filebeat-*", "logs-suricata.*"]
 language = "eql"
 license = "Elastic License v2"
 name = "Suricata and Elastic Defend Network Correlation"