Skip to content

Commit 295031d

Browse files
SamirbousMikaayenson
Samirbous
and
Mikaayenson
authored
Update rules/cross-platform/multiple_alerts_from_different_modules_by_srcip.toml
Co-authored-by: Mika Ayenson, PhD <[email protected]>
1 parent 50cd75e commit 295031d

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

rules/cross-platform/multiple_alerts_from_different_modules_by_srcip.toml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -37,7 +37,7 @@ from .alerts-security.* metadata _id
3737
Esql.event_module_values = VALUES(event.module),
3838
Esql.rule_name_values = VALUES(kibana.alert.rule.name),
3939
Esql.message_values = VALUES(message),
40-
Esql.event_vategory_values = VALUES(event.category),
40+
Esql.event_category_values = VALUES(event.category),
4141
Esql.destination_ip_values = VALUES(destination.ip),
4242
Esql.host_id_values = VALUES(host.id),
4343
Esql.agent_id_values = VALUES(agent.id),

0 commit comments

Comments
 (0)