Skip to content

Commit 2ab639b

Browse files
AegrahAegrah
authored
Update reconnaissance_web_server_discovery_or_fuzzing_activity.toml
1 parent 987486a commit 2ab639b

File tree

1 file changed

+1
-7
lines changed

1 file changed

+1
-7
lines changed

rules/cross-platform/reconnaissance_web_server_discovery_or_fuzzing_activity.toml

Lines changed: 1 addition & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -33,13 +33,7 @@ tags = [
3333
timestamp_override = "event.ingested"
3434
type = "esql"
3535
query = '''
36-
from
37-
logs-network_traffic.http-*,
38-
logs-network_traffic.tls-*,
39-
logs-nginx.access-*,
40-
logs-apache.access-*,
41-
logs-apache_tomcat.access-*,
42-
logs-iis.access-*
36+
from logs-network_traffic.http-*, logs-network_traffic.tls-*, logs-nginx.access-*, logs-apache.access-*, logs-apache_tomcat.access-*, logs-iis.access-*
4337
| where
4438
(url.original is not null or url.full is not null) and
4539
http.request.method == "GET" and

0 commit comments

Comments
 (0)