Skip to content

Commit 85126a0

Browse files
MikaayensonAegrah
Mikaayenson
and
Aegrah
authored
Update rules/cross-platform/defense_evasion_genai_process_encoding_prior_to_network_activity.toml
Co-authored-by: Ruben Groenewoud <[email protected]>
1 parent ddd8f6a commit 85126a0

File tree

1 file changed

+1
-0
lines changed

1 file changed

+1
-0
lines changed

rules/cross-platform/defense_evasion_genai_process_encoding_prior_to_network_activity.toml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -15,6 +15,7 @@ communications.
1515
from = "now-9m"
1616
index = [
1717
"logs-endpoint.events.process-*",
18+
"logs-endpoint.events.network-*",
1819
"logs-windows.sysmon_operational-*",
1920
"winlogbeat-*",
2021
"logs-m365_defender.event-*",

0 commit comments

Comments
 (0)