Skip to content

Commit aa68032

Browse files
AegrahAegrah
committed
Update reconnaissance_web_server_discovery_or_fuzzing_activity.toml
1 parent ed33885 commit aa68032

File tree

1 file changed

+5
-5
lines changed

1 file changed

+5
-5
lines changed

rules/cross-platform/reconnaissance_web_server_discovery_or_fuzzing_activity.toml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -20,18 +20,18 @@ risk_score = 21
2020
rule_id = "8383a8d0-008b-47a5-94e5-496629dc3590"
2121
severity = "low"
2222
tags = [
23-
"Domain: Single",
23+
"Domain Scope: Single",
2424
"Domain: Web",
2525
"OS: Linux",
2626
"OS: macOS",
2727
"OS: Windows",
2828
"Use Case: Threat Detection",
2929
"Tactic: Reconnaissance",
3030
"Data Source: Network Packet Capture",
31-
"Data Source: Nginx Access Logs",
32-
"Data Source: Apache Access Logs",
33-
"Data Source: Apache Tomcat Access Logs",
34-
"Data Source: IIS Access Logs",
31+
"Data Source: Nginx",
32+
"Data Source: Apache",
33+
"Data Source: Apache Tomcat",
34+
"Data Source: IIS",
3535
]
3636
timestamp_override = "event.ingested"
3737
type = "esql"

0 commit comments

Comments
 (0)