Refactor BitLocker COM Hijacking dataset YAML

Updated the BitLocker COM Hijacking dataset YAML file to streamline the structure and remove redundant entries.

Author: nasbench

datasets/attack_techniques/T1546.015/bitlocker_com_hijacking/bitlocker_com_hijacking.yml

@@ -1,29 +1,17 @@
----
-name: BitLocker COM Hijacking Lateral Movement
+author: Ali Atashgar (AAtashGar)
 id: b8f4c2a1-9e7d-4f3b-8a1c-5d9e7f2b6a3e
-version: 1
 date: '2025-11-25'
-author: Ali Atashgar (AAtashGar)
-type: dataset
-description: Simulated Windows Security and System events demonstrating the
-  BitLocker Network Unlock COM Object Hijacking lateral movement technique
-  (T1574.015 / T1546.015) using RemoteRegistry service enablement, HKCU CLSID
-  manipulation, and execution via baaupdate.exe or BdeUISrv.exe.
+description: Simulated Windows Security and System events demonstrating the BitLocker Network Unlock COM Object Hijacking lateral movement technique (T1574.015 / T1546.015) using RemoteRegistry service enablement, HKCU CLSID manipulation, and execution via baaupdate.exe or BdeUISrv.exe.
 environment: NA
 directory: bitlocker_com_hijacking
 mitre_technique:
   - T1546.015
-references:
-  - https://ipurple.team/2025/08/04/lateral-movement-bitlocker/
-  - https://github.com/rtecCyberSec/BitlockMove
 attack_data:
-  - file_name: windows-security.log
-    data: datasets/attack_techniques/T1546.015/
-        bitlocker_com_hijacking/windows-security.log
+  - name: windows-security.log
+    data: datasets/attack_techniques/T1546.015/bitlocker_com_hijacking/windows-security.log
     source: XmlWinEventLog:Security
-    sourcetype: XmlWinEventLog:Security
-  - file_name: windows-system.log
-    data: datasets/attack_techniques/T1546.015/
-        bitlocker_com_hijacking/windows-system.log
+    sourcetype: XmlWinEventLog
+  - name: windows-system.log
+    data: datasets/attack_techniques/T1546.015/bitlocker_com_hijacking/windows-system.log
     source: XmlWinEventLog:System
-    sourcetype: XmlWinEventLog:System
+    sourcetype: XmlWinEventLog