Update o365_exfiltration_via_file_access.yml

nterl0k · web-flow · commit 039ef3686518 · 2025-01-28T15:59:01.000-05:00
diff --git a/detections/cloud/o365_exfiltration_via_file_access.yml b/detections/cloud/o365_exfiltration_via_file_access.yml
@@ -75,4 +75,4 @@ tests:
   attack_data:
   - data: https://media.githubusercontent.com/media/splunk/attack_data/master/datasets/attack_techniques/T1567/o365_sus_file_activity/o365_sus_file_activity.log
     source: o365
-	sourcetype: o365:management:activity
+    sourcetype: o365:management:activity
