Update suspicious_event_log_service_behavior.yml

Author: patel-bhavin

detections/deprecated/suspicious_event_log_service_behavior.yml

@@ -5,7 +5,7 @@ date: '2025-02-10'
 author: Mauricio Velazco, Splunk
 status: deprecated
 type: Hunting
-description: The following analytic detects the shutdown of the Windows Event Log
+description: This search has been deprecated in favour of Windows Event Logging Service Has Shutdown . The following analytic detects the shutdown of the Windows Event Log
   service using Windows Event ID 1100. This event is logged every time the service
   stops, including during normal system shutdowns. Monitoring this activity is crucial
   as it can indicate attempts to cover tracks or disable logging. If confirmed malicious,