Skip to content

Commit 602f4da

Browse files
zake1godzake1god
authored
Update telegram_detected_access_suspicious_api_url.yml
remove lookups
1 parent 5f47366 commit 602f4da

File tree

1 file changed

+0
-1
lines changed

1 file changed

+0
-1
lines changed

detections/endpoint/telegram_detected_access_suspicious_api_url.yml

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -16,7 +16,6 @@ search: `wineventlog_security`
1616
| `telegram_detected_access_suspicious_api_url_filter`
1717
macros:
1818
- telegram_detected_access_suspicious_api_url_filter
19-
lookups: []
2019
how_to_implement: |
2120
Ensure the relevant data source (`Wineventlog:Security`) is ingested into Splunk.
2221
Configure the macro `telegram_detected_access_suspicious_api_url_filter` to filter false positives or noisy data.

0 commit comments

Comments
 (0)