Change status for old rules

rules/windows/process_creation/win_vul_java_remote_debugging.yml

@@ -1,26 +1,26 @@
 title: Java Running with Remote Debugging
 id: 8f88e3f6-2a49-48f5-a5c4-2f7eedf78710
+status: test
 description: Detects a JAVA process running with remote debugging allowing more than just localhost to connect
-status: experimental
 author: Florian Roth
 date: 2019/01/16
-modified: 2020/08/29
+modified: 2021/11/27
 logsource:
-    category: process_creation
-    product: windows
+  category: process_creation
+  product: windows
 detection:
-    selection:
-        CommandLine|contains: 'transport=dt_socket,address='
-    exclusion:
-        - CommandLine|contains: 'address=127.0.0.1'
-        - CommandLine|contains: 'address=localhost'
-    condition: selection and not exclusion
+  selection:
+    CommandLine|contains: 'transport=dt_socket,address='
+  exclusion:
+    - CommandLine|contains: 'address=127.0.0.1'
+    - CommandLine|contains: 'address=localhost'
+  condition: selection and not exclusion
 fields:
-    - CommandLine
-    - ParentCommandLine
+  - CommandLine
+  - ParentCommandLine
 falsepositives:
-    - unknown
+  - unknown
 level: medium
 tags:
-    - attack.t1203
-    - attack.execution
+  - attack.t1203
+  - attack.execution