diff --git a/rules/windows/powershell/powershell_memorydump_getstoragediagnosticinfo.yml b/rules/windows/powershell/powershell_memorydump_getstoragediagnosticinfo.yml
index c31fc8027..79ef1050f 100644
--- a/rules/windows/powershell/powershell_memorydump_getstoragediagnosticinfo.yml
+++ b/rules/windows/powershell/powershell_memorydump_getstoragediagnosticinfo.yml
@@ -11,6 +11,7 @@ author: Max Altgelt
 logsource:
     product: windows
     service: powershell
+    definition: Script block logging must be enabled
 detection:
     dump:
         EventID: 4104