Update hawk.yml

2022-12-23 20:59:40 +01:00
parent b53f534d2f
commit 316aa03efd
1 changed files with 1 additions and 1 deletions
@@ -171,7 +171,7 @@ logsources:
   category: file_change
   conditions:
     product_name: "Sysmon"
-     vendor_id: "11"
+     vendor_id: "2"
 windows-pipe-created:
   product: windows
   category: pipe_created