Merge pull request #3387 from redsand/backend_hawk_config_update_before_pysigma_migration

Backend: hawk. last update to config until pySigma migration (hopefully)
2022-08-16 22:13:29 +02:00
parent b02b964956 726406f64d
commit 4abd506a4c
1 changed files with 4 additions and 4 deletions
@@ -787,7 +787,7 @@ fieldmappings:
  AccountName: target_username
  TargetDomainName: target_domain
  DnsServerIpAddress: dns_address
-  QueryName: hostname_dst
+  QueryName: dns_query
  AuthenticationPackageName: package_name
  HostProcess: image
  Application: image
@@ -846,10 +846,10 @@ fieldmappings:
  DeviceClassName: object_name
  CallTrace: calltrace
  IpAddress: ip_src
-  WorkstationName: hostname_src
-  Workstation: hostname_src
+  WorkstationName: ip_src_host
+  Workstation: ip_src_host
  DestinationIp: ip_dst
-  DestinationHostname: hostname_dst
+  DestinationHostname: ip_dst_host
  DestinationPort: ip_dport
  GrantedAccess: access_mask
  StartModule: target_process_name