fix: remove . from title

2022-04-06 16:37:04 +02:00
parent b40b513d3f
commit 7cbfc7f16a
4 changed files with 8 additions and 8 deletions
@@ -1,4 +1,4 @@
-title: Azure Key Vault Modified or Deleted.
+title: Azure Key Vault Modified or Deleted
 id: 459a2970-bb84-4e6a-a32e-ff0fbd99448d
 description: Identifies when a key vault is modified or deleted.
 author: Austin Songer @austinsonger
@@ -11,7 +11,7 @@ logsource:
  service: activitylogs
 detection:
    selection:
-        properties.message: 
+        properties.message:
            - MICROSOFT.KEYVAULT/VAULTS/WRITE
            - MICROSOFT.KEYVAULT/VAULTS/DELETE
            - MICROSOFT.KEYVAULT/VAULTS/DEPLOY/ACTION
@@ -1,6 +1,6 @@
-title: Google Cloud Re-identifies Sensitive Information.
+title: Google Cloud Re-identifies Sensitive Information
 id: 234f9f48-904b-4736-a34c-55d23919e4b7
-description: Identifies when sensitive information is re-identified in google Cloud. 
+description: Identifies when sensitive information is re-identified in google Cloud.
 author: Austin Songer @austinsonger
 status: experimental
 date: 2021/08/15
@@ -1,4 +1,4 @@
-title: New or Renamed User Account with '$' in Attribute 'SamAccountName'.
+title: New or Renamed User Account with '$' in Attribute 'SamAccountName'
 id: cfeed607-6aa4-4bbd-9627-b637deb723c8
 status: experimental
 description: Detects possible bypass EDR and SIEM via abnormal user account name.
@@ -13,10 +13,10 @@ logsource:
    service: security
 detection:
    selection:
-        EventID: 
+        EventID:
            - 4720 # create user
            - 4781 # rename user
-        SamAccountName|contains: '$'    
+        SamAccountName|contains: '$'
    condition: selection
 fields:
    - EventID
@@ -1,4 +1,4 @@
-title: Accessing WinAPI in PowerShell. Code Injection.
+title: Accessing WinAPI in PowerShell. Code Injection
 id: eeb2e3dc-c1f4-40dd-9bd5-149ee465ad50
 status: test
 description: Detecting Code injection with PowerShell in another process