diff --git a/rules/windows/process_creation/win_susp_service_dacl_modification.yml b/rules/windows/process_creation/win_susp_service_dacl_modification.yml
index eaa1529af..82f5e0f35 100644
--- a/rules/windows/process_creation/win_susp_service_dacl_modification.yml
+++ b/rules/windows/process_creation/win_susp_service_dacl_modification.yml
@@ -1,7 +1,7 @@
 title: Suspicious Service DACL Modification
 id: 99cf1e02-00fb-4c0d-8375-563f978dfd37
 description: Detects suspicious DACL modifications that can  be used to hide services or make them unstopable
-author: Jonhnathan Ribeiro
+author: Jonhnathan Ribeiro, oscd.community
 status: experimental
 date: 2020/10/16
 references: