Update lnx_process_discovery.yml

2020-10-21 21:40:46 +03:00
parent 5c34e69fc9
commit a2a1b20335
1 changed files with 1 additions and 1 deletions
@@ -10,7 +10,7 @@ logsource:
    product: linux
 detection:
    selection:
-        - CommandLine|contains:
+        - ProcessName|contains:
          - 'ps '
          - 'top'
    condition: selection