From 2c964503e98d039a56075b5865703646a1337b95 Mon Sep 17 00:00:00 2001
From: SimoneCagol <57213014+SimoneCagol@users.noreply.github.com>
Date: Fri, 14 Jan 2022 13:05:45 +0100
Subject: [PATCH] Update sysmon_raw_disk_access_using_illegitimate_tools.yml

---
 .../sysmon_raw_disk_access_using_illegitimate_tools.yml         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/windows/raw_access_thread/sysmon_raw_disk_access_using_illegitimate_tools.yml b/rules/windows/raw_access_thread/sysmon_raw_disk_access_using_illegitimate_tools.yml
index 254351b3b..16802f56e 100644
--- a/rules/windows/raw_access_thread/sysmon_raw_disk_access_using_illegitimate_tools.yml
+++ b/rules/windows/raw_access_thread/sysmon_raw_disk_access_using_illegitimate_tools.yml
@@ -4,7 +4,7 @@ description: Raw disk access using illegitimate tools, possible defence evasion
 author: Teymur Kheirkhabarov, oscd.community
 status: test
 date: 2019/10/22
-modified: 2022/02/02
+modified: 2022/01/02
 references:
     - https://www.slideshare.net/heirhabarov/hunting-for-credentials-dumping-in-windows-environment
 tags: