diff --git a/rules/windows/builtin/win_susp_process_creations.yml b/rules/windows/builtin/win_susp_process_creations.yml
index 10b6a12ba..b6274a288 100644
--- a/rules/windows/builtin/win_susp_process_creations.yml
+++ b/rules/windows/builtin/win_susp_process_creations.yml
@@ -1,7 +1,7 @@
 ---
 action: global
 title: Suspicious Process Creation
-description: Detects suspicious process starts on Windows systems bsed on keywords
+description: Detects suspicious process starts on Windows systems based on keywords
 status: experimental
 references:
     - https://www.swordshield.com/2015/07/getting-hashes-from-ntds-dit-file/