From c446c519cfafafa2bdd52bb4f1f5d46f156f6365 Mon Sep 17 00:00:00 2001
From: Sittikorn S <61369934+BlackB0lt@users.noreply.github.com>
Date: Tue, 29 Jun 2021 13:59:08 +0700
Subject: [PATCH] Update web_cve_2021_22893_pulse_secure_rce_exploit.yml

---
 rules/web/web_cve_2021_22893_pulse_secure_rce_exploit.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/web/web_cve_2021_22893_pulse_secure_rce_exploit.yml b/rules/web/web_cve_2021_22893_pulse_secure_rce_exploit.yml
index e1620afa8..e467448ed 100644
--- a/rules/web/web_cve_2021_22893_pulse_secure_rce_exploit.yml
+++ b/rules/web/web_cve_2021_22893_pulse_secure_rce_exploit.yml
@@ -32,7 +32,7 @@ detection:
             - '200'
     condition: selection1 and selection2 | count(sc-status) by src_ip > 3
     timeframe: 30m
-  ---
+---
 logsource:
     product: PulseSecure
 detection: