From 9a83836070b71349858d6bf05541d81e120eb9b2 Mon Sep 17 00:00:00 2001
From: Austin Songer <austin@songer.pro>
Date: Thu, 19 Aug 2021 21:00:36 -0500
Subject: [PATCH 1/2] Update aws_eks_cluster_created_or_deleted.yml

---
 rules/cloud/aws/aws_eks_cluster_created_or_deleted.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/cloud/aws/aws_eks_cluster_created_or_deleted.yml b/rules/cloud/aws/aws_eks_cluster_created_or_deleted.yml
index 342d57448..a5885858c 100644
--- a/rules/cloud/aws/aws_eks_cluster_created_or_deleted.yml
+++ b/rules/cloud/aws/aws_eks_cluster_created_or_deleted.yml
@@ -1,7 +1,7 @@
 title: AWS EKS Cluster Created or Deleted
 id: 33d50d03-20ec-4b74-a74e-1e65a38af1c0
 description: Identifies when an EKS cluster is created or deleted.
-author: Austin Songer
+author: Austin Songer @austinsonger
 status: experimental
 date: 2021/08/16
 references:

From e6457531dd4af505af7b5b5f85f8800ade3e2b45 Mon Sep 17 00:00:00 2001
From: Austin Songer <austin@songer.pro>
Date: Fri, 20 Aug 2021 00:29:29 -0500
Subject: [PATCH 2/2] Create m365.yml

---
 tools/config/generic/m365.yml | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100644 tools/config/generic/m365.yml

diff --git a/tools/config/generic/m365.yml b/tools/config/generic/m365.yml
new file mode 100644
index 000000000..51e08af6e
--- /dev/null
+++ b/tools/config/generic/m365.yml
@@ -0,0 +1,7 @@
+title: Microsoft 365 Rules
+order: 10
+ThreatManagement:
+   product: m365
+   category: ThreatManagement
+   conditions:
+       eventSource: SecurityComplianceCenter