fix issues with wrong tagging

rules/windows/process_creation/win_net_user_add.yml

@@ -8,7 +8,7 @@ author: Endgame, JHasenbusch (adapted to sigma for oscd.community)
 date: 2018/10/30
 modified: 2019/11/11
 tags:
-    - attack.persistance
+    - attack.persistence
     - attack.credential_access
     - attack.t1136
 logsource:

rules/windows/sysmon/sysmon_in_memory_assembly_execution.yml

@@ -7,7 +7,7 @@ references:
     - https://azure.microsoft.com/en-ca/blog/detecting-in-memory-attacks-with-sysmon-and-azure-security-center/
 tags:
     - attack.privilege_escalation
-    - attack.T1055
+    - attack.t1055
 logsource:
     product: windows
     service: sysmon

rules/windows/sysmon/sysmon_minidumwritedump_lsass.yml

@@ -10,7 +10,7 @@ references:
     - https://medium.com/@fsx30/bypass-edrs-memory-protection-introduction-to-hooking-2efb21acffd6
 tags:
     - attack.credential_access
-    - attack.T1003
+    - attack.t1003
 logsource:
     product: windows
     service: sysmon

rules/windows/sysmon/sysmon_suspicious_remote_thread.yml

@@ -14,7 +14,7 @@ logsource:
     service: sysmon
 tags:
     - attack.privilege_escalation
-    - attack.T1055
+    - attack.t1055
 detection:
     selection: 
         EventID: 8