From e9fa5bde2be9f3d48eb4e3f7c86432f416b9f700 Mon Sep 17 00:00:00 2001
From: zakibro <48967550+zakibro@users.noreply.github.com>
Date: Mon, 6 Sep 2021 18:55:58 +0200
Subject: [PATCH] Update lnx_auditd_hidden_files_directories.yml

Correction of tag
---
 rules/linux/auditd/lnx_auditd_hidden_files_directories.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/linux/auditd/lnx_auditd_hidden_files_directories.yml b/rules/linux/auditd/lnx_auditd_hidden_files_directories.yml
index c36567a58..ec1dac527 100644
--- a/rules/linux/auditd/lnx_auditd_hidden_files_directories.yml
+++ b/rules/linux/auditd/lnx_auditd_hidden_files_directories.yml
@@ -24,7 +24,7 @@ detection:
        - a2|re: '\.(.*)' # in case there are some other arguments being used in a1
    condition: commands and arguments
 tags:
-   - attack.defenseevasion
+   - attack.defense_evasion
    - attack.t1564.001
 falsepositives:
    - None