Skip to content

Commit

Permalink
Merge pull request #366 from Security-Onion-Solutions/2.4/detections-…
Browse files Browse the repository at this point in the history 
…brower

Change event.module to sigma
  • Loading branch information
@defensivedepth
defensivedepth authored Mar 5, 2024
2 parents d5a59a2 + a1b1e5f commit f49b4b3
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions server/modules/elastalert/elastalert.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -875,8 +875,8 @@ func wrapRule(det *model.Detection, rule string) (string, error) {
wrapper := &CustomWrapper{
PlayTitle: det.Title,
PlayID: det.Id,
EventModule: "elastalert",
EventDataset: "elastalert.alert",
EventModule: "sigma",
EventDataset: "sigma.alert",
EventSeverity: sevNum,
RuleCategory: "", // TODO: what should this be?
SigmaLevel: string(det.Severity),
Expand Down

0 comments on commit f49b4b3

Please sign in to comment.