Skip to content

Commit 5158549

Browse files
patel-bhavinpatel-bhavin
committed
updating dataset
1 parent 2bbcdd5 commit 5158549

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

detections/endpoint/delete_shadowcopy_with_powershell.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -70,6 +70,6 @@ tags:
7070
tests:
7171
- name: True Positive Test
7272
attack_data:
73-
- data: https://media.githubusercontent.com/media/splunk/attack_data/master/datasets/attack_techniques/T1059.001/powershell_script_block_logging/sbl_xml.log
73+
- data: https://media.githubusercontent.com/media/splunk/attack_data/master/datasets/attack_techniques/T1059.001/powershell_script_block_logging/single_event_delete_shadowcopy.log
7474
source: XmlWinEventLog:Microsoft-Windows-PowerShell/Operational
7575
sourcetype: XmlWinEventLog

0 commit comments

Comments
 (0)