From 6942b9c5e86335ba4413d9fcd6a9b2d08a90addb Mon Sep 17 00:00:00 2001
From: Austin Songer <a.songer@protonmail.com>
Date: Wed, 22 Sep 2021 20:16:50 -0500
Subject: [PATCH] Update aws_suspicious_saml_activity.yml

---
 rules/cloud/aws_suspicious_saml_activity.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/cloud/aws_suspicious_saml_activity.yml b/rules/cloud/aws_suspicious_saml_activity.yml
index 44953cc7..0b27875a 100644
--- a/rules/cloud/aws_suspicious_saml_activity.yml
+++ b/rules/cloud/aws_suspicious_saml_activity.yml
@@ -1,5 +1,5 @@
 title: AWS Suspicious SAML Activity 
-id:  f43f5d2f-3f2a-4cc8-b1af-81fde7dbaf0e
+id: f43f5d2f-3f2a-4cc8-b1af-81fde7dbaf0e
 description: Identifies when suspicious SAML activity has occurred in AWS. An adversary could gain backdoor access via SAML.
 author: Austin Songer
 status: experimental