From f903640b73b51beae006958e05690dbf51056f85 Mon Sep 17 00:00:00 2001
From: Sittikorn S <61369934+BlackB0lt@users.noreply.github.com>
Date: Fri, 24 Sep 2021 21:29:43 +0700
Subject: [PATCH] Update web_cve_2021_22005_vmware_file_upload

---
 rules/web/web_cve_2021_22005_vmware_file_upload | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/rules/web/web_cve_2021_22005_vmware_file_upload b/rules/web/web_cve_2021_22005_vmware_file_upload
index b09ba195..c788d1da 100644
--- a/rules/web/web_cve_2021_22005_vmware_file_upload
+++ b/rules/web/web_cve_2021_22005_vmware_file_upload
@@ -11,13 +11,13 @@ tags:
     - attack.initial_access
     - attack.t1190
 logsource:
-  category: webserver
+    category: webserver
 detection:
     selection:
         cs-method: 'POST'
         c-uri|contains:
             - '/analytics/telemetry/ph/api/hyper/send?'
-  condition: selection
+    condition: selection
 falsepositives:
-- Vulnerability Scanning/Pentesting
+    - Vulnerability Scanning/Pentesting
 level: high