mirror of
https://github.com/valitydev/SigmaHQ.git
synced 2024-11-06 09:25:17 +00:00
8 lines
160 B
YAML
8 lines
160 B
YAML
fieldmappings:
|
|
event_id:
|
|
- event_id
|
|
- eventid
|
|
subject_account_name:
|
|
EventID=1234: san
|
|
EventID=4624: subject_accountname
|