Hi! When converting windows/process_creation and applying the azure_windows pipeline, the expression EventID =~ 4688 triggers the following error in Sentinel: The operator '=~' is not defined for the operand types int and long.
Is this error normal? If not, changing the eq_token would probably resolve the issue.
Description
Hi! When converting windows/process_creation and applying the azure_windows pipeline, the expression
EventID =~ 4688triggers the following error in Sentinel:The operator '=~' is not defined for the operand types int and long.Is this error normal? If not, changing the eq_token would probably resolve the issue.