Open PiRomant opened 11 months ago
https://github.com/socfortress/Wazuh-Rules/blob/c1f0e2047da2526b2ffe78c3e46b2a918d84f6c9/Windows_Sysmon/README.md?plain=1#L14
Why do you write that you use a SwiftOnSecurity/sysmon-config if all of your rules maped on olafhartong/sysmon-modular config. SwiftOnSecurity's config has no rules names at all.
https://github.com/socfortress/Wazuh-Rules/blob/c1f0e2047da2526b2ffe78c3e46b2a918d84f6c9/Windows_Sysmon/README.md?plain=1#L14
Why do you write that you use a SwiftOnSecurity/sysmon-config if all of your rules maped on olafhartong/sysmon-modular config. SwiftOnSecurity's config has no rules names at all.