Update EDR_telem.json

[Robert-HarfangLab]

Pull Request Template

Description

Please provide the below information so we can validate before merging:

1. Does the proposed EDR feature align with our definition of telemetry?(definition here)
2. Could you please provide documentation to support the telemetry you are proposing?(If it is held privately, please reach out to me or @inodee)
3. If no documentation is available for all the categories you are proposing, could you provide screenshots or sanitized logs?

1: Yes 2: Private 3: Screenshot in private

Type of change

Please delete options that are not relevant.

• [X] Feature Improvement (non-breaking change which fixes an issue)

How Has This Been Tested?

Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration.

Use a VM to generate the right telemetry.

Test Configuration:

• EDR version: HarfanLab 3.4
• Operating System version: Windows 10 Pro N / x64 (10.0.19045)

Checklist:

• [X] My code follows the style guidelines of this project
• [X] I have performed a self-review of my own code
• [X] I have made corresponding changes to the documentation
• [X] I have added tests that prove my corrections or additions are accurate
• [X] I have checked my code and corrected any misspellings

[tsale]

Thank you very much for the PR @Robert-HarfangLab! Could you confirm if the Telemetry Data Explorer contains raw telemetry data, based on the screenshots you sent me privately?

I just want to confirm before I go ahead and merge. Thanks!

[Robert-HarfangLab]

Hi, yes, it's indeed used for this you can go ahead and merge :)