Skip to content

Commit 0796acb

Browse files
marc-grmarc-gr
committed
Remove category mapping for event 24
1 parent 9452bca commit 0796acb

2 files changed

Lines changed: 0 additions & 4 deletions

File tree

x-pack/winlogbeat/module/sysmon/config/winlogbeat-sysmon.js

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1641,7 +1641,6 @@ var sysmon = (function () {
16411641
.Add(parseUtcTime)
16421642
.AddFields({
16431643
fields: {
1644-
category: ["file"],
16451644
type: ["change"],
16461645
},
16471646
target: "event",

x-pack/winlogbeat/module/sysmon/test/testdata/sysmon-13-clipboardchange.evtx.golden.json

Lines changed: 0 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -2,9 +2,6 @@
22
{
33
"@timestamp": "2021-02-25T15:04:48.592Z",
44
"event": {
5-
"category": [
6-
"file"
7-
],
85
"code": 24,
96
"kind": "event",
107
"module": "sysmon",

0 commit comments

Comments
 (0)