Merge pull request #44 from cnotin/patch-3

Fix small typo
vletoux · Jul 30, 2020 · 4d0e747 · 4d0e747
2 parents 4a9dd21 + cb59ebd
commit 4d0e747
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/Healthcheck/Rules/HeatlcheckRuleAnomalyAuditDC.cs b/Healthcheck/Rules/HeatlcheckRuleAnomalyAuditDC.cs
@@ -98,13 +98,13 @@ public string IsObjectiveAchived()
  {"AuditObjectAccess", new RequiredSimple("Audit object access", "Collect event 4698, 4699, 4702 to track schedule tasks lifecycle")},
  {"0CCE9230-69AE-11D9-BED3-505054503030", new RequiredSimple("Policy Change / Authentication Policy Change", "Collect events 4713, 4716, 4739, 4867, to track trust modifications")},
  {"0CCE9236-69AE-11D9-BED3-505054503030", new RequiredSimple("Account Management / Computer Account Management", "Collect events 4741, 4742 to track computer changes")},
- {"0CCE922D-69AE-11D9-BED3-505054503030", new RequiredSimple("Detailled Tracking / DPAPI Activity", "Collect event 4692 to track the export of DPAPI backup key")},
+ {"0CCE922D-69AE-11D9-BED3-505054503030", new RequiredSimple("Detailed Tracking / DPAPI Activity", "Collect event 4692 to track the export of DPAPI backup key")},
  {"0CCE9242-69AE-11D9-BED3-505054503030", new RequiredSimple("Account Logon / Kerberos Authentication Service", "Collect events 4768, 4771 for kerberos authentication")},
  {"0CCE9240-69AE-11D9-BED3-505054503030", new RequiredSimple("Account Logon / Kerberos Service Ticket Operations", "Collect events 4769 for kerberos authentication")},
  {"0CCE9216-69AE-11D9-BED3-505054503030", new RequiredSimple("Logon/Logoff / Logoff", "Collect events 4634 for account logoff")},
  {"0CCE9215-69AE-11D9-BED3-505054503030", new RequiredSimple("Logon/Logoff / Logon", "Collect events 4624, 4625, 4648 for account logon")},
  {"0CCE9241-69AE-11D9-BED3-505054503030", new RequiredSimple("Account Logon / Other Account Logon Events", "Collect event 4648 for explicit credential logon")},
- {"0CCE922B-69AE-11D9-BED3-505054503030", new RequiredSimple("Detailled Tracking / Process Creation", "Collect event 4688 to get the history of executed programs")},
+ {"0CCE922B-69AE-11D9-BED3-505054503030", new RequiredSimple("Detailed Tracking / Process Creation", "Collect event 4688 to get the history of executed programs")},
  {"0CCE9237-69AE-11D9-BED3-505054503030", new RequiredSimple("Account Management / Security Group Management", "Collect events 4728, 4732, 4756 for group membership change")},
  {"0CCE9211-69AE-11D9-BED3-505054503030", new RequiredSimple("System / Security System Extension", "Collect events 4610, 4697 to track lsass security packages and services")},
  {"0CCE9228-69AE-11D9-BED3-505054503030", new RequiredSimple("Privilege Use / Sensitive Privilege Use", "Collect events 4672, 4673, 4674 for privileges tracking such as the debug one")},