adding generic type

osmontero · osmontero · commit 42b3b6d790d9 · 2023-11-06T13:42:42.000+02:00
diff --git a/sample/high_severity_alert.yml b/sample/high_severity_alert.yml
@@ -10,7 +10,7 @@
             Refer to NIST guidelines when creating password policies."
   category: "Credential Access"
   tactic: "Brute Force: Password Guessing"
-  dataTypes: ["sample-data"]
+  dataTypes: ["sample-data", "generic"]
   reference: 
     - "https://attack.mitre.org/tactics/TA0006"
     - "https://attack.mitre.org/techniques/T1110/001/"
diff --git a/sample/low_severity_alert.yml b/sample/low_severity_alert.yml
@@ -13,7 +13,7 @@
       Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector."
   category: "Defense Evasion"
   tactic: "Clear Windows Event Logs"
-  dataTypes: ["sample-data"]
+  dataTypes: ["sample-data", "generic"]
   reference:
     - "https://attack.mitre.org/tactics/TA0005/"
     - "https://attack.mitre.org/techniques/T1070/001/"
diff --git a/sample/medium_severity_alert.yml b/sample/medium_severity_alert.yml
@@ -13,7 +13,7 @@
     expected. Exceptions can be added to this rule to filter expected behavior."
   category: "Transfer Data to Cloud Account"
   tactic: "Exfiltration"
-  dataTypes: ["sample-data"]
+  dataTypes: ["sample-data", "generic"]
   reference: 
     - "https://docs.microsoft.com/en-us/exchange/security-and-compliance/mail-flow-rules/mail-flow-rules"
     - "https://attack.mitre.org/techniques/T1537/"
