Update Analytic rule for missing technique

2024-07-16 11:08:22 +05:30 · 2024-07-16 11:08:22 +05:30 · 485d5b36f3
--- a/Rules/JamfProtectNetworkThreats.yaml
+++ b/Rules/JamfProtectNetworkThreats.yaml
@ -13,6 +13,7 @@ suppressionEnabled: false
 tactics:
  - InitialAccess
 relevantTechniques:
+  - T1133
 query: |
  JamfProtect
  | where EventProduct == "Jamf Protect - Threat Events Stream"
@ -68,5 +69,5 @@ entityMappings:
  fieldMappings:
  - identifier: Url
    columnName: DnsQueryName
-version: 1.0.3
+version: 1.0.4
 kind: NRT