feat(detection): fixed missing Details field in JSON output when splu…

…nk JSON input is specified. #1083
Yamato-Security · Feb 28, 2024 · 478db5e · 478db5e
1 parent a22d3af
commit 478db5e
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/contributors.txt b/contributors.txt
@@ -1,7 +1,6 @@
 Hayabusa was possible thanks to the following people (in alphabetical order):
 
 Akira Nishikawa (@nishikawaakira): First lead developer (core hayabusa rule support, etc...)
-DustInDark/Hitenkoku: Current lead developer (Too many features to count.)
 Fukusuke Takahashi (fukusuket): Core developer (Too many bug fixes to count, hayabusa converter upgrades, new features, etc...)
 Garigariganzy (@garigariganzy31): Developer (Event ID metrics implementation, etc...)
 ItiB (@itiB_S144):  Core developer (sigmac hayabusa backend, search command, etc...)

diff --git a/src/detections/detection.rs b/src/detections/detection.rs
@@ -276,11 +276,12 @@ impl Detection {
         let ch_str =
             &get_serde_number_to_string(&record_info.record["Event"]["System"]["Channel"], false)
                 .unwrap_or_default();
-        let provider = &get_serde_number_to_string(
+        let provider = get_serde_number_to_string(
             &record_info.record["Event"]["System"]["Provider_attributes"]["Name"],
             false,
         )
-        .unwrap_or_default();
+        .unwrap_or_default()
+        .replace('\'', "");
         let eid =
             get_serde_number_to_string(&record_info.record["Event"]["System"]["EventID"], false)
                 .unwrap_or_else(|| "-".into());