Elastic Detection Rule Development: Disable Windows Event and Security Logs > How I took a issue created by another github user and added value to the original query and helped mold it into a new detection By Austin Songer 25 Jun 2021
