From 05ee8f31226cccdbb09f9d475e3880cc9b5beff4 Mon Sep 17 00:00:00 2001
From: fukusuket <41001169+fukusuket@users.noreply.github.com>
Date: Wed, 12 Mar 2025 18:08:53 +0900
Subject: [PATCH] update

---
 wela-extractor/src/main.rs | 1 +
 1 file changed, 1 insertion(+)

diff --git a/wela-extractor/src/main.rs b/wela-extractor/src/main.rs
index f2edee63..5927eed6 100644
--- a/wela-extractor/src/main.rs
+++ b/wela-extractor/src/main.rs
@@ -88,6 +88,7 @@ fn parse_yaml(doc: Yaml, eid_subcategory_pair: &Vec<(String, String)>) -> Option
                 }));
             } else if let Some(tags) = doc["tags"].as_vec() {
                 if !tags.contains(&Yaml::from_str("sysmon")) {
+                    extract_event_ids(&doc, &mut event_ids);
                     subcategories.insert("00000000-0000-0000-0000-000000000000".to_string());
                     let event_ids: Vec<String> = event_ids.into_iter().collect();
                     let subcategories: Vec<String> = subcategories.into_iter().collect();