From fa9531a615b44fa670c63c8dc0268254834e415b Mon Sep 17 00:00:00 2001
From: DustInDark <nextsasasa@gmail.com>
Date: Tue, 14 Dec 2021 19:17:51 +0900
Subject: [PATCH] added eventkeys #274

---
 config/eventkey_alias.txt | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/config/eventkey_alias.txt b/config/eventkey_alias.txt
index 3188c4b9..f74a5428 100644
--- a/config/eventkey_alias.txt
+++ b/config/eventkey_alias.txt
@@ -147,3 +147,31 @@ keywords,Event.System.Keywords
 param1,Event.EventData.param1
 param2,Event.EventData.param2
 service,Event.EventData.Service
+CallerProcessName
+CertThumbprint
+ClassName
+DestAddress
+ErrorCode
+EventLog
+FilePath
+Filename
+NewTemplateContent
+NewUacValue
+New_Value
+OldUacValue
+ProcessId
+ProviderName
+Provider_Name
+SearchFilter
+ServerName
+ServiceStartType
+ServiceType
+Source_Name
+StartAddress
+State
+TargetServerName
+TemplateContent
+Value
+WMIcommand
+provider_Name
+sha1
\ No newline at end of file