From 5ca9ec4b17f0f1f7bdde1fe336d24299b711b192 Mon Sep 17 00:00:00 2001
From: DefensiveDepth <Josh@defensivedepth.com>
Date: Fri, 22 Mar 2024 10:12:26 -0400
Subject: [PATCH] Enable Detections

---
 salt/soc/defaults.yaml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/salt/soc/defaults.yaml b/salt/soc/defaults.yaml
index 8b78f2e91..7d8d8dd25 100644
--- a/salt/soc/defaults.yaml
+++ b/salt/soc/defaults.yaml
@@ -1157,7 +1157,7 @@ soc:
         tipTimeoutMs: 6000
         cacheExpirationMs: 300000
         casesEnabled: true
-        detectionsEnabled: false
+        detectionsEnabled: true
         inactiveTools: ['toolUnused']
         tools:
           - name: toolKibana
@@ -1881,8 +1881,9 @@ soc:
             default:
               - so_detection.title
               - so_detection.isEnabled
-              - so_detection.language
               - so_detection.severity
+              - so_detection.language
+              - so_detection.ruleset
           queries:
             - name: "All Detections"
               query: "_id:*"