From e9f58269cdd9257b914568bab2705d30e5543023 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Thu, 4 May 2023 16:13:59 -0400
Subject: [PATCH] Ignore "expl_outlook_cve_2023_23397.yar" and
 "gen_mal_3cx_compromise_mar23.yar" since they are causing problems with YARA
 compilation

---
 salt/strelka/defaults.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/salt/strelka/defaults.yaml b/salt/strelka/defaults.yaml
index 792431dc6..785510961 100644
--- a/salt/strelka/defaults.yaml
+++ b/salt/strelka/defaults.yaml
@@ -17,3 +17,5 @@ strelka:
     - gen_susp_xor.yar
     - gen_webshells_ext_vars.yar
     - configured_vulns_ext_vars.yar
+    - expl_outlook_cve_2023_23397.yar
+    - gen_mal_3cx_compromise_mar23.yar