From b82fd2274fd6f657e6dc216766dc699facafca4f Mon Sep 17 00:00:00 2001
From: Florian Roth <venom14@gmail.com>
Date: Sat, 18 Jan 2025 13:05:49 +0100
Subject: [PATCH] Update proc_creation_lnx_rsync_shell_spawn.yml

---
 .../process_creation/proc_creation_lnx_rsync_shell_spawn.yml    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rules/linux/process_creation/proc_creation_lnx_rsync_shell_spawn.yml b/rules/linux/process_creation/proc_creation_lnx_rsync_shell_spawn.yml
index 3026e72bac7..8bec75155c3 100644
--- a/rules/linux/process_creation/proc_creation_lnx_rsync_shell_spawn.yml
+++ b/rules/linux/process_creation/proc_creation_lnx_rsync_shell_spawn.yml
@@ -16,7 +16,7 @@ logsource:
     category: process_creation
     product: linux
 detection:
-    selection_parent:
+    selection:
         ParentImage|endswith:
             - '/rsync'
             - '/rsyncd'