From 4ccf2ca4a58bedee7ca66cb61421814adab209aa Mon Sep 17 00:00:00 2001
From: thomashaw <thomashaw@gmail.com>
Date: Tue, 12 Jan 2021 13:59:04 +0000
Subject: [PATCH] logstash config fixes

---
 lib/helpers/rules.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/helpers/rules.rb b/lib/helpers/rules.rb
index b35fa492e..0d08ac3d5 100644
--- a/lib/helpers/rules.rb
+++ b/lib/helpers/rules.rb
@@ -62,7 +62,7 @@ class Rules
         "      query_string:\n" +
         '        query: "combined_path: \"' + goal['file_path'] + '\" AND auditd.result: success AND event.action: opened-file"' + "\n" +
         "alert:\n" +
-        "  - \"modules.alerter.exec.ExecAlerter\"\n" +
+        "  - \"elastalert.modules.alerter.exec.ExecAlerter\"\n" +
         "command: [\"/usr/bin/ruby\", \"/opt/alert_actioner/alert_router.rb\"]\n" +
         "pipe_match_json: true\n" +
         "realert:\n" +