From 25a5112331ba85e9416dcc3166957d864c4f399c Mon Sep 17 00:00:00 2001
From: EzLucky <EzLucky@users.noreply.github.com>
Date: Tue, 4 Jan 2022 10:14:53 +0100
Subject: [PATCH] Update README.md

Updated old sigma file path
---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 1ac1eae..53fdd80 100644
--- a/README.md
+++ b/README.md
@@ -125,7 +125,7 @@ Note: No Named Pipe Monitoring? You can use Sysmon + this [config](https://githu
 
 - `b6a1458f396` (multiple events: new service registration and process creation)
 
-Note: No events? you can use [this](https://github.com/SigmaHQ/sigma/blob/master/rules/windows/builtin/win_meterpreter_or_cobaltstrike_getsystem_service_installation.yml) Sigma rule to get you started.
+Note: No events? you can use [this](https://github.com/SigmaHQ/sigma/blob/master/rules/windows/builtin/system/win_meterpreter_or_cobaltstrike_getsystem_service_installation.yml) Sigma rule to get you started.
 
 ### C2 Beaconing