Update _posts/2025-03-05-OpenSearch-as-a-SIEM-Solution.md

DattellConsulting · natebower · web-flow · commit baf924e971bb · 2025-03-17T11:31:51.000-07:00
Co-authored-by: Nathan Bower &lt;nbower@amazon.com&gt;
Signed-off-by: DattellConsulting &lt;103694126+DattellConsulting@users.noreply.github.com&gt;
diff --git a/_posts/2025-03-05-OpenSearch-as-a-SIEM-Solution.md b/_posts/2025-03-05-OpenSearch-as-a-SIEM-Solution.md
@@ -50,7 +50,7 @@ Data normalization is important for building generalizable detection rules and d
 ### <u>Data visualization</u>
 Once logs are indexed and normalized, analysts can create visualizations with OpenSearch Dashboards to enhance situational awareness. For example, users can build charts showing trends for failed logins over time or a geographic map of login locations. 
 
-### <u>Search.</u>
+### <u>Search</u>
 OpenSearch Dashboards supports interactive querying.  A security analyst can filter the view to a specific timeframe or drill down on a particular host or user to see all related events. 
 
 OpenSearch’s search capabilities also enable ad-hoc log analysis and threat hunting. Analysts can run queries to hunt for subtle signs of compromise that might not trigger an alert, such as searching across all logs for a particular filename associated with malware. 
