Sysmon Shell: Edit rules

[Beercow]

I can’t find a way to edit rules. Not sure if I am missing something. I can load an xml, create and delete rules but am unable to edit a rule.

[nshalabi]

You are not missing anything, you can only create or delete rules, if you want to edit an existing rule, you have to re-create it. I will try to add this feature in the next release, thank you for your feedback.