[FR] Add Remaining Guides (#4412)

rules/integrations/aws/collection_s3_unauthenticated_bucket_access_by_rare_source.toml

@@ -2,7 +2,7 @@
 creation_date = "2024/12/17"
 integration = ["aws"]
 maturity = "production"
-updated_date = "2025/01/15"
+updated_date = "2025/01/22"
 
 [rule]
 author = ["Elastic"]

rules/linux/execution_executable_stack_execution.toml

@@ -2,7 +2,7 @@
 creation_date = "2025/01/07"
 integration = ["system"]
 maturity = "production"
-updated_date = "2025/01/15"
+updated_date = "2025/01/22"
 
 [rule]
 author = ["Elastic"]

rules/linux/execution_unusual_pkexec_execution.toml

@@ -8,7 +8,7 @@ updated_date = "2025/01/22"
 author = ["Elastic"]
 description = """
 This rule detects the execution of the `pkexec` command by a shell process. The `pkexec` command is used to
-execute programs as another user, typically as the superuser. Through the `new_terms` rule type, unusual
+execute programs as another user, typically as the superuser. Through the `new_terms` rule type, unusual 
 executions of `pkexec` are identified, and may indicate an attempt to escalate privileges or perform
 unauthorized actions on the system.
 """

rules/linux/persistence_dbus_service_creation.toml

@@ -93,7 +93,7 @@ file.extension in ("service", "conf") and file.path like~ (
     "install", "crio", "apt-get", "package-cleanup", "dcservice", "dcregister", "jumpcloud-agent", "executor"
   ) or
   (process.name == "sed" and file.name : "sed*") or
-  (process.name == "perl" and file.name : "e2scrub_all.tmp*")
+  (process.name == "perl" and file.name : "e2scrub_all.tmp*") 
 )
 '''
 note = """## Triage and analysis