Roota: crowdstrike -> sigma:  "null" or "None" for windash query

when crowdstrike is being translated into sigma, there is a **null** in selection  (instead of CommandLine) which should not be as a part of detection

```
detection:
    language: crowdstrike-spl-query
    body: (CommandLine="-all123" OR CommandLine="/all123")
```
![image](https://github.com/UncoderIO/Uncoder_IO/assets/109790074/3ee868ce-b836-4fb4-8e66-c3f6d0407771)

