Join me as we create an Active Response action to dynamically create a Windows Firewall rule that blocks outbound connections to known malicious IPs. Protect your endpoints! Let's deploy a Host Intrusion Detection System and SIEM with free open source tools. Join me as we explore and learn together. Blog Post: Buy Me A Coffee: Security Operations Center as a Service: Your Own Server: Discord Channel: Check us out: Interact with our demo: Hire us: