diff --git a/go.mod b/go.mod
index 0d3456d..a91ad2d 100644
--- a/go.mod
+++ b/go.mod
@@ -3,7 +3,7 @@ module rmm-hunter
 go 1.24.7
 
 require (
-	github.com/Kraken-OffSec/Scurvy v0.0.0-20251011211525-6bf6bee1b100
+	github.com/Kraken-OffSec/Scurvy v0.0.0-20251011220403-fbfc55b9d87a
 	github.com/charmbracelet/bubbles v0.21.0
 	github.com/charmbracelet/bubbletea v1.3.10
 	github.com/charmbracelet/lipgloss v1.1.0
diff --git a/go.sum b/go.sum
index 680e093..befcf33 100644
--- a/go.sum
+++ b/go.sum
@@ -8,6 +8,8 @@ github.com/Kraken-OffSec/Scurvy v0.0.0-20251011204529-faafd6327395 h1:5VcLiLUs33
 github.com/Kraken-OffSec/Scurvy v0.0.0-20251011204529-faafd6327395/go.mod h1:0pPwYHy+r8KGzXZ8vBgyYd6qy3vX+AMRo9XLiGc8WGE=
 github.com/Kraken-OffSec/Scurvy v0.0.0-20251011211525-6bf6bee1b100 h1:Om4wnKb+fpfYi3uRfc27Pz8uG/3CNrM2G3sSBwerSXA=
 github.com/Kraken-OffSec/Scurvy v0.0.0-20251011211525-6bf6bee1b100/go.mod h1:0pPwYHy+r8KGzXZ8vBgyYd6qy3vX+AMRo9XLiGc8WGE=
+github.com/Kraken-OffSec/Scurvy v0.0.0-20251011220403-fbfc55b9d87a h1:PWSQPeqWs5kKreTgIyddGWF+EwmlbYYZa4mRUVLpINc=
+github.com/Kraken-OffSec/Scurvy v0.0.0-20251011220403-fbfc55b9d87a/go.mod h1:0pPwYHy+r8KGzXZ8vBgyYd6qy3vX+AMRo9XLiGc8WGE=
 github.com/alwindoss/morse v1.0.1 h1:PkUh5m1UHMcZ1Upvl7CmSIBMxdEBejWoQ4rQQtgJsCQ=
 github.com/alwindoss/morse v1.0.1/go.mod h1:qAqJOep3jEpIpiLgqSGgLk5Zh4BZKsyzMQHuAwVPMXc=
 github.com/atotto/clipboard v0.1.4 h1:EH0zSVneZPSuFR11BlR9YppQTVDbh5+16AmcJi4g1z4=
diff --git a/internal/pkg/hunt/eliminate/connection.go b/internal/pkg/hunt/eliminate/connection.go
index fc90116..5615aed 100644
--- a/internal/pkg/hunt/eliminate/connection.go
+++ b/internal/pkg/hunt/eliminate/connection.go
@@ -23,11 +23,11 @@ func EliminateConnection(dst string) error {
 	return fw.AddRule(firewall.FirewallRule{
 		Name:          fmt.Sprintf("Block Outgoing %s", dst),
 		Direction:     "outbound",
-		Protocol:      "any",
-		LocalPort:     "any",
-		RemotePort:    "any",
+		Protocol:      "*",
+		LocalPort:     "",
+		RemotePort:    "",
 		LocalAddress:  "",
-		RemoteAddress: "",
+		RemoteAddress: "%s",
 		Action:        "block",
 		Profile:       "",
 		Destination:   dst,