Tristan Dostaler
Hello and welcome to my blog where I talk about my interests and try to provide useful information on multiple subjects in Information Technology, mainly on coding and InfoSec. To know more about me, head over to my post whoami.
Cybersecurity Books and References – A Good InfoSec Reading List
by Tristan Dostaler | July 19, 2021 | Coding, Cybersecurity, Information Technology, InfoSec, Software Architecture | 0 Comments
I have been asked for a reading list of cybersecurity books. I decided to document this list here so it can be used by a broader public.
NorthSec 2021 CTF write-up – part 2
by Tristan Dostaler | June 15, 2021 | CTF write-ups, Hack, Information Technology, InfoSec | 0 Comments
NorthSec 2021 CTF write-up – part 1
by Tristan Dostaler | May 29, 2021 | CTF write-ups, Hack, Information Technology, InfoSec | 0 Comments
A first write-up for some NorthSec CTF’s challenges
Why MEGA is my favorite cloud storage provider
by Tristan Dostaler | April 8, 2021 | Information Technology, InfoSec | 0 Comments
In this article I explain why MEGA is my favorite cloud storage provider. The main feature I like: they encrypt everything with your password!
Where to start in Cybersecurity for new comers
by Tristan Dostaler | March 28, 2021 | Cybersecurity, Information Technology, InfoSec | 0 Comments
If you Google “Cybersecurity paths”, “Cybersecurity career” and other similar terms, you’ll find an array of results with all kind of advices all addressed at people already in the field. In this post, I’ll try to explain my take on this subject, but destined for new comers.
The Elasticsearch license saga
by Tristan Dostaler | February 9, 2021 | Cybersecurity, Information Technology, InfoSec | 0 Comments
As you may know from my posts, I like Elasticsearch. However, Elastic, the Elasticsearch company, recently announced it’s decision to change the license of it’s open-source products. Since then, the community largely reacted to this. Let me explain.
An overview of a good InfoSec Strategy
by Tristan Dostaler | January 20, 2021 | Cybersecurity, Information Technology, InfoSec | 0 Comments
A friend of mine recently challenged my post SIEM 102 — Detect WordPress bruteforce where he proposed a tool that can effectively bruteforce WordPress from a lot of different IPs. My answer: you need to have a good InfoSec Strategy!
SIEM 102 — Detect WordPress bruteforce
by Tristan Dostaler | January 19, 2021 | Cybersecurity, Information Technology, InfoSec, SIEM, SIEM 100 series | 0 Comments
WordPress is one of the most popular CMS and website server in the world. It handles “more than 30%” of the websites on the internet. Because of this, bad actors are really interested in finding ways to get control of them. In this post I explain how to detect a WordPress bruteforve.
Zero Trust Architecture – What it is and what I think of it
by Tristan Dostaler | January 11, 2021 | Cybersecurity, Information Technology, InfoSec, InfoSec Architecture | 0 Comments
A Zero Trust Architecture (ZTA) is an Information Security architecture based on the idea that a network shouldn’t have inherent trust on the internal boundary. This post explain what it is and what I think of it.
Why the SolarWinds hack matters
by Tristan Dostaler | December 14, 2020 | Cybersecurity, DFIR, Hack, Information Technology, InfoSec, TL;DR; | 0 Comments
Maybe you saw the news on the SolarWinds hack. If you didn’t, you should follow me on Twitter: https://twitter.com/TristanDostaler
In this post I want to explain, in a way understandable by everyone, why this hack matters.