SIEM Solutions 101 - Basic usage
In this post I’ll explain the basics on using a SIEM: how to search logs and how to send alerts. This is the third post of the series “SIEM 101” where I explain the basics of a SIEM, from [...]
SIEM 101 - Initial setup
In this post, I’ll explain how to initially setup a SIEM so you can receive your first logs. This is the second post of the series “SIEM 101″ where I explain the basics of a SIEM, from [...]
The Elasticsearch license saga
As you may know from my posts, I like Elasticsearch. However, Elastic, the Elasticsearch company, recently announced it’s decision to change the license of it’s open-source products. [...]
SIEM 101 — Introduction
In the following days, I’ll write a few blog posts explaining how to easily learn to use a Security Information and Event Management, or SIEM. But what is a SIEM? As Varonis puts it: [...]
Why the SolarWinds hack matters
Maybe you saw the news on the SolarWinds hack. If you didn’t, you should follow me on Twitter: https://twitter.com/TristanDostaler In this post I want to explain, in a way understandable by [...]
Zero Trust Architecture – What it is and what I think of it
I have been reading the Zero Trust Architecture (ZTA) publication from the NIST for quite some time now. You can find the document here: [...]
