CTF and forensics skills for DevOps engineers

CTF and Forensics Skills That Make You a Better DevOps Engineer

A production server is misbehaving at 3 AM. You SSH in. Now what? The engineers who stay calm here are the ones who already know the next ten commands by heart, because they have run this exact loop a hundred times before, just with the word “flag” instead of “incident.” I spend my evenings doing Hack The Box challenges and CTF competitions. I have no plans to become a pentester. I like platform engineering. The reason I keep at it is that the skills carry straight into my day job, and the carryover is bigger than it sounds. ...

February 27, 2026 · 10 min read · Tom Meurs
Simulation, emulation, virtualization, and containers explained

Simulation, Emulation, Virtualization, and Containers: The Restaurant Metaphor

“So what’s the difference between a container and a virtual machine?” I get this question a lot, usually from someone smart who has been nodding along in meetings without quite wanting to admit they’re fuzzy on it. And the honest answer is that most explanations make things worse. They reach for “hypervisor,” “kernel sharing,” and “hardware abstraction” in the first sentence, and now the person has four new terms to be confused about instead of one. ...

February 23, 2026 · 8 min read · Tom Meurs
Zero trust security explained with hotel metaphor

Zero Trust Explained: The Hotel Key Card Metaphor

“So what exactly is this zero trust thing everyone keeps talking about?” I get this question a lot. Usually from managers, executives, or anyone who has to approve a security budget without a technical background. And most explanations I have seen are terrible. They either drown you in jargon or sand the concept down so far that nothing useful is left. So here is the metaphor I reach for instead. I have used it to explain zero trust to my parents, to executives, and to that one colleague who still calls the firewall “the internet box.” It works because it starts with something everyone has touched: a hotel key card. We will build up from there, one layer at a time, until you can see how the same idea runs all the way down to mTLS and identity-aware proxies. ...

February 19, 2026 · 8 min read · Tom Meurs
Learn the defaults - portability over customization

Learn the Defaults: Why Portability Beats Customization

Here is how a lot of us work in 2026: a dotfiles repo with years of commits, a vim config that pulls in thirty plugins, a tmux prefix remapped to something more comfortable, a shell prompt that took a weekend to get right. The setup is yours, down to the last keybinding. On your laptop, you are fast. Muscle memory does the work and you barely think about the tools at all. That is the dream we sell ourselves, and most of the time it holds up fine. ...

February 15, 2026 · 9 min read · Tom Meurs
Dotfile management with mise and chezmoi

Dotfile Management with mise and chezmoi: The Perfect Combo

My .zshrc is older than some of my coworkers’ careers. Same with my .vimrc and my tmux config. They’ve grown into a carefully tuned system that does exactly what I want, and I’d be lost without them. The problem is that I run multiple machines. A laptop, a desktop, sometimes a throwaway VM for testing. Keeping all of that in sync used to be a pile of improvised hacks held together by hope. ...

February 11, 2026 · 9 min read · Tom Meurs