We are having a blackhat-like event in Hong Kong today and tomorrow. Our security guru from PCCW team are running the Live Security event in Taikoo Place, Hong Kong.

Why I say this is a blackhat-like event ? The hacking team from PCCW has done a very sexy LIVE hacking demonstration to around 80 guests as the grand opening  :)  By using the simple toolkits that you can download from internet or buy from small computer center in China, PCCW hacker team demonstrated how easy to crack the Wireless LAN WEP password, stealing password from careless user by Phishing email, hijacking the target Windows desktop by exploit kits, stealing the password by sniffing victim’s VOIP call, and sending confidential data out by using MSN.

The 2nd part of the event is then the tour for all guest to learn what’s the latest security technology from vendors including Avaya, Bluecoat, Checkpoint, Cisco, Junper, McAfee, NetApp, Radware, Websense and Splunk.

The final session of the event is certainly for Splunk !! Remember PCCW team has done the Live hacking demo ? Now, it’s time to find out who the hacker is ! We have setup a splunk machine in the event to eat all LIVE data from all devices in the showcase. We have shown several live search demonstrations from search IP address among network devices, error and failure alert from servers and applications, and even the unstructured data such as Windows registry and MSN chat log. We then invite one guest to come out onto the stage, and let him try to search how the hacker steal the confidential data out from the company. By just a few seconds, we can immediately locate the MSN file transfer record and identify the time of the incident, the insider hacker and the stolen file name. All guest are amazing that using splunk is just as easy as using google.

Feel free to join us. You can still have chance to enjoy this funny event tomorrow !!

We are very excited this week that there are more than 300 IT guru to join our SplunkLive event in Taipei. This is the largest SplunkLive event that we ever have in Asia !

Systex Team has done a great job that has over 13 different Splunk show cases about how the Splunker can make use splunk from Application monitoring in online e-biz and stock trading, Mainframe and Oracle troubleshooting, Unix,Windows and Networking management.

There is also a very nice arrangement that Systex team has setup more than 20 PC for all visitors to have the first hands experience with lastest splunk 4.0.4 Chinese version.

- SplunkNinja are excited on the latest Chinese version of Splunk !

The most hottest session in the event is the great presentation from our honorable guest Mr Linus Liang from IAH (http://www.iahgames.com), the largest Online Game service provider in South East Asia, and Mr Yi-Lang Tsai from HoneyNET Project Taiwan Chapter (http://www.honeynet.org.tw/). Mr Tsai has shared with the team about the amazing of applying Splunk IT search technology in Botnet investigation and detection. Because of the requirement to actively investigate over hundred of honeynet /honeypot servers from 6 class C networks, Splunk is the critical data engine for Tsai’s team to quickly pinpoint, manage and analysis malware behavior.

- Using Splunk to replay the malware and botnet activities in real time

This is the most memorable day for us. Thank you very much to Mr. Linux Liang, Mr. Tsai and our very hardworking Systex team members !!

Press release in Chinese : http://www.systex.com.tw/news/news_2.asp?Bkey=225

Today, we have a great event in Taiwan. Our distributor Systex are having around 400 people together to attend the Systex Sales Kickoff. It’s amazing that all topics are related to Splunk

This is very impressed that the Sales Kickoff meeting in Systex in very similar to our SplunkLive event.During the events, there are around 20 speakers from different Systex business unit to have the splunk experience sharing. They are sharing their own use case on Splunk in different areas such as for Internal IT ( Infrastructure troubleshooting for Exchange, AD, Firewall .. etc ), for security ( change management, MAC address management ), for application in special domain ( BI analysis for online book store, BI analysis for media download service in Telco ..)

The event is great. I really wanna bring in all of my customers to attend this event next time.

P.S. After each presenter finished his sharing session, our MC Mr. Mosses will lead the team to say the team slogan together : ” Splunk! Yes we can !! Yes we can !! A very passionate scene

每當我一拿出我的 Macbook Pro, 我的朋友一看到上面的 Sticker, 就會問我：　什麼是 Splunk

Splunk是專門設計給企業使用的IT搜尋引擎(IT Search Engine)，打破過去傳統IT管理的方式，將雅虎與Google的搜尋技術與概念發揚光大，讓企業的資訊人員可以用簡單易懂的關鍵字(Keyword)搜尋方式，在Splunk軟體協助下來管理龐雜的IT系統。

Splunk的軟體能自動收集由各種伺服器、網路設備和軟體產生的資料與日誌，並且具有計算(Computing)能力，企業IT管理者可以透過Splunk將搜尋所得的結果立即做運算處理，進而產生各種報告、圖表與警示；同時還可以設定Splunk進行排程定時搜尋，並將結果以電子郵件方式通知相關人員。有了 Splunk 之後，你不用再擔心浪費太多時間去解決及找尋各種的 IT 問題了。

Be an IT superhero, go home earlier !!