APAC BOTS Day 2022

Security Simon O'Brien

It's time to block out your calendar, update your out-of-office notification and tell your boss you're on an all-day training session.

That's right; BOTS is returning to APAC, and it's more time-zone appropriate than ever! After the earth-shattering global debut of Boss of the SOC (BOTS) v7 at .conf22, we've been eagerly preparing for the inevitable world tour. It began with the Americas' BOTS Day '22 in late September, and the next stop will be our own APAC BOTS Day '22 on the 10th of November. It's going to be an action-packed day full of the BOTS magic that you know and love, split over two sessions so that everyone has a chance to play. With the first session starting at 0900 AEDT and the second rolling on from 1400 AEDT, we'll be live for 10 hours straight to bring BOTS to a quarter of the world!

What's happened since BOTS v6? We're so glad you asked! In the aftermath of last year's Frothly attack, Alice Bluebird (our courageous SOC analyst and BOTS protagonist) decided to take some well-earned leave and enjoy quiet time on a remote tropical island. After all, bad things only ever happen in August. With Alice off the grid, Grace Hoppy (CEO of Frothly) decided to move ahead with the Acquisition of Toads Pest Control. As part of the merger, Toads decided to streamline, decommissioning several tools and merging their Splunk instance with Frothlys. What a coincidence then that the Violent Memes (Our APT villains) chose to attack during such a critical juncture, in June of all months!

So, join us as you assume the role of Alice (who is forced back from leave, again!), to hunt through interesting datasets, looking for evidence of our attackers, answering increasingly difficult questions and puzzles along the way. You'll have the chance to build your skills, network with other interesting security professionals, and maybe, just maybe, win some awesome prizes!

Details

APAC BOTS Day will kick off with the first session at 0900 AEDT (register here), followed closely by the second session starting at 1400 AEDT (register here). As usual we're accepting teams of 1-4 players. If you're looking for a team, head to our Slack server (join here if you're not yet a member) in the #apac_bots_2022 channel, or reach out to your network on your favourite platform, and make sure every player on your team registers! Please also join our slack channel for competition info, and the ability to connect with coaches and admins on the day of the event.

More Information

If you're looking for more tips on how to dominate BOTS, check out our blog series, "Hunting with Splunk: The Basics," inspired by the questions customers have asked at BOTS events worldwide! Also, be sure to check out the other on-demand tools on the BOTS portal.

Good Luck, and Happy BOTS'ing!

Related Articles

Threat Advisory: Telegram Crypto Botnet STRT-TA01
Security
6 Minute Read

Threat Advisory: Telegram Crypto Botnet STRT-TA01

The Splunk Threat Research Team (STRT) has detected the resurface of a Crypto Botnet using Telegram, a widely used messaging application that can create bots and execute code remotely. Learn more about the indicators of the botnet operation and use our pre-built and tested detections to find them in your environment.
Securing the Unseen
Security
4 Minute Read

Securing the Unseen

Learn how Splunk Asset and Risk Intelligence unifies IT/OT visibility, enhances threat detection, and ensures compliance.
Laying the Foundation for a Resilient Modern SOC
Security
7 Minute Read

Laying the Foundation for a Resilient Modern SOC

Splunk Security supports your journey to digital resilience by providing comprehensive security visibility to reduce business risk; equipping your team with risk-based threat detection, investigation, and response technologies to help you build a modern SOC; and fueling security innovation through Splunk’s vibrant community.