Secrets & Shadows: Leveraging Big Data for Vulnerability Discovery
Bill Demirkapi
DEF CON 32 Main Stage · Day 1 · Main Stage
In "Secrets & Shadows: Leveraging Big Data for Vulnerability Discovery," independent security researcher Bill Demirkapi presents a compelling case for shifting traditional perspectives on vulnerability discovery, particularly within cloud environments. The talk aims to introduce a methodology for identifying and exploiting common bug classes at scale, specifically focusing on **dangling cloud resources** and **leaked secrets**. Demirkapi emphasizes that while complex low-level software vulnerabilities often dominate security discussions, simpler misconfigurations or missing identity checks in cloud infrastructure can yield a far broader and more significant impact.
AI review
This talk provides a clear and competent introduction to critical cloud security issues: dangling resources and leaked secrets. Demirkapi effectively defines the problem space and articulates the significant impact these vulnerabilities can have, emphasizing the shift from complex software exploits to widespread cloud misconfigurations. While the setup and problem definition are strong, the transcript notably lacks the promised technical depth on the 'how' of leveraging big data for discovery and concrete exploitation examples, leaving the core methodology largely undemonstrated.