Inside Look at a Chinese Operational Relay Network

Name: Inside Look at a Chinese Operational Relay Network
Description: Michael Torres (MTU) and Zane Hoffman (Earl) present a months-long investigation that began with a simple research question — "what secrets are people accidentally publishing in Docker Hub container i

Michael Torres, Zane Hoffman

DEF CON 33 · Day 2 · Main Stage

Michael Torres (MTU) and Zane Hoffman (Earl) present a months-long investigation that began with a simple research question — "what secrets are people accidentally publishing in Docker Hub container i

AI review

Docker Hub scanning project escalates from generic secret detection to full technical reconstruction of a PRC-based operational relay network, yielding SSH root keys, complete infrastructure blueprints, credential templates, BT Panel 0-days, a malicious PyPI package, and a Cobalt Strike listener log. Methodologically creative and entertainingly documented.

Watch on YouTube