Computer Science enthusiast. I got my B. Sc. degree in Computer Science on December 12, 2012 from Università degli Studi di Milano.
I have 13 years of experience in the IT industry.
Lately, I've been diving into cybersecurity, focusing on reverse engineering and binary exploitation.
I'm a
on
pwn.college:
- ✅ 🟠 orange belt (cybersecurity and web exploit)
- ✅ 🟡 yellow belt (reverse engineering, memory errors, shellcoding)
- ✅ 🟢 green belt (race conditions, sandboxing, kernel security)
- 🚧 🔵 blue belt (ROP, heap exploitation, file struct exploitation, kernel exploitation)
I completed the CPTS path on HackTheBox.
REVERSE ENGINEERING & EXPLOIT DEVELOPMENT
- Disassembly & Decompilation: Ghidra, Binary Ninja
- Debugging & Dynamic Analysis: GDB (with GEF/PEDA), WinDbg
- Exploit Development: Python pwntools, ROPgadget, Ropper, OneGadget
- File Analysis: objdump, strace, ltrace, checksec
TOOLS & TECHNOLOGIES
- Recon & Enumeration: Nmap, FFUF / Gobuster
- Brute-forcing & Credential Attacks: Hydra, Medusa
- SQL Injection & Database Attacks: SQLMap
- Network & Active Directory Attacks: Impacket toolkit, BloodHound, NetExec (formerly CrackMapExec)
- Local & Remote Enumeration LinPEAS / WinPEAS, Evil-WinRM, SMBClient / SMBMap, Enum4Linux-NG
- Kerberos Attacks & Post-Exploitation: Kerbrute, Rubeus, Mimikatz, PowerView
- Password Cracking: John the Ripper, Hashcat
- Metasploit framework
NETWORKING
- Port forwarding & tunneling: SSH tunneling, local/remote port forwarding
- Pivoting techniques: ProxyChains, Chisel, Ligolo-NG
- Firewall evasion & bypassing restrictions
Blogposts (Misc about webdev)
- Discover How to Write a ChatGPT Slack Bot in Node.js - May 2023
- How to Boost Efficient Designer-Developer Collaborations in Tech Companies - September 2021
- Thoughts about scalable and maintainable frontend architectures - January 2020
- Another var vs let vs const - January 2020
Talks
- An introduction to GraphQL - remote internal meetup @ BOOM, March 12th 2021
- Sleep quiet nights using types - remote internal meetup @ BOOM, September 12th 2020
- A gentle introduction to functional programming - remote internal meetup @ BOOM, April 29th 2020
- About ReactJS Milano community - Intersection conference Milan, October 2nd 2019
- La creatività nell'innovazione: la sfida di Freeda - Campus Party Italia, July 26th 2019
- React with super powers using TypeScript - ReactJS Milano, April 3rd 2018