My research interests include web security, with special focus on web caches.
Interests
- Web security, caches and proxies
- Cloud security
- CTF
Education
PhD in CyberSecurity, 2021-
University of Trento
Master in CyberSecurity, 2021
University of Trento
BsC in Computer Science, 2019
University of Trento
News
- January, 2025: We have been accepted for a poster session at KubeCon, between April 1-4 in London. We will present Koney, our new Kubernetes operator for automated cyber-deception in cloud-native environments.
- January, 2025: I will be at ITASEC 25 in Bologna between February 3-7, 2025 to present Hidden Web Caches Discovery.
- September, 2024: I will be at RAID 2024 in Padua, Italy between September 30 and October 2, 2024 to present Hidden Web Caches Discovery.
- July, 2024: Between August and October 2024 I will be doing a research internship at Dynatrace in Linz, Austria.
- January, 2024: Our paper OAuth 2.0 Redirect URI Validation Falls Short Literally has been nominated for the Top 10 Web Hacking Techniques of 2023.
Recent Publications
(2024).
Hidden Web Caches Discovery.
RAID 2024.
(2023).
OAuth 2.0 Redirect URI Validation Falls Short Literally.
ACSAC 2023.
(2023).
The Nonce-nce of Web Security: An Investigation of CSP Nonces Reuse.
WASP @ ESORICS 2023.
(2023).
Mind the CORS.
IEEE TPS 2023.
Recent Posts
