Federico Fazzi

Federico Fazzi

Senior Security Consultant.

Profile
I'm Federico Fazzi (eurialo),
class '0x58, coffee addicted and highly active on security testing, research and other security things
Contacts
Job Experiences
May – 2017
– current
CURRENT Senior Security Consultant
Minded Security S.r.l. – mindedsecurity.com
Currently performs penetration testing and source code analysis for multiple kind of applications for several companies included the financial and non-financial sectors.
Mar – 2015
Apr – 2017
IT Security Consultant – Penetration Tester
Sanvil S.r.l. – sanvil.net
Security consultant and researcher for external companies.
Penetration tester and security breaker guy.
May – 2014
Mar – 2015
Analyst, Software Developer – Security Managements
ProssimaIsola S.r.l. – prossimaisola.com
Backend software developer and security managements.
Feb – 2013
Mar – 2015
Analyst, Software Developer – Security Managements
Mentefredda S.r.l. – mentefredda.it
Developer of a proprietary DMS named Zillioon for Hotel management.
Nov – 2012
May – 2013
ICT Security Consultant – Developer
Shambix S.r.l. – shambix.com
Security consultant for externals and Wordpress plugins developer.
Apr – 2012
Oct – 2012
Analyst, Software Developer
Tuxel S.r.l. – tuxel.com
PHP backend application developer (e-commerce platform).
Honors – Awards
Nov – 2014
Google Responsible Disclosure – Hall of Fame
Google
Jul – 2014
Ebay Responsible Disclosure – Acknowledgement
Ebay Inc.
Oct – 2014
Yahoo Responsible Disclosure – Wall Of Fame
Yahoo Inc.
Education – Certifications
Jun – 2010
Certificate of Accountancy
Kennedy Institute.
Languages
ITALIAN
LISTENING
READING
SPEAKING
WRITING
ENGLISH
LISTENING
READING
SPEAKING
WRITING
Endorsements – Skillz
SECURITY
PENTEST
LINUX *
Interests
Information and Communications Technology, Information Security, Programming, System Administration, Penetration (BlackBox) Testing, Vulnerability Assessment and Mitigation (VAM), Reseach, Hardening, Audits, Exploits, Cryptocurrency (Bitcoin) and Problem Analysis/Solving.
Projects
Verbena – Verbena is a lightweight mvc based framework focused on security.
It's a flexible framework that allows you to fastly create secure applications, it can be extended without the complex user's interactions. The architecture is based on the famous pattern MVC (Model, View, Control) and all things are focused on the safety of the application itself.
vsaudit – The vsaudit is an opensource framework to perform attacks to general voip services. It allows to scan the whole network or single host engaging in the information gathering phase, besides it is able to search for most known vulnerabilities on the found alive hosts and then try to exploit them.
Zillioon v4 – Zillioon is an owner Content Management System constantly developed by merged companies Mentefredda Srl and Prossima Isola Srl. It is a marketing and content management system, equipped with useful utility tools dedicated to hotels.
Lightaidra – Lightidra is a mass-tool commanded by irc that allows scanning and exploiting routers for make BOTNET (in rx-bot style), in addition to this, with aidra you can perform some attacks with tcp flood.
RapidTOR – It's a timedelayed identity changer for TOR network, that allows you to change your tor node connection every X seconds.
oxssh-v2 – A tiny SSH version 2 interactive password bruteforcer that use a wordlist as source.