Filippo Bigarella

@FilippoBiga

Security & Privacy MSc student . Software engineer with a focus on security (iOS/macOS).

Italy
Joined September 2010

Tweets

You blocked @FilippoBiga

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @FilippoBiga

  1. Jul 6

    I wrote a Sublime Text plugin to visualize Clang Coverage within the editor. In the blog post I explain how it works and why I think visualizing code coverage during fuzzing is important: Let me know what you think!

    Undo
  2. Jul 6

    In my idea of interactive fuzzing, it would be cool to have a taint tracking engine and being able to manually specify values which could then be propagated through backwards taint analysis. Not sure if there is already some work on this.

    Undo
  3. Jul 6

    He briefly touches on the idea of “interactive fuzzing” and delves into applying manual program transformations to circumvent fuzzing blockers (different from T-Fuzz); then he explains how this fuzzing engine helps going in that direction.

    Show this thread
    Undo
  4. Jul 6

    Interesting document by on a new fuzzing engine he’s built: I think the ancillary concepts detailed in the paper are even more interesting than the engine alone.

    Show this thread
    Undo
  5. Retweeted
    Jul 5

    As per the Public Prosecution Office, HackingTeam did not install security patches on their servers because nobody was appointed to this task.

    Undo
  6. Jul 4

    I’ve been writing a simple plugin for Sublime Text and I must say I find its APIs quite good, so far. It’s one of the first plugin-oriented API that doesn’t make me want to rewrite the whole (hosting) software from scratch.

    Undo
  7. Jun 8

    For more context: it took me almost a whole day to work around installation issues, inconsistencies in wrappers and bugs in libraries to do the same thing I’ve done in Swift (which I’m still learning!) with CoreBluetooth in a matter of an hour.

    Show this thread
    Undo
  8. Jun 8

    I used to be bitter about CoreBluetooth on iOS, until I realized how sad is the state of bluetooth libraries (and the thousands of buggy wrappers around them) one has to deal with on other platforms 😩

    Show this thread
    Undo
  9. Retweeted
    Jun 4

    Safari’s Intelligent Tracking Prevention 2.0 – all the details:

    Show this thread
    Undo
  10. May 6

    Mainly for academia/research friends: how does one usually approach reading a PhD thesis? I feel like the method I normally apply to papers might be sub-optimal in this case. Suggestions are welcome!

    Undo
  11. Mar 17

    Leaving Germany after a great week in Heidelberg for . Got some suspicious looks from airport security because of the badge, but they told me they had already seen another one earlier today 😂

    Undo
  12. Mar 15

    Beautiful talk by explaining how a SGX ransomware would work and how feasible it is to conceal it. Really packed with great stuff :)

    Undo
  13. Mar 14

    TROOPERS started off great with an amazing keynote from . One of the best I’ve ever had the pleasure to attend!

    Undo
  14. Mar 1

    Probably one of the most memorable moments of this semester: our professor introducing LTL tableaux rules with a quote of Scarlett O’Hara from “Gone with the Wind”: “After all... tomorrow is another day.”

    Undo
  15. Feb 27
    Show this thread
    Undo
  16. Feb 27

    Overall, it was pleasing to hear the discussion; quite a lot of stuff (not *all* of it…) resonated with what security researchers have been saying in the past few years.

    Show this thread
    Undo
  17. Feb 27

    Somewhat dissonant position expressed by MSFT in the first panel (“coor VD good, else bad”) (promptly challenged by ’s question – in absence of an on-site person who could provide a counterpoint).

    Show this thread
    Undo
  18. Feb 27

    Many great points were made; however, I would be interested to hear more discussion about vendors’ responsibilities for vulnerable software (Answer to ’s question only scratched the surface?)

    Show this thread
    Undo
  19. Feb 27

    Very interesting debate on software vulnerability disclosure in EU organized by . I really hope the EU can lead the way to establishing a common process which safeguards security researchers & at-risk users.

    Show this thread
    Undo
  20. Feb 18

    Had a good time at ; some great talks and amazing organization :) Now looking forward to next month!

    Undo

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·