An Italian Security Researcher 🇮🇹 focusing on System Security.
Currently working as PhD student at CISPA Helmholtz Center for Information Security in Germany 🇩🇪.

Biography

Matteo Leonelli is a Ph.D. fellow at the CISPA Helmholtz Center for Information Security, supervised by Prof. Dr. Thorsten Holz. Prior to this, he earned an M.Eng. in Security from Saarland University (2024) and a B.Sc. in Computer Science from Trento University (2021). His research focuses on fuzzing, automated testing, and vulnerability discovery, with a particular emphasis on novel approaches for detecting unusual behaviors and bug categories.

Pubblications

Title: TwinFuzz: Differential Testing of Video Hardware Acceleration Stacks

Description: TwinFuzz is a differential fuzz-testing approach to identify vulnerabilities in hardware acceleration stacks. We use a software proxy to guide the fuzz testing of the hardware acceleration stack for video decoding.

Source: NDSS’2025

Tags: [Security, Paper, NDSS'2025]

Title: Secure Pull Printing with QR Codes and National eID Cards: A Software-oriented Design and an Open-source Implementation

Description: We design a software-oriented pull printing infrastructure that supports a print release mechanism using QR codes and electronic IDentity cards as a second-factor authenticator. Our solution addresses the costs, as any medium-size organisation can adopt our open-source solution without additional devices or access badges.

Source: CODASPY’2021

Tags: [Security, Paper, CODASPY'2021]

Title: Pull Printing with National eID Cards: An Open-source and Software-oriented Implementation

Source: ITASEC’2020

Tags: [Security, Paper, ITASEC'2020]

About me

Experienced in Computer Science and Cyber Security with over 5 years of experience.
Passionate about software and hardware security staying updated with academia and industry trends for innovative solutions.

TimeLine = [
{ year: 2024 - Present, text: “PhD degree in Cyber Security (CISPA 🇩🇪)”}],
{ year: 2021 - 2024, text: “Master degree in Cyber Security (Saarland University 🇩🇪)” },
{ year: 2018 - 2021, text: “Bachelor degree in CS (University of Trento 🇮🇹)” },
{ year: 2014 - 2018 , text: “High School degree in CS (Marconi Rovereto 🇮🇹)” }]

Achievements

FFmpeg PATCH - global-buffer-overflow

FFmpeg PATCH - attempting free on address which was not malloc

Intel CVE-2024-23919 - Acknowledgements

Events

Intel Workshop Scalable Assurance

SBFT 2025

Contact me:

Let’s Break Something Else Together!
LinkedIn Email Scholar