Matteo Leonelli

Hello! I'm Matteo Leonelli.

Resume

An Italian Security Researcher 🇮🇹 focusing on System Security.
Currently working as PhD student at CISPA Helmholtz Center for Information Security in Germany 🇩🇪.


Biography

Matteo Leonelli is a Ph.D. fellow at the CISPA Helmholtz Center for Information Security, supervised by Prof. Dr. Thorsten Holz. Prior to this, he earned an M.Eng. in Security from Saarland University (2024) and a B.Sc. in Computer Science from Trento University (2021). His research focuses on fuzzing, automated testing, and vulnerability discovery, with a particular emphasis on novel approaches for detecting unusual behaviors and bug categories.


Pubblications

  • Title: SBFT Tool Competition 2025 - Fuzzing Track
  • Description: Measuring fuzzer performance by aggregate coverage measurement loses a significant amount of information regarding a fuzzer’s ability to explore a program. We introduced the concept of relcov, an asymmetric similarity metric based on the Tversky index, that allowed us to identify the the relative coverage-finding ability of one fuzzer in terms of another. Seeing that this metric uncovered far greater detail regarding the relationship between fuzzers, we designed a second metric, relscore, suitable for ranking a large number of fuzzers based on the novelty of the edges they discover and the reliability with which they do so. We used relscore as the basis for evaluating the rank of fuzzers during the SBFT’25 competition, and in this report provide a deeper analysis using relcov.
  • Source: ICSE 2025
  • Tags: [Security, Paper, ICSE 2025, SBFT 2025]

  • Title: TwinFuzz: Differential Testing of Video Hardware Acceleration Stacks
  • Description: TwinFuzz is a differential fuzz-testing approach to identify vulnerabilities in hardware acceleration stacks. We use a software proxy to guide the fuzz testing of the hardware acceleration stack for video decoding.
  • Source: NDSS 2025
  • Tags: [Security, Paper, NDSS 2025]

  • Title: Secure Pull Printing with QR Codes and National eID Cards: A Software-oriented Design and an Open-source Implementation
  • Description: We design a software-oriented pull printing infrastructure that supports a print release mechanism using QR codes and electronic IDentity cards as a second-factor authenticator. Our solution addresses the costs, as any medium-size organisation can adopt our open-source solution without additional devices or access badges.
  • Source: CODASPY 2021
  • Tags: [Security, Paper, CODASPY 2021]

  • Title: Pull Printing with National eID Cards: An Open-source and Software-oriented Implementation
  • Source: ITASEC 2020
  • Tags: [Security, Paper, ITASEC 2020]

About me

  • Experienced in Computer Science and Cyber Security with over 5 years of experience.
    Passionate about software and hardware security staying updated with academia and industry trends for innovative solutions.
  • TimeLine = [
    { year: 2024 - Present, text: “PhD degree in Cyber Security (CISPA 🇩🇪)”}],
    { year: 2021 - 2024, text: “Master degree in Cyber Security (Saarland University 🇩🇪)” },
    { year: 2018 - 2021, text: “Bachelor degree in CS (University of Trento 🇮🇹)” },
    { year: 2014 - 2018 , text: “High School degree in CS (Marconi Rovereto 🇮🇹)” }]

Achievements


Events


Contact me:

«««< HEAD Let’s Break Something Else!
======= Let’s Break Something Else Together! \

400d32df7cf5544b62fc2946cf8f84c2226820f9 LinkedIn Email Scholar