Matteo Leonelli

Hello! I'm Matteo Leonelli.

Resume

An Italian Security Researcher 🇮🇹 focusing on System Security.
Currently working as PhD student at CISPA Helmholtz Center for Information Security in Germany 🇩🇪.

Biography

Matteo Leonelli is a Ph.D. fellow at the CISPA Helmholtz Center for Information Security, supervised by Prof. Dr. Thorsten Holz. Prior to this, he earned an M.Eng. in Security from Saarland University (2024) and a B.Sc. in Computer Science from Trento University (2021). His research focuses on fuzzing, automated testing, and vulnerability discovery, with a particular emphasis on novel approaches for detecting unusual behaviors and bug categories.

Pubblications

2025

SBFT Tool Competition 2025 - Fuzzing Track
Addison Crump, Matteo Leonelli, Sahil Sihag
Workshop on Search-Based and Fuzz Testing (SBFT)
[pdf]

TwinFuzz: Differential Testing of Video Hardware Acceleration Stacks
Matteo Leonelli, Addison Crump, Meng Wang, Florian Bauckholt, Keno Hassler, Ali Abbasi, Thorsten Holz
Network and Distributed System Security Symposium (NDSS)
[pdf], [code]

2021

Secure Pull Printing with QR Codes and National eID Cards: A Software-oriented Design and an Open-source Implementation
Matteo Leonelli, Umberto Morelli, Giada Sciarretta, Silvio Ranise
ACM Conference on Data and Application Security and Privacy (CODASPY)
[pdf], [code]

2020

Pull Printing with National eID Cards: An Open-source and Software-oriented Implementation
Matteo Leonelli, Umberto Morelli, Silvio Ranise, Giada Sciarretta
Italain Conference on Cybersecurity (ITASEC)

About me

Experienced in Computer Science and Cyber Security with over 7 years of experience.
Passionate about software and hardware security staying updated with academia and industry trends for innovative solutions.

2024 - Present: PhD degree in Cyber Security (CISPA 🇩🇪)
2021 - 2024: Master degree in Cyber Security (Saarland University 🇩🇪)
2018 - 2021: Bachelor degree in CS (University of Trento 🇮🇹)
2014 - 2018: High School degree in CS (Marconi Rovereto 🇮🇹)

Achievements and CVEs

Intel CVE-2024-23919 - Improper buffer restrictions in Intel® Graphics software
Intel Acknowledgements
FFmpeg - global-buffer-overflow
FFmpeg - attempting free on address which was not malloc
WordPress - Unauthenticated Arbitrary Options Update

Events

Intel Workshop Scalable Assurance
SBFT 2025
EPFL Summer School 2024

Contact me:

Let’s Break Something Else Together!
LinkedIn Email Scholar