I provide Offensive Security services to protect your business from cyber threats.
'%3e%3cpath%20id='Path_10'%20data-name='Path%2010'%20d='M531.1-170.478v-10.108c0-2.8-1.5-4.406-4.12-4.406-2.466,0-3.881,1.606-3.881,4.406v10.108h-3.525v-10.108c0-4.73,2.847-7.669,7.43-7.669,4.629,0,7.62,3.01,7.62,7.669v10.108Z'%20transform='translate(-116.123%20-30.79)'%20fill='%23003a57'%3e%3c/path%3e%3cpath%20id='Path_11'%20data-name='Path%2011'%20d='M617.594-170.308c-6.8,0-9.223-4.6-9.223-8.906,0-6.523,4.632-9.443,9.223-9.443a9.179,9.179,0,0,1,6.482,2.667l.141.139-2.276,2.331-.143-.136a6.385,6.385,0,0,0-4.2-1.651c-3.343,0-5.678,2.506-5.678,6.093,0,2.662,1.492,5.508,5.678,5.508a5.452,5.452,0,0,0,3.654-1.263V-177.7h-4.365v-3.277h7.928v7.212l-.261.314A8.759,8.759,0,0,1,617.594-170.308Z'%20transform='translate(-179.191%20-30.504)'%20fill='%23003a57'%3e%3c/path%3e%3cpath%20id='Path_12'%20data-name='Path%2012'%20d='M710.01-170.478c-4.629,0-7.621-3.01-7.621-7.669v-10.107h3.525v10.107c0,2.8,1.5,4.407,4.119,4.407,2.467,0,3.881-1.606,3.881-4.407v-10.107h3.525v10.107C717.44-173.416,714.592-170.478,710.01-170.478Z'%20transform='translate(-245.97%20-30.79)'%20fill='%23003a57'%3e%3c/path%3e%3cpath%20id='Path_13'%20data-name='Path%2013'%20d='M791.18-170.215v-17.669H805.1v3.453h-10.4v3.9h8.7v3.334h-8.7v3.484h10.4v3.5Z'%20transform='translate(-309.038%20-31.053)'%20fill='%23003a57'%3e%3c/path%3e%3cpath%20id='Path_14'%20data-name='Path%2014'%20d='M880.688-170.132c-3.866,0-6.307-1.383-7.463-4.229l-.069-.169,2.981-1.545.082.2c.636,1.58,2.324,2.524,4.516,2.524.854,0,3.642-.166,3.642-2.306,0-1.254-1.206-1.993-3.687-2.26-5.94-.706-6.741-3.054-6.741-5.258,0-3.465,3.347-5.042,6.665-5.067,3.311,0,5.642,1.186,6.743,3.429l.086.176-2.846,1.463-.1-.16a4.623,4.623,0,0,0-3.79-1.764c-2.011,0-3.26.774-3.26,2.02,0,1.228,1.417,1.648,3.546,1.9,3.587.442,6.905,1.417,6.905,5.52C887.9-171.582,884.176-170.132,880.688-170.132Z'%20transform='translate(-367.264%20-30.802)'%20fill='%23003a57'%3e%3c/path%3e%3cpath%20id='Path_15'%20data-name='Path%2015'%20d='M965.594-169.8c-3.862,0-6.3-1.382-7.455-4.225l-.068-.169,2.978-1.543.082.2c.636,1.579,2.322,2.521,4.511,2.521.854,0,3.639-.166,3.639-2.3,0-1.253-1.2-1.991-3.684-2.257-5.933-.705-6.733-3.051-6.733-5.252,0-3.461,3.344-5.036,6.657-5.062,3.307,0,5.636,1.184,6.736,3.425l.086.176-2.843,1.461-.1-.16a4.619,4.619,0,0,0-3.786-1.762c-2.009,0-3.257.773-3.257,2.018,0,1.227,1.416,1.647,3.543,1.9,3.583.442,6.9,1.416,6.9,5.514C972.8-171.253,969.079-169.8,965.594-169.8Z'%20transform='translate(-427.577%20-31.049)'%20fill='%23003a57'%3e%3c/path%3e%3cg%20id='Group_1'%20data-name='Group%201'%20transform='translate(356.09%20-231.603)'%3e%3cpath%20id='Path_16'%20data-name='Path%2016'%20d='M441.7-157.552v1.74h-.013c-.149,2.52-1.542,3.954-3.874,3.954a3.812,3.812,0,0,1-4.112-3.954h-.012v-1.74h-3.525v1.74h0v.023h0c.2,4.391,3.148,7.2,7.624,7.2,4.434,0,7.245-2.745,7.434-7.2h0v-1.762Z'%20transform='translate(-408.704%20179.006)'%20fill='%23003a57'%3e%3c/path%3e%3crect%20id='Rectangle_55'%20data-name='Rectangle%2055'%20width='3.535'%20height='3.535'%20transform='translate(21.459%2012.573)'%20fill='%2354c38a'%3e%3c/rect%3e%3crect%20id='Rectangle_56'%20data-name='Rectangle%2056'%20width='3.585'%20height='3.585'%20transform='translate(32.908%2012.573)'%20fill='%23003a57'%3e%3c/rect%3e%3crect%20id='Rectangle_57'%20data-name='Rectangle%2057'%20width='3.535'%20height='3.535'%20transform='translate(15.427%203.989)%20rotate(90)'%20fill='%23b2c4cd'%3e%3c/rect%3e%3crect%20id='Rectangle_58'%20data-name='Rectangle%2058'%20width='3.535'%20height='3.535'%20transform='translate(20.618%208.614)%20rotate(90)'%20fill='%23809cab'%3e%3c/rect%3e%3crect%20id='Rectangle_59'%20data-name='Rectangle%2059'%20width='3.535'%20height='3.535'%20transform='translate(8.944%207.179)%20rotate(90)'%20fill='%23cceddc'%3e%3c/rect%3e%3crect%20id='Rectangle_60'%20data-name='Rectangle%2060'%20width='3.535'%20height='3.535'%20transform='translate(3.535%200)%20rotate(90)'%20fill='%23ccd8dd'%3e%3c/rect%3e%3crect%20id='Rectangle_61'%20data-name='Rectangle%2061'%20width='3.535'%20height='3.535'%20transform='translate(10.631%2023.196)%20rotate(90)'%20fill='%23e5ebee'%3e%3c/rect%3e%3crect%20id='Rectangle_62'%20data-name='Rectangle%2062'%20width='3.535'%20height='3.535'%20transform='translate(16.831%2016.898)%20rotate(90)'%20fill='%23a9e1c5'%3e%3c/rect%3e%3c/g%3e%3c/g%3e%3c/svg%3e){kind=small}
Security assessments are carried out on web, mobile, desktop applications and APIs through manual testing based on OWASP standards. The process leverages both white-box and black-box techniques to identify vulnerabilities, assess their impact, and deliver a comprehensive, professional report.
Vulnerability Assessment provides a comprehensive view of complex networks by identifying, evaluating, and prioritizing vulnerabilities. Combining automated scanning with expert analysis, it delivers actionable insights and recommended mitigations to strengthen overall security posture.
Tailored advisory services to meet your needs; whether it’s selecting the right security product, achieving compliance with industry standards, or strengthening your overall cybersecurity posture.
Cybersecurity training is provided to strengthen both fundamental and advanced security knowledge. Courses combine theory with practical approaches, tailored to specific needs, to help professionals understand risks and apply best practices for protecting systems and data.
Secure Code Review provides an in-depth audit of application source code to detect security flaws, malicious logic, and missing controls. By integrating manual review early in the development lifecycle, it ensures high coverage, low false positives, and actionable remediation guidance.
Technical red teaming exercises aim to simulate the behavior of real-world attackers, using any available technique in order to achieve the highest possible grade of system compromise.
Security services for the FileMaker ecosystem, including assessment and hardening of applications at both code and configuration level to reduce risks and strengthen resilience.
Incident Response (IR) service helps organisations detect, contain, and remediate security incidents quickly. It implements industry-specific strategies to ensure compliance and operational resilience, and performs thorough post-incident analysis to identify root causes and prevent future incidents.
Continuous monitoring service for your corporate domain, constantly scanning your digital perimeter to identify and analyze all subdomains and exposed services. This approach combines automated tools with expert manual analysis to ensure a comprehensive security overview.
Open Source Intelligence (OSINT) refers to the process of collecting and analyzing publicly available information. This service identifies and analyzes exposed credentials, data leaks, and any other sensitive information publicly accessible online, providing a clear overview of the organization’s digital exposure.
Sayit SA
Switzerland
Tailored advisory services to support regulatory compliance and strengthen cybersecurity posture, combined with technical expertise in penetration testing, vulnerability assessments, risk analysis, and secure development of management software.
IMQ Minded Security
Italy
Execution of security assessment projects, including web and mobile application penetration testing, source code review, and development of custom rules for SAST activities.
Cybergon - Elmec Informatica
Italy
Involved in comprehensive security operations, including proactive monitoring and management of SIEM, endpoint, network, and cloud security systems. Experienced in advanced incident response, threat hunting, and red teaming, as well as conducting penetration tests, vulnerability assessments, phishing simulations, and OSINT analyses.
Secure Network
Italy
Conducting vulnerability assessments and penetration tests on applications, web services, and internal or external networks, following OWASP and OSSTMM methodologies, calculating risk using CVSS, and reporting identified vulnerabilities to support effective mitigation strategies.
Core CS foundations: data structures, algorithms, operating systems, networking, and databases; team capstone in web systems.
Certified in web application penetration testing, demonstrating expertise in identifying and exploiting security vulnerabilities in web applications.
Qualified to lead and conduct ISO 27001 audits on information security management systems.