My name is Lorenzo Stella and I’m based in Italy.
I'm currently working at Doyensec as an Application Security Engineer where I help companies craft secure code, providing high quality security audits, vulnerability assessments and penetration tests (VA/PT) on hundreds of different web applications and infrastructures. Previously I worked at one of the Big Four consulting companies in the Information Risk Management field and as an Application Security Architect for two italian anti-theft systems companies. I completed my Computer Systems and Network Security degree at the University of Milan (SSRI) in 2018, while bug-bounty hunting and freelancing as a full-stack web developer for startups and companies. I have been a presenter at Black Hat USA and Hack In The Box (HITB). I am a founding member of the CTF teams 'JBZ' and 'PequalsNP'.
I am an infosec enthusiast, a pentester, and an all-around curious person. I am always fond of learning and exploring new ideas to exploit security vulnerabilities in applications and systems, uncovering new attack surfaces every day. I fundamentally believe that we are what we repeatedly do. Only in this way excellence can become not an act, but a habit.
While the majority of my research work is kept private, here's a collection of public resources in no particular order: