Menu:

myself

"Computer science is no more about computers than astronomy is about telescopes"

-- Edsger Dijkstra

"Ubuntu is an ancient word meaning: I can't configure Debian"

-- anonymous





Links:

View Aristide Fattori's profile on LinkedIn

My status Valid XHTML 1.0 Strict Valid CSS!

Contact info


Laboratorio LaSER - S223
Dipartimento di Informatica e Comunicazione
Università degli Studi di Milano
Via Comelico 39/41
20135 Milano (IT)

GPG key: 0x25578128

(fpr: 615D FF7B 3909 0C3F 825A 1225 925D AE7F 2557 8128)

To download it with gpg: "gpg --keyserver pgp.mit.edu --recv-key 0x25578128"

open News

bug.png 23/05/2011: some days ago I published (together with Roberto) my first advisory on a remote NULL pointer dereference in the linux kernel. The advisory can be found here: http://goo.gl/jz0Ml

hdbg 22/10/2010: Today I got my M.Sc. degree in Information and Communication Technologies at Università degli Studi di Milano with a final grade of 110/110 cum laude.

choco 13/03/2010: CODEGATE 2010. Guard@MyLan0 caught the 8th place at CTF Pre-qual round, thus qualifying to CODEGATE 2010 finals that will be held in Seoul, South Korea. Unfortunately, despite the generous refund offered by CODEGATE organizers, we weren't able to gather enough funds to cover travel expenses and thus we had to renounce to the final round. [website]

choco 04/12/2009: iCTF 2009. iCTF 2009 was held on December the 4th, Chocolate Makers managed to get the 3rd place, despite we were missing something on how the system worked :P. Our team size varied during the competion in a range from 10 to 15, showing again that size doesn't really matter. This year, both the challenges and the exploits were really hard, ensuring hours of good fun. Thanks guys for organizing such a good contest.

03/08/2009: DEFCON 17. This year I partecipated to the CTF as a guest member of team shellphish from UCSB. We performed pretty well and were at the 2nd position since 1 hour before the end but then we were overcomed by CPLUS and Routards. We still don't know which position we managed to hold because the final scoreboard did not show up yet. Stay tuned to ddtek homepage for more details! Chris Eagle pwned us all, making us believe he was taking part to the competion and winning while he was actually the organizer of the CTF. Never felt so hacked in my whole life.

09/07/2009: CIPHER5 is over, the winner is 0ldEur0pe, well done guys! Hope that everybody enjoyed this CTF, hosted by LaSER lab and organized by Lexi with martignlo's, HC's and mine's help.

07/2009: Since July '09 I will be fortunate to be an International Scholar in the Computer Security Lab of the Department of Computer Science at the University of California, Santa Barbara (UCSB), working under the direction of Profs Christopher Kruegel, and Giovanni Vigna

choco07/06/2009: Guard@MyLAN0 Crushed! We were definetly pwned during Defcon 17 quals :( Unfortunately, this year the core of our team was busy with some more relevant issues and thus wasn't able to take part to the competition. Result == FAIL! Many compliments to classified teams and to Sk3wl 0f r00t that ruled this year too. Kudos to ddtek for organizing such a cool contest, probably the hardest I ever took part to.

choco06/03/2009: Our team got the 5th position at the CODEGATE2009 qualification round organized by Beistlab, thus qualifying for the finals that will be held on April in Seoul. A team composed by four of our l33test members is going to take part to the final round!

choco14/08/2008: The team Guard@MyLan0 is back from Sin City after taking part to Defcon 16 CTF Finals, organized by Kenshoto! [website]

choco01/06/2008: The team Guard@MyLan0 (aka Chocolate Makers) of Università degli Studi di Milano is qualified for DEFCON 16 CTF finals in Las Vegas!!!! [website]

Publications

  1. "MISHIMA: Multilateration of Internet hosts hidden using malicious fast-flux agents" (short paper)

    Greg Banks, Aristide Fattori, Richard Kemmerer, Christopher Kruegel and Giovanni Vigna

    In the Proceedings of the 8th Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Amsterdam, The Netherlands, Lecture Notes in Computer Science. Springer, July 7-8, 2011.

    PDF - BibTeX ]

  2. "Dynamic and Transparent Analysis of Commodity Production Systems"

    Aristide Fattori, Roberto Paleari, Lorenzo Martignoni and Mattia Monga

    In the Proceedings of the 25th IEEE/ACM International Conference on Automated Software Engineering, ASE, Antwerp, Belgium, 20-24 September 2010.

    PDF - Slides - BibTeX ]

  3. "Live and Trustworthy Forensic Analysis of Commodity Production Systems"

    Lorenzo Martignoni, Aristide Fattori, Roberto Paleari and Lorenzo Cavallaro

    In the Proceedings of the 13th International Symposium on Recent Advances in Intrusion Detection, RAID, Ottawa, Ontario, Canada, September 15-17, 2010.

    PDF - BibTeX ]

  4. "Take a Deep Breath: a Stealthy, Resilient and Cost-Effective Botnet Using Skype"

    Antonio Nappa, Aristide Fattori, Marco Balduzzi, Matteo Dell'Amico and Lorenzo Cavallaro

    In the Proceedings of the 7th Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Bonn, Germany, Lecture Notes in Computer Science. Springer, July 8-9, 2010.

    PDF - BibTeX ]

Projects

HyperDbg

HyperDbg is a kernel debugger that leverages hardware-assisted virtualization. More precisely, HyperDbg is based on a minimalistic hypervisor that is installed while the system runs. Compared to traditional kernel debuggers (e.g., WinDbg, SoftIce, Rasta R0 Debugger) HyperDbg is completely transparent to the kernel and can be used to debug kernel code without the need of serial (or USB) cables.
The source code of the debugger is released under the GPLv3 license and is available on HyperDbg homepage.

HyperDbg is developed by R. Paleari, L. Martignoni and A. Fattori

Theses

I got my M.Sc. degree in Information and Communication Technologies on October 22nd, 2010, at Università degli Studi di Milano, with a final grade of 110/110 cum laude. My M.Sc. thesis was titled "Analisi di codice kernel tramite virtualizzazione hardware-assisted".

I got my B.Sc. degree in Computer Science on October 25th, 2007 at the Università degli Studi di Milano. My B.Sc. thesis was titled "Analisi e verifica di un framework per la traduzione di codice binario in forma intermedia", available only in italian. The focus of this work was to analyze the framework Smartfuzzer and to integrate in it the tech known as function summarization to handle library functions calls. Other unrelated procedures have been implemented during the work, but function summarization was the main purpose.

Downloads:

open Teaching experiences

  • Currently I am teaching assistant for the course "Sicurezza Informatica" [web site] at Università degli Studi di Milano, 2011-2012, Italy.
  • Teacher assistant for the courses "Laboratory of Operating Systems" [web site] and "Information Security" [web site] at Università degli Studi di Milano, 2010-2011, Italy.
  • Tutor for the "Learning Week" organized by Fondazione Clerici and Odisseo Space at Università degli Studi di Milano, 2010, Milan, Italy. [web site odisseospace, web site clerici]
  • Teacher for the course "Sicurezza Informatica: infrastruttura e soluzioni" at CFP Vigorelli, 2010, Milan, Italy. [web site]
  • Teaching assistant for the "Learning Week 2010" at CFP Vigorelli, 2010, Milan, Italy. [web site]
  • Teaching assistant for the course "Laboratory of Operating Systems" at the Università degli Studi di Milano, 2008-2009, Italy. [web site]
  • Teaching assistant for the course "Laboratory of Operating Systems" at the Università degli Studi di Milano, 2007-2008, Italy. [web site]