Leo is a Senior Security Consultant at Reversec where he leads the Attack Path Mapping service. His current role involves planning and conducting offensive security assessments, while building the team globally and pushing the boundaries of threat simulation. Every now and then, his passion for technical research leads to the discovery of vulnerabilities in products ranging from mobile applications to enterprise systems, with CVEs assigned by IBM, Cisco and Xiaomi. When he’s not helping SOC teams or leading purple teams for Reversec’s clients, you will find Leo presenting in security conferences around the world including DEF CON, SO-CON, DEATHcon, ROOTCON and BSides.
Recent Posts
Recent Conference Talks
- SO-CON 2025
- 1 Apr 2025
There and Back Again: An Attacker's Tale of DCs in AWS
- SOCON 2025
- 1 Mar 2025
There and Back Again: An Attacker's Tale of DCs in AWS
- DistrictCon 2025
- 22 Feb 2025
To B or Not 2B: Breaking the IBM B2B Integrator with, and without authentication
- DEATHCon 2024
- 17 Nov 2024
Building and Validating Kubernetes Attack Detection with Leonidas
- DEFCON Adversary Village 2024
- 1 Jan 2024
Kubernetes Attack Simulation: The Definitive Guide
- ROOTCON 2021
- 1 Oct 2021
Click Here For Free TV! - Chaining Bugs to Takeover Wind Vision Accounts
- BSides Athens 2021
- 1 Jan 2021
Click Here For Free TV! - Chaining Bugs to Takeover Wind Vision Accounts
Recent Advisories
- WIND VISION Android Application - Multiple Vulnerabilities
- 29 Jan 2021
WIND VISION Android Application - Multiple Vulnerabilities
- Cisco IMC Server - Multiple Vulnerabilities
- 4 Nov 2020
Cisco IMC Server - Multiple Vulnerabilities
- Xiaomi Redmi 5 Plus Second Space Password Bypass
- 28 May 2020
Xiaomi Redmi 5 Plus Second Space Password Bypass
Recent Tools
- 529