Hi, I'm Filippo.


My profile picture.

My name is Filippo Bigarella. I am a MSc student in Security & Privacy at the University of Trento, Italy.

I learned to code by writing tweaks for jailbroken iOS devices. Among others, you may have heard about CleverPin, PasswordPilot or Springtomize. It was a lot of fun!

As time went by, I started digging into the security of iOS and macOS, which became one of my main interests. I found some vulnerabilities (1,2,3,4,5,6,7,8). In both 2015 and 2016, I had the chance to work as an intern in the Security Engineering department at Apple.

There are always more things I would like to learn than I have time to pursue. In no particular order, here’s some of the topics I’m interested in.

  • Automated vulnerability discovery (Fuzzing, Symbolic execution)
  • Writing secure software
  • Explaining technical security topics in a simple way
  • Exploring binary formats

Latest Post

Jul 7, 2018

Clang Coverage in Sublime Text (and in Fuzzing)

Introduction The last few years have seen the proliferation of coverage-guided fuzzers: that is, fuzzers able to get information about the internal state of the program being tested and using that information to generate better test cases. One thing you learn is that coverage information might also work the other way around: looking at a meaningful visualization of code coverage will help you build better drivers for your fuzzers. Moreover, you can understand what parts of the program under test need more attention (e. ...Read More


This is my PGP key. Fingerprint:
6968 57FC E5AE F0AE AF5F BA66 F2C9 3318 01A3 79A5