Lorenzo Stella

Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron-based applications. It leverages AST and DOM parsing to look for security-relevant configurations, as described in the "Electron Security Checklist - A Guide for Developers and Auditors" whitepaper:
https://doyensec.com/resources/us-17-Carettoni-Electronegativity-A-Study-Of-Electron-Security-wp.pdf
Software developers and security auditors can use this tool to detect and mitigate potential… Visualizza altro

Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron-based applications. It leverages AST and DOM parsing to look for security-relevant configurations, as described in the "Electron Security Checklist - A Guide for Developers and Auditors" whitepaper:
https://doyensec.com/resources/us-17-Carettoni-Electronegativity-A-Study-Of-Electron-Security-wp.pdf
Software developers and security auditors can use this tool to detect and mitigate potential weaknesses and implementation bugs when developing applications using Electron. A good understanding of Electron (in)security is still required when using Electronegativity, as some of the potential issues detected by the tool require manual investigation. Meno dettagli

I created a module for the Browser Exploitation Framework Project (BeEF) to passively detect potential antiviruses installed on a target machine. Currently it supports Kaspersky, Avira, Avast (ASW), BitDefender, Nortona, and Dr. Web.

jsClean is an unpacker/deobfuscator for javascript sources. This Node.js script combines several deobfuscation techniques, even relocating the strings array in the input source (a common obfuscation) to improve the readability for reverse engineering purposes.

The Open Source Security Hub (OSSH) idea came up after the local OWASP chapter raised the need for a system aiming at bringing together security experts and projects in need. I quickly realized I could help out by building it as a project for my mobile- and web-programming course at the university. Taking the example of many platforms focused on crowdsourced security (Bugcrowd, HackerOne, Crowdcurity, Synack) I opted to develop a framework to make the process simple and intuitive.

Don't let Twitter to crop your pics!
Many social networks require you to crop your profile pic, making it fit in a square. Squarifybot lets you solve this problem in an easy way

A business website for a transport company based in Padua (Villa Estense).

Revamp is a web application for the streaming of indipendent and historic films.

A parallax experiment for a countdown of the release of a video.

Chrome extension to close tab groups for subject, automatically classified combining TF/IDF & hierarchical tabs.

The Team Jestion's official page, built with LESS, CSS3 and HTML5; fully responsive.

Initiative to propose efficient alternatives to php

A Custom Image Placeholder service, fully customizable, built with Play framework 2.1.x.
https://github.com/phosphore/CustomImagePlaceHolder/

Icon sets with +20k downloads

A RESTful API framework to handle votes and surveys, via JSON requests. It provides a simple way for mobile apps developers to send surveys and display/manage them in a dashboard.
It's written in Java (backend) and Scala (frontend), storing data in MySQL.