Who am I ?

Raffaele Ruggeri

👨‍💻 Who I Am

I am an Offensive Security Researcher with 4+ years of experience, passionate about breaking things to understand how they really work — from web applications and Active Directory to firmware analysis and radio communications. I currently work as Cyber Technology Researcher at Leonardo, one of Europe’s leading defense and aerospace companies.

I am CRTA certified and attended the “Offensive Azure AD and Hybrid AD Security” course by Dirk-jan Mollema.

🎓 Background

I hold a Bachelor’s degree in Computer Science from Sapienza University of Rome (108/110) and I am currently pursuing a Master’s degree in Cyber Security at Sapienza.

My career has progressively grown in complexity and impact: starting from Common Criteria security evaluations at SIPAL, through ethical hacking engagements at S3K and Nomios, Red Team operations at BIP’s CyberDefense Center of Excellence, and now as Cyber Technology Researcher at Leonardo.

My skills span the full offensive spectrum: Red Team operations and C2 frameworks, malware development and analysis, exploit and binary development, web and mobile penetration testing, hardware hacking, OSINT, advanced phishing, radio interception (SDR), forensics, and cyber threat intelligence.

I have sought challenging experiences over the years to immerse myself in the field I am most passionate about. Notably, I participated and reached the finals twice in the CyberX - Mind4Future training program competition, organized by Leonardo S.p.A. and Cyber4.0, which allowed me to expand my knowledge in the CyberSec field. I won 1st place at the IXH24 - Italian XRPL Hackathon 2024, organized by De Cifris Associazione Nazionale di Crittografia, Università Roma Tre and XRPL Commons. Additionally, years ago, I won the national Hack@2021 competition focused on optimization problem-solving, organized by Math2B srl. Finale hack@2021 Code

📚 Education

• Bachelor’s Degree in Computer Science (108/110) - [Sapienza University of Rome], [2023]
• Master’s Degree in Cyber Security (on going) - [Sapienza University of Rome], [2026]
• CRTA - Certified Red Team Analyst - [CyberWarFare Labs], [2025]
• RomHack Training 2023:
• TCM Security Academy:
  • Beginner’s Guide to IoT and Hardware Hacking
  • Practical Web Hacking
  • Practical Phishing Campaigns
  • Rust 101
• Udemy:
  • Introduzione alla malware analysis: Un approccio pratico
  • Ethical Hacking & Pentesting in Active Directory Pratico!
  • BLOCKCHAIN INNOVATION MANAGER
• Coursera:
  • Cyber Threat Hunting
  • Security Operations Center (SOC)

💼 Work Experience

Cyber Technology Researcher - Leonardo

[September/2025] - Present

Cyber Security Consultant - BIP S.p.A. (Red Team)

[July/2024] - [August/2025]

• Conduct advanced penetration tests and targeted attack simulations
• Perform vulnerability management for a prominent insurance company
• Develop custom tools to automate testing activities

Ethical Hacker - Nomios Italy S.p.A.

[February/2024] - [July/2024]
I was a key member of the ethical hacking team at Aditinet Nomios.
In this role, I was responsible for leading the execution of assigned projects, coordinating the team’s work, and ensuring that the set objectives were achieved. The main activities of the team included:

• Open Source Intelligence (OSINT);
• Vulnerability Assessment;
• Penetration Testing;

ICT Security Specialist - S3K S.p.A.

[September/2023] - [February/2024]
I worked in the ethical hacking team at S3K, focusing on OSINT activities, Vulnerability Assessment, and Penetration Testing in the areas of Web Applications, Mobile, and Infrastructure. Additionally, I supported SOC activities by assisting first-level analysts with their daily tasks and collaborating with second-level analysts to fine-tune SIEM rules and the data collection infrastructure.

Cyber Security Challenge Creator (Internship) - Sapienza University of Rome

[March/2023] - [July/2023]

• Internal internship supervised by Prof. Angelo Spognardi
• Creation of the Cyber Security workbook for the ACSAI Cyber Security course

Security Evaluation Specialist - SIPAL S.p.A.

[March/2022] - [March/2023]

• Evaluation of ICT products and systems
• Compliance verification activities against a specific security standard (e.g., Common Criteria)
• Assessment of Security Targets
• Assistance with Common Criteria
• Consulting on the preparation of documentation necessary for an evaluation.

🛠 Technical Skills

• Red Team Operations & C2 Frameworks
• Malware Development & Analysis
• Exploit & Binary Development
• Web & Mobile Penetration Testing
• OSINT
• Advanced Phishing
• Radio Interception (SDR)
• Hardware Hacking
• Forensics
• Cyber Threat Intelligence

🔬 Personal Projects

• PTS - Portable Transceiver System: the project aims to facilitate communication between two Android devices in areas without coverage through direct radio communication.
  • frontend
  • backend
• Sapienza CTF: “Sapienza CTF” is the workbook of the ACSAI Cyber Security course
• pix2text-hotkey: A lightweight script for performing HCR/OCR on formulas, pages, and text extracted directly from clipboard images using hotkeys
• nessus2csv: a script for exporting all the data from the nessus scan file into csv format
• TelegramGrabber: Python script capable of downloading chats from Telegram groups and channels and saving them in an SQLite database.
• ATC - Air Traffic Control : Air Traffic Control is a visualization software that, paired with Dump1090, identifies and calculates the coordinates of the aircrafts.

🎯 Hobbies & Interests

• Electronics: Tinkering with electronic projects, building small devices, and experimenting with embedded systems.
• Capture The Flag (CTF): Participating in CTF competitions to hone my penetration testing and problem-solving skills.
• Calisthenics: Practicing bodyweight exercises to improve strength, flexibility, and overall fitness.
• Programming: Exploring new programming languages and contributing to open-source security tools.
• Reading: Staying up to date with the latest in cyber security, ethical hacking, and technology trends.

📈 Future Goals

Continue enhancing my skills in Cyber Security and exploring new research areas like machine learning applied to security.