About
My name is Fabio Carretto, online I go by the nickname bytevsbyt3 (shortened to bvb). I've always been curious about how things work, especially in computing. I'm particularly interested in low-level topics (e.g. binary exploitation), networks, operating systems and developing homemade solutions to meet specific needs.
Years ago I realized that figuring out how a system works in order to break it was even more fun. So I started participating in online platforms and Capture The Flag (CTF) competitions during my free time, improving my skills through challenges and Born2Root machines. Together with some university friends, we formed the team beerpwn to compete in CTFs.
Currently, I'm a Freelancer in Offensive Security and a teacher of IT and Cyber Security subjects for individuals, companies and university master's programs. Occasionally, I enjoy doing vulnerability research and, in the past, I co-founded a cybersecurity company.
Advisory
- SQL Injection on Domoticz (unauthenticated)
- Command Injection on Domoticz
- Directory Traversal on ioBroker (iobroker.js-controller)
- Directory Traversal on ioBroker (iobroker.admin)
- Reflected XSS on ioBroker
Contacts
- Email: bytevsbyte[at]protonmail.com
- Twitter: @bytevsbyt3
- Linkedin: Fabio