Hello, my name is AzraelSec and I am

Cyber Security Researcher


Full Stack Developer

Who am I?

I'm Federico Gerardi (aka AzraelSec).

I'm currently a computer science student at the University of Pisa (Italy).

I'm a Full Stack Developer and Cyber Security Enthusiast.

I'm specialized in Penetration Testing, Code Reviewing, Web Developing and Mobile Developing

I'm involved in as many CTFs and Vulnerability Assessments as possible.

I am very enthustiastic about developping security softwares and tools in order to help my colleagues in automating their work as much as possible.

My Interests...

Penetration Testing

"Security through obscurity" is something that does not work anymore. Everyone needs a complete and proper penetration test to verify Its own grade of (in)security.

Vulnerability Assessment

Are you really sure that your website or your network is completely secure? Vulnerability assessment will be useful to find out all vulnerability flaws to which your system is exposed to.

Code Reviewing

It's really hard for a programmer without any experience in security to write a secure program. A well done (white hat) code review could avoid to expose your platform to initial attacks.

Web Developing

Nowadays everyone has the necessity to be online to make better its own business or to create efficient operative infrastructure. Web applications provide a good way to interface with complex application environment.

Mobile Android Developing

Android is the most diffused mobile operating system and happens sometimes that We would like to have a specif applications that does not exist. It is not a problem: a little bit of Java and the Android SDK will solve everything.

Desktop Developing

It is always a real necessity for a company to have particular programs (or tools) to complete their own daily goals but not always those particular programs exist. Why not to create them?

My Projects...

CMShell - Why not?

CMShell is a simple, highly customizable and easily extensible static content managment system that allows you to share contents in a very original way.

Nemo - You snooze, you lose

{ ... Soon Ready ... }

Extensible and fully modular phishing attack framework written in Python with modules integration.

I am avaiable for freelance projects too

Contact me!

My publications...

Phorum (v5.2.20) Full Disclosure

The purpose of the present project is to assess the security posture of some important aspects of Phorum Forum Software. Phorum is open source forum software with a penchant for speed. Phorum’s very flexible hook and module system can satisfy every web master’s needs. During the web application security assessment for Phorum, VoidSec assessed the following systems using primarily a grey-box approach, checking security from the perspective of an external attacker, with credentials.

My Skills...

Web Development


Mobile Development


Pentration Testing


Reverse Engineering


My Certifications...

Contact me!