Stefano Simonetto

Cybersecurity research with an AI lens

PhD researcher working on vulnerability analysis, threat intelligence, and machine-learning methods for understanding and prioritizing software weaknesses.

About

University of Twente

Profile photo of Stefano Simonetto

My work sits at the intersection of cybersecurity and artificial intelligence, with a focus on vulnerability prioritization, threat knowledge representation, and automated reasoning over CVEs, CWEs, and MITRE ATT&CK.

I am especially interested in practical research that helps defenders understand which weaknesses matter most in realistic attack paths and how AI can support that process.

Download CV Google Scholar Search Publications Page UT Research Profile ORCID

Curriculum Vitae

Updated academic CV

Stefano Simonetto CV

Includes recent publications, teaching, and supervision activity

The latest CV is available as a PDF and reflects the current publication list, including the two recently added papers shown below.

Open CV PDF

Selected Publications

Papers and research outputs

A selection of recent work. For the most complete list, use the Google Scholar search above or visit the University of Twente research profile.

2026

Knowing your weaknesses is your greatest strength: Mapping CVE to CWE by leveraging CWE hierarchy and LLMs

ACM ASIA Conference on Computer and Communications Security

Paper Page Local PDF Code

2025

ThreatCompass: A tool for identifying and mapping security issues to TTPs

Workshop on Large AI Systems and Models with Privacy and Security Analysis

Paper Page Local PDF Code

2025

Beyond CVEs: Mapping weaknesses in unstructured threat intelligence text

International Conference on Cryptology and Network Security

Paper Page Local PDF Code

2025

What matters most in vulnerabilities? Key term extraction for CVE-to-CWE mapping with LLMs

International Conference on Cryptology and Network Security

Paper Page Local PDF Code

2024

Text2Weak: mapping CVEs to CWEs using description embeddings analysis

Workshop on Artificial Intelligence-Enabled Cybersecurity Analytics (AI4Cyber)

Paper Page Local PDF Code

2024

Comprehensive threat analysis and systematic mapping of CVEs to MITRE framework

International Conference on Natural Language Processing and Artificial Intelligence for Cyber Security

Paper Page Local PDF Code

2023

Strengthening cloud applications: A deep dive into kill chain identification, scoring, and automatic penetration testing

Working paper

Paper Page Local PDF

2023

Are we reasoning about cloud application vulnerabilities in the right way?

IEEE European Symposium on Security and Privacy

Paper Page Local PDF Code

Supervision

Student support and mentoring

I have supervised 11 Bachelor's students and supervised or co-supervised 3 Master's students on topics spanning vulnerability analysis, attack techniques, IoT security, automated pentesting, and anomaly detection.

Bachelor's Supervision

Selected projects

  • Bridging the Gap: From CWEs to TTPs in Cybersecurity Attack Kill Chains
  • Software Updates in Internet of Things Devices: Monolithic vs. Containerized
  • Docker: Advantages and Security Implications of a Python Client-Linux Application
  • Technical and Security Challenges of Cloud-Based Storage Management for IoT Devices
  • Tracking the Evolution: Uncovering Concept Drift in Vulnerability Descriptions Over Time
  • From Descriptions to Decisions: Classifying Vulnerabilities by Information Sufficiency

Master's Supervision

Supervised or co-supervised projects

  • IoC to TTP and identifying malware attack techniques in cyber threat intelligence
  • Multiagent-Vuln-Assist: multi-agent support for automated pentesting in Dockerized applications
  • Anomaly detection in API calls to web services using deep learning

Teaching

Courses and academic contributions

My teaching combines lecture design, delivery, and hands-on lab support across software security, distributed systems, IoT, embedded ML, and pervasive computing.

Software Security

Lecturer · Bachelor · 2026

Contributed to the design and delivery of class material on insecure configurations and secure coding practices.

Distributed Systems

Lecturer · Master · 2024-2025

Supported lectures and lab sessions on distributed systems principles, architectures, and system design fundamentals.

Internet of Things

Lecturer and Teaching Assistant · Master · 2022-2025

Designed and delivered lectures on IoT security, communication protocols, and edge-to-cloud design, and developed teaching material from scratch for the first course edition.

Embedded Machine Learning

Teaching Assistant · Master · 2023

Delivered lab sessions and practical guidance on deploying machine learning models on constrained devices.

Pervasive Computing

Lecturer · Master · 2022-2023

Designed and delivered a lecture on security in pervasive computing, covering threats and protections across the ISO/OSI layers.

Contact

Get in touch

Email: s.simonetto@utwente.nl