*(All material drawn exclusively from the public text of the report; all redactions **/ are reproduced exactly as printed.)
Original report:
Hamid Hamid-K
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| """ | |
| Look-up the approximate position of a cell tower with Google’s Geolocation API | |
| and print a Google-Maps link for easy visualisation. | |
| pip install requests | |
| """ | |
| import json | |
| import sys |
Hamid-K
/ ISC_Iran_Cyber_Jul-2025.md
Created
July 11, 2025 22:19
ISC "Iran" Reoport cyber-specific summary (HC 1116, Jul 2025)
Hamid-K
/ graphite.yara
Created
March 29, 2025 19:40
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| rule Paragon_Spyware_IOCs | |
| { | |
| meta: | |
| description = "Indicators of compromise (IOCs) for Paragon Solutions Graphite spyware from the Citizen Lab report 'Virtue or Vice? A First Look at Paragon’s Proliferating Spyware Operations'" | |
| author = "ChatGPT" | |
| date = "2025-03-29" | |
| reference = "https://citizenlab.ca/2025/03/a-first-look-at-paragons-proliferating-spyware-operations/" | |
| strings: | |
| // Suspected customer domains (Table 4) |
Hamid-K
/ gist:fedcf1dbd68789da27b3d6934fbe28bf
Created
January 13, 2025 00:27
— forked from fs0c131y/gist:f498b21cba9ee23956fc7d7629262e9d
Android packages
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Draziw.Button.Mines | |
| ag.video_solutions.wedotv | |
| ahf.dummynation | |
| ai.socialapps.speakmaster | |
| air.com.beachbumgammon | |
| air.com.freshplanet.games.SongPop2 | |
| air.com.gamesys.mobile.slots.jpj | |
| air.com.goodgamestudios.empirefourkingdoms | |
| air.com.kitchenscramble.goo | |
| air.com.lalaplay.rummy45 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Sample script to use OpenAI Whisper API | |
| # This script demonstrates how to convert input audio files to text, fur further processing. | |
| # The code can be still improved and optimized in many ways. Feel free to modify and use it | |
| # for your own needs. | |
| # | |
| import openai | |
| from openai import OpenAI | |
| client = OpenAI(api_key="sk-proj-....") |
Hamid-K
/ eml-extractor.py
Last active
February 11, 2024 05:09
Extract email attachments from .eml files in given directory.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # This script will go through a given directory recursively, extracting all attachments from .eml files. | |
| # .eml files are often how full mailbox dumps are leaked online. | |
| # If an attachment with the same filename already exists, MD5 sum of the files are calculated and if not | |
| # a match, the new file will be saved with _# suffix. | |
| # | |
| # Hamid Kashfi (@hkashfi) | |
| import os |
Hamid-K
/ telescope.lua
Created
December 19, 2023 03:53
Fix for Neovim Telescope plugin to enable preview of binary contents.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| local previewers = require('telescope.previewers') | |
| local Job = require('plenary.job') | |
| local new_maker = function(filepath, bufnr, opts) | |
| filepath = vim.fn.expand(filepath) | |
| Job:new({ | |
| command = 'cat', | |
| args = { filepath }, | |
| on_exit = function(j) | |
| local result = j:result() |
Hamid-K
/ Windows10Reloaded.ps1
Created
October 12, 2020 14:33
— forked from subinacls/Windows10Reloaded.ps1
Windows 10 Reloaded Security/Hardening powershell script enables basic IPSec, Chrome policy, Adobe Reader and Acrobat Security features and disables various telemetry. This also removes all default installed apps, and installs apps of your choice.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ########## | |
| # Win10 Initial Setup Script | |
| # Author: Disassembler, Gr1d:, TheRoc | |
| # Edited by Gr1D: | |
| # dasm's script: https://github.com/Disassembler0/Win10-Initial-Setup-Script/ | |
| # TheROC's E.T. Disable script: https://gist.github.com/thoroc/86d354d029dda303598a | |
| # THIS IS VERSION 5.5, error suppression is turned on. PLEASE be patient and PLEASE restart after running the script. | |
| # This script leaves more MS defaults on, including MSE and smart-screen, | |
| # but blocks a ton of domains and disables remote assistance secures java, sets up ipsec.. |