Skip to content

Instantly share code, notes, and snippets.

View kbandla's full-sized avatar

Kiran Bandla kbandla

638 followers · 6 following
View GitHub Profile
@kbandla
kbandla / mypam.b64z
Last active December 9, 2025 03:24
Notes
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
@kbandla
kbandla / usenix.md
Created October 20, 2025 19:24
USENIX Paper LIst

34th USENIX

USENIX Security '25 Cycle 1 Accepted Papers

AidFuzzer: Adaptive Interrupt-Driven Firmware Fuzzing via Run-Time State Recognition
DP-BREM: Differentially-Private and Byzantine-Robust Federated Learning with Client Momentum
Am I Infected? Lessons from Operating a Large-Scale IoT Security Diagnostic Service
A Thorough Security Analysis of BLE Proximity Tracking Protocols
'Hey mum, I dropped my phone down the toilet': Investigating Hi Mum and Dad SMS Scams in the United Kingdom
@kbandla
kbandla / amsi.py
Created September 3, 2025 17:53
AMSI Wrapper
"""
AMSI Scanner
@kbandla, 2025
"""
from ctypes import windll, byref
from ctypes.wintypes import HANDLE, UINT
AMSI_RESULT_CLEAN = 0
AMSI_RESULT_NOT_DETECTED = 1
AMSI_RESULT_BLOCKED_BY_ADMIN_START = 16384
@kbandla
kbandla / README.md
Created June 17, 2025 19:20
Windows Hotpatch Monitoring Service

Windows Hotpatching Monitoring Service (hpatchmon)

These are some quick notes from my Windows 11 Workstation PC.

Files :

  • hpatchmonTask.cmd
  • hpatchmon.dll

Services:

@kbandla
kbandla / ebert.md
Created December 16, 2024 04:02
Roger Ebert - Great Movies: https://www.rogerebert.com/great-movies

Roger Ebert's list of Great Movies:

  • Ballad of Narayama
  • Monsieur Hire
  • Veronika Voss
  • Spirit of the Beehive
  • Mulholland Dr.
  • The Life of Oharu
  • Cléo from 5 to 7
  • Spirited Away
@kbandla
kbandla / WindowsBuildPython.md
Created August 13, 2024 09:29
Build Python for Windows

Build Python 3.13 on Windows

The build itself is fairly straight forward. Download the source, and goto the "PCBuild" directory in the Visual Studio Developer Command Prompt. Once there, here is the build command:

build.bat -e -p x64 --disable-gil

Building with JIT Support

To build with JIT suport, Clang-18 is required.

@kbandla
kbandla / win11-tpm.md
Created August 21, 2023 17:39
Install Win11 VM without TPM

Installing Win11 without TPM

  • press Shift+F10 to get cmd, and start regedit
  • HKEY_LOCAL_MACHINE\SYSTEM\Setup
    • Create LabConfig key
    • HKEY_LOCAL_MACHINE\SYSTEM\Setup\LabConfig
    • Add following DWORD32 keys with a value of 1:
      • BypassTPMCheck
      • BypassRAMCheck
  • BypassSecureBootCheck
@kbandla
kbandla / noadmin.cmd
Created June 16, 2023 11:57
:: https://superuser.com/questions/171917/force-a-program-to-run-without-administrator-privileges-or-uac
:: @kbandla
@echo off
IF "%1%"=="" (
echo [!] Error: Need full path to the program. Aborting.
) else (
echo [*] Copied AppData path to clipboard
echo %LOCALAPPDATA% | clip
cmd /min /C "set __COMPAT_LAYER=RUNASINVOKER && start "" %1"
)
@kbandla
kbandla / ublock.conf
Last active July 28, 2023 04:32
ublock custom filters
! 2022-11-15 https://www.youtube.com
www.youtube.com###contentContainer
www.youtube.com###primary > .ytd-two-column-browse-results-renderer.style-scope
www.youtube.com###secondary
! 2023-01-28 nytimes.com
www.nytimes.com###gateway-content
www.nytimes.com###app>div>div[class^="css-"]>div[aria-hidden="true"]+div[class^="css-"]
www.nytimes.com###app>div>div[class^="css-"]:style(position:static!important)
@kbandla
kbandla / extractmsi.cmd
Created November 1, 2022 21:13
Command line scripts for Windows
msiexec /a %1 /qb TARGETDIR=%2