Salaheldinaz

Google Map Exporter — Export Any Google Map to KML, KMZ, or GeoJSON

Thu, 14 May 2026 00:00:00 +0000

OSINT / GEOINT Tool

When you come across a Google Map packed with useful placemarks — incident locations, field reports, points of interest — getting that data out is surprisingly annoying. Google doesn’t offer a native bulk export, and manually copying coordinates one by one is not realistic at scale.

Google Map Exporter solves this with two approaches: a Python CLI for repeatable, scriptable exports and a Chrome extension for one-click downloads straight from your browser.

Track the Unseen - Spot Change Anywhere, Any Time

Tue, 21 Apr 2026 00:00:00 +0000

Open-Source Intelligence Guide

The QGIS plugin featured in this guide was developed by Salaheldinaz. It was tested extensively over the past few days by Mostafa. We put together this walkthrough to help others get started.

What Is This About?

Imagine you could look at any place on Earth and ask: “Has something changed here in the last few months?” — a building destroyed, a new structure built, a road carved through a forest. That is exactly what the PWTT QGIS Plugin lets you do, for free, from your own computer.

Adsb-History Self-Hosted

Thu, 16 Apr 2026 00:00:00 +0000

Turnstone is a full-stack application for querying historical ADS-B aircraft data — originally built by Bellingcat as an investigative journalism tool. It lets you filter aircraft positions by geographic region, altitude, speed, bearing, type, and more against a large historical dataset.

The original project requires manually setting up PostgreSQL with PostGIS, a Flask API, a Vue.js frontend, and Firebase authentication. That’s a lot of moving parts to coordinate before you can run a single query. My modified version of Turnstone adds a Docker-based deployment that brings it all together with a single command.

DEFCON29 - Recon Village Resources

Sun, 15 Aug 2021 00:00:00 +0000

Talks videos 🎬 Watch here

Downloadable Version of this list 🧰 Click here

Future of Asset Management - Ben Sadeghipour

Where to find Domains/subdomains:

Acquisitions https://acquiredby.co/apple-acquisitions/
ViewDNS https://viewdns.info
Certificate Transparency services
- Shodan https://shodan.io
- Censys https://censys.io/
- Crt.sh https://Crt.sh
- Certspotter https://sslmate.com/certspotter/
- Google Transparency Report https://transparencyreport.google.com/https/certificates
- Facebook Certificate Transparency Monitoring https://developers.facebook.com/tools/ct/

Mentioned Tools

Amass https://github.com/OWASP/Amass
Subfinder https://github.com/projectdiscovery/subfinder
Sublist3r https://github.com/aboul3la/Sublist3r
Findomain https://github.com/Findomain/Findomain
Sudomy https://github.com/screetsec/Sudomy

Passive DNS - Andy Dennis

Passive DNS Providers

RiskIQ https://community.riskiq.com/home
Cisco Umbrella https://umbrella.cisco.com/
SecurityTrails https://securitytrails.com/
CIRCL Passive DNS https://www.circl.lu/services/passive-dns/
SpamHaus Passive DNS https://www.spamhaus.com/product/passive-dns/

Mentioned Tools

Word Generator https://wordsmith.org/anagram

Where the kids hang out | NCPTF 2021 Talk

Mon, 28 Jun 2021 00:00:00 +0000

Where the kids hang out

My talk at NCPTF 2021 conference.

This talk is about alternative social media networks/apps/websites that kids are interacting with these days, especially Gen Z and Alpha. In this talk, we will learn how we can find them, what data are being shared online, what to look for when we search from an investigation perspective, and more.

🗂 Slides

You can download slides here: https://github.com/qomplx/ncptf2021/raw/main/Where%20the%20kids%20hangout%20-%20Salaheldinaz.pdf

📟 Resources

Understanding Generations

Apps collections

Finding the unknown

Games Communities

https://drive.google.com/file/d/1xZ8n5PiEviB70aOLDtKZ2GrduKY8GWEq/view

https://en.panoptykon.org/articles/three-layers-your-digital-profile

Flowcharts

https://github.com/sinwindie/OSINT

STATE of OSINT

Wed, 10 Mar 2021 00:00:00 +0000

STATE of OSINT

Open Source Intelligence (OSINT) has grown significantly in recent years. In a world awash with data, more and more organizations are starting to recognize the benefits of using openly available information to better understand the world.

Government agencies, investigative journalists, financial institutions, law enforcement, and other agencies are increasingly making use of open information to gain business insights, expose wrongdoing, and tell compelling stories. At QOMPLX our own OSINT Team works to gather and analyze open-source information to help our clients better understand and reduce their own cybersecurity risk.

Wigle to Google Earth

Sun, 25 Oct 2020 00:00:00 +0000

To learn about Wigle basics, check this OSINTCurious blog post

Getting the Wigle data in JSON format

We will start by using Wigle API to download the data:

Go to https://wigle.net/account and log to your account:

Click show my tokens

In new tab open https://api.wigle.net/swagger

Click Authorize button on the right
Copy the API Name and API Token from first tab into the username and password inputs (respectively) in the Basic Authentication dialog then click Authorize.

KringleCon 2 (2019)

Mon, 13 Jan 2020 00:00:00 +0000

To read the writeup please visit

https://kringlecon2.salaheldinaz.com/

🗺 Map

This a preview of a very high quality map for ELF University.

To zoom and check the details please download the full quality. click here:

🏵 Objectives

Check the objectives in your badge, You will have the 6 objectives then unlock new objective by talking to the elves you find in the university:

Objective	Type	Location	Tools
0/ Talk to Santa in the Quad	Talk	The Quad
1/ Find the Turtle Doves	Explore	The student union
2/ Unredact Threatening Document	Explore	The Quad
3/ Windows Log Analysis: Evaluate Attack Outcome	Logs Analysis	The event log data	DeepBlueCLI
4/ Windows Log Analysis: Determine Attacker Technique	Logs Analysis	The normalized Sysmon logs	EQL
5/ Windows Log Analysis: Determine Compromised System	Logs Analysis	Zeek logs	RITA
6/ Spunk	SOC	Splnuk Server	Splunk
7/ Get Access To The Steam Tunnels	Multi	Minty’s dorm room	Multi
8/ Bypassing the Frido Sleigh CAPTEHA	Machine Learning	fridosleigh	Python
9/ Retrieve Scraps of Paper from Server	SQL Injection	Student Portal	Sqlmap
10/ Recover Cleartext Document	Reverse Engineering	elfscrow app	IDA
11/ Open the Sleigh Shop Door	Web Dev	Carte	Web Dev
12/ Filter Out Poisoned Sources of Weather Data	Logs Analysis	SLEIGH ROUTE FINDER API	jq

🎗Helping the elves Challenges

As we walk around, we can find various challenges, and as we talk to the elves standing near them, we get some hints.

Finding tweets by source or device

Mon, 22 Jul 2019 00:00:00 +0000

Twitter reactivated “tweet source label” feature in Dec 2018 :

I was looking at advanced Twitter search page because I needed to search for tweets posted by a specific source. Also, I found this description on Twitter help without any details on how to use it in search:

Also, a link to list of common third-party sources: https://partners.twitter.com/en/find-a-partner.html

Then I found Twitter search home page with a list of operators can be used in search including tweet source.

Cyber Quests Spring 2019 | write-up [1]

Thu, 20 Jun 2019 00:00:00 +0000

🕴️ CTF Website : https://uscc.cyberquests.org/

This Cyber Quest covers a wide range of topics on networking, including firewalls, routers, Wi-Fi, and packet analysis.

Tools that you may need include Wireshark, aircrack-ng, and exiftool (all of which are included in many security-focused Linux distributions, including Kali Linux).

Some questions refer to files contained within this ZIP file : 🔗 Spring 2019 Cyber Quest Resources. Let’s start the fun.

The following questions focus on General Networking:

1️⃣ You are analyzing files created under RFC 5424.

What is the Priority value of a mail system message (Facility=2) with a Severity of Error (Severity=3)?

Cyber Quests Spring 2019 | write-up [2]

Thu, 20 Jun 2019 00:00:00 +0000

🕴️ CTF Website : https://uscc.cyberquests.org/

This Cyber Quest covers a wide range of topics on networking, including firewalls, routers, Wi-Fi, and packet analysis.

Tools that you may need include Wireshark, aircrack-ng, and exiftool (all of which are included in many security-focused Linux distributions, including Kali Linux).

Some questions refer to files contained within this ZIP file : 🔗 Spring 2019 Cyber Quest Resources. Let’s start the fun.

The following questions based on 🔗 attack.pcap :

2️⃣2️⃣ Analyze the 🔗 attack.pcap file.

What is most likely occurring?

Cyber Quests Spring 2019 | write-up [3]

Thu, 20 Jun 2019 00:00:00 +0000

🕴️ CTF Website : https://uscc.cyberquests.org/

This Cyber Quest covers a wide range of topics on networking, including firewalls, routers, Wi-Fi, and packet analysis.

Tools that you may need include Wireshark, aircrack-ng, and exiftool (all of which are included in many security-focused Linux distributions, including Kali Linux).

Some questions refer to files contained within this ZIP file : 🔗 Spring 2019 Cyber Quest Resources. Let’s start the fun.

The following questions based on 🔗 Wifi.pcap :

2️⃣7️⃣ You are part of a wireless penetration test and have acquired the 🔗 WiFi.pcapfile.

What is the BSSID of the WAP (colon delimited)?

KringleCon 1 (2018) | The Kringle Secrets Book

Wed, 13 Feb 2019 00:00:00 +0000

The complete solution for 2018 SANS holiday hack challenges.

SANS Holiday Hack Challenges : https://holidayhackchallenge.com/ \

About

Mon, 01 Jan 0001 00:00:00 +0000

I’m Salaheldinaz — an OSINT researcher and cybersecurity professional.

I write about open-source intelligence, CTF write-ups, and security research.

Find me on GitHub, Twitter, and Keybase.

Salaheldinaz

Google Map Exporter — Export Any Google Map to KML, KMZ, or GeoJSON

Track the Unseen - Spot Change Anywhere, Any Time

What Is This About?

Adsb-History Self-Hosted

DEFCON29 - Recon Village Resources

Future of Asset Management - Ben Sadeghipour

Where to find Domains/subdomains:

Mentioned Tools

Passive DNS - Andy Dennis

Passive DNS Providers

Mentioned Tools

Where the kids hang out | NCPTF 2021 Talk

Where the kids hang out

🗂 Slides

📟 Resources

Understanding Generations

Apps collections

Finding the unknown

Games Communities

Social Media Privacy research

Flowcharts

STATE of OSINT

STATE of OSINT

Wigle to Google Earth

Getting the Wigle data in JSON format

KringleCon 2 (2019)

🗺 Map

To zoom and check the details please download the full quality. click here:

🏵 Objectives

🎗Helping the elves Challenges

Finding tweets by source or device

Cyber Quests Spring 2019 | write-up [1]

The following questions focus on General Networking:

1️⃣ You are analyzing files created under RFC 5424.

Cyber Quests Spring 2019 | write-up [2]

The following questions based on 🔗 attack.pcap :

2️⃣2️⃣ Analyze the 🔗 attack.pcap file.

Cyber Quests Spring 2019 | write-up [3]

The following questions based on 🔗 Wifi.pcap :

2️⃣7️⃣ You are part of a wireless penetration test and have acquired the 🔗 WiFi.pcapfile.

KringleCon 1 (2018) | The Kringle Secrets Book

Table of contents:

About