# Disclaimer
The content created by Reza Fayyazi is intended for non-commercial use only. Unauthorized commercial use, reproduction, or distribution of any materials produced or associated is prohibited without explicit permission.

## How to use OpenAI API


In [None]:
!pip install openai==0.28
!pip install google-generativeai

In [None]:
import openai
import pandas as pd

In [None]:
# OpenAI models to choose: https://platform.openai.com/docs/models
def get_completion(prompt, model="gpt-4o-mini"):
    openai.api_key = "YOUR_API_KEY" # Your OpenAI API Key
    messages = [{"role": "system",
                 "content":"You are a cybersecurity expert."}, # system prompt is the initial input or instructions given to the model to elicit a response
                {"role": "user", "content": prompt}]
    response = openai.ChatCompletion.create(
        model=model,
        messages=messages,
        temperature=0.2, #this is the degree of randomness of the model's output
        max_tokens=1000,
        #top_p=1,
        #top_k=50,
        seed=1106, #this is to have reproducable outputs
    )
    return response.choices[0].message["content"]

In [None]:
# getting the predictions and store them in a list
predictions = []
prompt = """
Knowing that <<MuddyWater has performed credential dumping with Mimikatz and procdump64.exe.>>, what will a cyber adversary achieve with this technique?
"""
result = get_completion(prompt)
print(result,'\n')
predictions.append(result)

Credential dumping with tools like Mimikatz and procdump64.exe allows cyber adversaries to extract sensitive information such as usernames and passwords from the memory of a compromised system. By using these tools, attackers can potentially gain access to additional systems and resources within a network, escalate their privileges, and move laterally to further compromise the network.

With the credentials obtained through credential dumping, cyber adversaries can impersonate legitimate users, access confidential data, install malware, and carry out various malicious activities without being detected easily. This technique is commonly used in advanced persistent threats (APTs) and targeted attacks to maintain persistence and achieve their objectives within a compromised network.

Overall, credential dumping poses a significant threat to the security of an organization as it can lead to data breaches, financial losses, reputational damage, and disruption of operations. Organizations sh

In [None]:
# save in a csv file
df = pd.DataFrame(predictions)
df.to_csv('./preds_gpt.csv', index=False)

## How to use Gemini API

In [None]:
import google.generativeai as genai
import pandas as pd

In [None]:
genai.configure(api_key="YOUR_API_KEY")
predictions_gemini = []
# Set up the model
generation_config = {
  #"maxOutputTokens": 2048,
  "temperature": 0.6,
  #"topP": 1,
  #"topK": 50,
}

# Gemini models to choose: https://ai.google.dev/gemini-api/docs/models/gemini#gemini-1.5-pro
#Gemini Ultra — the largest and most capable model for highly complex tasks.
#Gemini Pro — the best model for scaling across a wide range of tasks.
#Gemini Nano — the most efficient model for on-device tasks.

model = genai.GenerativeModel(model_name="gemini-1.5-pro",
                              generation_config=generation_config)

prompt = """
Knowing that <<MuddyWater has performed credential dumping with Mimikatz and procdump64.exe.>>, what will a cyber adversary achieve with this technique?
"""
result = model.generate_content(prompt,  safety_settings={
        'HATE': 'BLOCK_NONE',
        'HARASSMENT': 'BLOCK_NONE',
        'SEXUAL' : 'BLOCK_NONE',
        'DANGEROUS' : 'BLOCK_NONE'})
print(result.text,'\n')
predictions_gemini.append(result.text)
df = pd.DataFrame(predictions_gemini)
df.to_csv('./preds_gemini', index=False)

In [None]:
# Helper function for using a dataset and query the rows
"""
import random
import time

#OpenAI
def prediction(list_of_questions):
    predictions = []
    counter = 0
    for question in list_of_questions:
        counter += 1
        print('Procedure:', counter)
        prompt = f"""#{question}
        """
        while True:
            try:

                print(question)
                result = get_completion(prompt)
                print(result,'\n')
                predictions.append(result)
                break
            except (openai.error.RateLimitError, openai.error.APIError, openai.error.Timeout,
                    openai.error.OpenAIError, openai.error.ServiceUnavailableError):
                delay = random.randint(2, 6)
                time.sleep(delay)
    return predictions
"""