Keylogger
Keylogger is hacker’s and script kiddies’ favorite tool. Keylogger can be a hardware or a software (computer program). It is capable of recording each and every keystroke you enter including mouse clicks and even captures screenshots.
It hardly takes a minute to install this software/hardware in victim’s
system and from next second onwards attacker will get each and every
activity going on victim’s computer. What they are chatting, which site
they are browsing, victim’s username, passwords what’s not? Each and
every activity happening in victim’s system with screenshots will be
recorded. This activity will be saved on victim’s system or it can be
mailed to attacker’s email.
Hardware keylogger: This is a thumb size device. It records all the
keystrokes you enter from the keyboard then saves it in its memory.
Later this data will be analysed. The drawback of this device is that it
can’t record mouse clicks, can’t take screenshots and even can’t mail
and it requires physical access to the machine. Logs are stored in system's local memory.
Software keylogger: This can be installed in victim’s system even if
they use updated antiviruses. There are a lot of softwares available in
market which make a keylogger undetectable by latest antiviruses.
How to fool a keylogger?
Yes we can fool a keylogger. Keylogger’s job is to record all the key strokes we enter. So to fool a keylogger, enter unnecessary keys along with passwords. Confused?
Say your password is 1234. Now how will you enter it. Enter 1 then any unnecessary character say jksfh then 2 then again "£%mygb then 3 then &^%% then 4 then £fsg$^ then 5. Now remove unnecessary characters.
If it is a Hardware Keylogger use Onscreen Keyboard. To open this go to run and type “osk”.
There is also a software tool called "KeyScrambler" which encrypts the plain keystrokes into some hash code. The keylogger will still record the keystrokes but actually it is recording the hash code but not the actual words. E.g.: keyscranmeber : --> password-->@#!@$-> keylogger.
Yes we can fool a keylogger. Keylogger’s job is to record all the key strokes we enter. So to fool a keylogger, enter unnecessary keys along with passwords. Confused?
Say your password is 1234. Now how will you enter it. Enter 1 then any unnecessary character say jksfh then 2 then again "£%mygb then 3 then &^%% then 4 then £fsg$^ then 5. Now remove unnecessary characters.
If it is a Hardware Keylogger use Onscreen Keyboard. To open this go to run and type “osk”.
There is also a software tool called "KeyScrambler" which encrypts the plain keystrokes into some hash code. The keylogger will still record the keystrokes but actually it is recording the hash code but not the actual words. E.g.: keyscranmeber : --> password-->@#!@$-> keylogger.
0 comments:
Post a Comment