Is this keylogger on your computer?

This topic contains 1 reply, has 2 voices, and was last updated by  jimbob 6 years, 8 months ago.

  • Author
    Posts
  • #8054
     Eleven 
    Participant

    We all know about hardware and software based keyloggers, but I think there’s actually another one that is on just about every computer; the human keylogger.  These are the most common, and perhaps most sophisticated keyloggers that organize keystrokes into nicely formatted documents, Facebook posts, e-mails, etc., and have a few unique benefits:

    1.  They log keystrokes years before you ever got access, giving you the ability to go back in time!  Sometimes all the passwords are already conveniently logged in a file called passwords.txt.

    2.  Logs from human keyloggers often end up on multiple computers via the network.  So if you gain access to a computer and get the users’ e-mail, you can see not only the keystrokes that your target has entered, but the keystrokes from people responding.  The same applies for documents on network shares.

    3.  You sometimes don’t even need to gain access to a target computer, and can learn quite a bit by using OSINT.

    4.  Not only do keystrokes get logged, but general user activity like browser history, program execution, contacts, files system activity, Wi-Fi networks used, etc.

    5.  No malware or hardware needs to be installed, human keyloggers are FUD.

  • #51069
     jimbob 
    Participant

    That’s an interesting take on things. Yes, people do have a habit of storing interesting info like passwords in plaintext files. While they are not exactly keyloggers it’s basically a different means to the same end. Trawling home directories is a great way to start privilege escalation and jumping to other systems and services.

    Regards,
    Jim

You must be logged in to reply to this topic.

Copyright ©2019 Caendra, Inc.

Contact Us

Thoughts, suggestions, issues? Send us an email, and we'll get back to you.

Sending

Sign in with Caendra

Forgot password?Sign up

Forgot your details?