Skip to content
/ AutolaunchingRemoteKeylogger Public

[Finished] Don't use it to do bad stuff. This is for educational purposes only!

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

matthew-lim-matthew-lim/AutolaunchingRemoteKeylogger

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
keylogExtractor
keylogExtractor
 
 
stringExtractor
stringExtractor
 
 
windowsProcess
windowsProcess
 
 
README.md
README.md
 
 

Repository files navigation

AutolaunchingRemoteKeylogger

A suite of 3 programs:

  1. A keylogger (windowsProcess.py) packaged into an .exe (dist/windowsProcess.exe). When opened, copies itself to Windows starting directory so it automatically launches each startup. Logs keys until user stops typing, then sends logged keys and a screenshot to a target email.
  2. An extractor for emailed key-logs (keylogExtractor.py). Extracts the emailed logged keys and saves them into files based on source computer.
  • The fully concatenated file format is suitable for the 3rd program, which searches for common strings.
  • The timestamp-seperated file format is suitable for discerning seperate user sessions or spurts of usage.
  1. A common-string searcher (stringExtractor.py), which outputs a file with complex formatting and keywords removed for easier manual analysis. Also allows user to input parameters for automatic common-string searching.
  • First argument is the source file (which must be a fully concatenated file).
  • Second argument is the minimum number of characters each subject string should have.
  • Third argument is the number of search results to display.

Usage

Keylogger

Change the user and password fields to the sender account of the key-logs. Also, change the user field for the recipient account of the key-logs. The account must be a google account.

Then, to compile the .exe file, run: pyinstaller --noconsole windowsProcess.py --onefile

To use the Keylogger, launch the .exe file.

Keylog Extractor

Change the user and password fields to the recipient account of the key-logs. The account must be a google account. You also need to:

  • Enable IMAP in gmail settings.
  • Use an app-password for the password field (this is different from your google account password). You will need to enable 2FA to do this.

No command-line argument is required as the data is sourced from gmail.

Example usage: python keylogExtractor.py

Example Output: Two folders produced: Concat Extraction 25-10-2023 21 36 33 Timestamp-data Extraction 25-10-2023 21 36 33

Each folder will contain a file with the name of the target computer Id.

String Extractor

Provide a fully-concatenated extracted file as the first argument. This should be a file from the Keylog Extractor, specifically of the fully-concatenated type. The second argument is the minimum number of characters a subject string should have. The third argument is the number of search results to display.

Example usage: python c:/[REDACTED]/stringExtractor.py 1234ABCD-12AB-12AB-12AB-123456ABCDEF.txt 6 20

These programs are for educational purposes only. They must not be used with malicious intent. Only use these programs on devices you own.

About

[Finished] Don't use it to do bad stuff. This is for educational purposes only!

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages