Penetration Testing mailing list archives

Re: Keystroke logging

From: "fatb" <fatb () security zz ha cn>
Date: Fri, 1 Jul 2005 10:47:03 +0800

hi all:
         I also pay close attetion to this stuff!!
tcleo would work in 2.6 linux kernel,it's a lkm but do not hide itself
and you would try the bash patch,but both of tcleo and bash patch
seems to be designed for honeynet project,so they send the keylog to the logserver
instead of encrypt it and store in the local computer.

also the vlogger for thc seems to be a nice keyloger,but I could not compiler it in my rh9 box.

hope it will help you,any good suggestions?


----- Original Message ----- 
From: "JB" <pentest () jitonline net>
To: <pen-test () securityfocus com>
Sent: Friday, July 01, 2005 3:36 AM
Subject: Keystroke logging

I'm wondering if anyone has either a kernel level keystroke logger for the
Linux 2.6, or a userspace keystroke logger for Linux. As part of our
penetration testing, we are required to give the client a log of all
actions performed - so this would be a good way of logging all linux
commands. Also - if you know of the same sort of tool for windows - that
would also be appreciated.

-J

Current thread:

Re: Keystroke logging Jeremy Heslop (Jul 01)
- <Possible follow-ups>
- Re: Keystroke logging fatb (Jul 01)
  - Re: Keystroke logging Maximiliano Bertacchini (Jul 01)
- Re: Keystroke logging Byrne Ghavalas (Jul 01)
- Re: Keystroke logging paul dansing (Jul 01)
- Re: Keystroke logging Harry Hoffman (Jul 01)
- Re: Keystroke logging Joshua Hamor (Jul 01)
  - Re: Keystroke logging Guillaume Vissian (Jul 01)
    - Re: Keystroke logging Aaron J. Bedra (Jul 01)
    - Re: Keystroke logging Chuck (Jul 06)
- Re: Keystroke logging Tomasz Piotr Palarz (Jul 01)
- Re: Keystroke logging Dave McCormick (Jul 01)

(Thread continues...)