 |
AutoHotkey Community
Let's help each other out
|
| View previous topic :: View next topic |
| Author |
Message |
Robfm
Joined: 27 Dec 2007
Posts: 20
Location: Brazil
|
 Posted: Sat Mar 29, 2008 8:43 am Post subject: |
 |
|
Tic's sujestion may be usefull only if you use mouse to positioning to the characteres for to be deleted.
If would made through keyboard arrows keys, would be recorded by the keylogger
_________________
The humanity is the Evolution taking consciousness of itself.
Last edited by Robfm on Mon May 05, 2008 6:36 pm; edited 2 times in total |
|
| Back to top |
|
 |
Robfm
Joined: 27 Dec 2007
Posts: 20
Location: Brazil
|
| Posted: Sat Mar 29, 2008 8:55 am Post subject: |
|
|
| tic wrote: | | Why not write an obfuscation script? It could send a load of junk data mixed with the real data and then delete the junk after. |
I would like to take this suggestion to clarify other important observations:
First, strangely, the Keylogger test was more eficient when adjusted to priority High instead R ( real time ).
Second, so strange like, we get more eficience to our script setting it's priority to N ( normal ) instead R.
Finaly, very important; beside this Keylogger, at this condictions, could not be able to show more than 1 or 2 characters among 10 sent ( SendPlay ^v ), when I searched inside its cache directory, I could find all 10 characters recorded inside 10 .dat files. In other words, this keylogger was able to record all wich my script sent but unable to know wich among all was realy pasted to input box.
I think that the followig script may be util. It , as like is, will "hide" the password inside about (2*10+6*3) .dat files inside cache's keylogger diretory, with only one character inside each one, generated by this keylogger, wich, in my XPSP2 at Celeron 900MHz, was unable to distinguish the right caracters from the obfuscations ones.
But is very important you note that it is useless against KGB Keylogger.
I could not find a way to work around this keylogger using this clipboard content technics. But at least when the KGB are activated, it put the HD at hard work and this script write a wrong password (Celeron 900 MHz with XP pro ), what let this script work like a kind of "Keylogger detector".
| Code: | ^p::
Process, Priority, , N
SetBatchLines, -1
Scramb = a-b-c-d-e-f-g-h-i-j-k-l-m-n-o-p-q-r-s-t-u-v-w-x-y-z
Pass = Palmyourpaintsselfwonderd
Cont := 0
Send, {Home}{Shift Down}{End}{Shift Up}{Delet}
Line1:
Cont := Cont + 1
Loop, 10 ; Build 30 variables arrays.
{
Sort, Scramb, Random D-
StringReplace, Aux, Scramb, -, , All
StringMid, Scramb1%A_Index%, Aux, 1, 1 ; Array with 10 variables
StringMid, Scramb2%A_Index%, Aux, 2, 1
StringMid, Scramb3%A_Index%, Aux, 3, 1
}
StringMid, Aux, Pass, %Cont%, 1
Scramb210 := Aux
Loop, 10
{
Clipboard =
ClipBoard := Scramb1%A_Index%
ClipBoard := Scramb2%A_Index% ; Note it is Aux when A_Index = 10
}
Process, Priority, , L ; To work well at Firefox
SendPlay ^v
Process, Priority, , N
Loop, 6
{
Clipboard =
ClipBoard := Scramb3%A_Index%
ClipBoard := Scramb2%A_Index%
ClipBoard := Scramb1%A_Index%
}
If Cont < 26 ; Password with Tic's sugested obfuscations = 25 characters, see Pass above.
Goto Line1
Loop, 5 ; Deleting Tic's obfuscations.
{
Send, {LEFT 2}{BACKSPACE 3}
}
Send, {End}
Return
|
One last advice; the tip of obfuscations sugested by Tic was adopted here becouse all help is wellcome, but the fact is that Keyloggers can record all, I said all, you sent through script ( ok, can't get some send controls but that don't work with some java's based programs, then it's out ), therefore if it could catch the obfuscated word, the {LEFT 2}...{BACKSPACE 3} will see like a recipe to be followed.
_________________
The humanity is the Evolution taking consciousness of itself.
Last edited by Robfm on Thu May 08, 2008 1:03 am; edited 4 times in total |
|
| Back to top |
|
|
Robfm
Joined: 27 Dec 2007
Posts: 20
Location: Brazil
|
| Posted: Mon Apr 28, 2008 8:20 am Post subject: |
|
|
Well, I just found this software, made follow the "same" philosophical line, few days ago.
I made only few ones tests ( is needed much much more) and it worked well, but this page show it like a grat success patented technic. May be. Yes, I hope it be!
http://www.keyscrambler.com/learn_more.htm
The patent may be this: http://www.freepatentsonline.com/70182714.html
At least for now, it seems be a very good coadjuvant to another known security softwares.
Another seemed tools here;
http://misc.mytopschool.com/index.php?option=com_content&task=view&id=14&Itemid=2
"Scrambling at keyboard drive level". I would like to know do that, and understand why keylloger can't read at this same level, before the action of the KeyScrambler . Is needed much study more...
_________________
The humanity is the Evolution taking consciousness of itself.
Last edited by Robfm on Mon May 05, 2008 8:33 pm; edited 1 time in total |
|
| Back to top |
|
|
Robfm
Joined: 27 Dec 2007
Posts: 20
Location: Brazil
|
| Posted: Sun May 04, 2008 1:40 am Post subject: |
|
|
I found a nice and simple idea to insert passwords that work well in some input box of sites through Mozilla's browsers, Firefox .
1-First you need write the characters of your password in some input box of the browser own, like adress or google's search bar.
This writing must be randomly , obviously, and may have some garbage characters.
2-Using Mouse drag and drop you must drag randomly the characters to the password input box and mount your password.
Simple and efficient, I made tests against KGB keylogger and worked very well. Nothing was recorded.
Would be strongly secure ? I don't know. But if yes, for how many time?
_________________
The humanity is the Evolution taking consciousness of itself. |
|
| Back to top |
|
|
Micahs
Joined: 01 Dec 2006
Posts: 316
|
| Posted: Wed May 07, 2008 4:30 pm Post subject: |
|
|
Off-Topic from keylogging, but maybe useful if you are installing/uninstalling many apps is Sandboxie.
If you will be testing many keyloggers and such, this will help you keep your system uncluttered - no uninstall, just empty the sandbox. It will also allow you to try some demo software longer, just empty the sandbox and reinstall for more uses.
HTH
_________________
 |
|
| Back to top |
|
|
Robfm
Joined: 27 Dec 2007
Posts: 20
Location: Brazil
|
| Posted: Thu May 08, 2008 12:56 am Post subject: |
|
|
Thanks so much, Micahs, I'll try it soon.
This seems grat, and if this program does only half of they intent, it already is indespensible. It seems like a kind of virtual machine but much less complicated.
I am curious !
_________________
The humanity is the Evolution taking consciousness of itself. |
|
| Back to top |
|
|
sasd
Guest
|
| Posted: Thu May 08, 2008 2:37 am Post subject: |
|
|
MEOW: My Enemies Own Waves    |
|
| Back to top |
|
|
sasd
Guest
|
| Posted: Thu May 08, 2008 2:38 am Post subject: |
|
|
MEOW: My Enemies Own Waves
_____________________________________
Sid the Sloth
[/list][/quote] |
|
| Back to top |
|
|
sasd
Guest
|
| Posted: Thu May 08, 2008 2:39 am Post subject: |
|
|
MEOW: My Enemies Own Waves
_____________________________________
Sid the Sloth |
|
| Back to top |
|
|
|
|
You can post new topics in this forum
You can reply to topics in this forum
|
Powered by phpBB © 2001, 2005 phpBB Group
|
FAQ
Search
Memberlist
Register
Profile
Log in to check your private messages
Log in
