Jump to content


Photo

Keylogger

Module


This topic has been archived. This means that you cannot reply to this topic.
116 replies to this topic

#41 Deathstormer

Deathstormer
  • Active Members
  • Hak5 Fan

  • PipPip
  • 22 posts

Posted 14 April 2012 - 06:19 AM

Has anyone else had an issue with this not logging all keys entered?

I.E with the gmail template, i enter Bill as the username, Smith as the Password.

all i see in the Keylogger interface is.

* gmail
* Keys
> mih -which should really be Smith.

Any Ideas?

#42 Whistle Master

Whistle Master
  • Pineapple Moderators
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 769 posts

Posted 14 April 2012 - 09:25 AM

the issue may be because javascript is not fast enough to get all the keys from the beginning.

Whatever, I'm currently working on a generic version which does not use templates but ettercap. I'm still getting some problems with ettercap though :o

Paypal: Donate Link
Bitcoin: 
1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#43 Vulture

Vulture
  • Active Members
  • Hak5 Fan ++

  • PipPipPipPip
  • 83 posts

Posted 15 April 2012 - 09:22 AM

WM,

Got another idea I will try tonight and update you on the progress. I believe we are very close and it may actually be the built of ettercap we are using.

#44 Sebkinne

Sebkinne
  • Root Admin
  • WiFi Pineapple Developer

  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 2,872 posts

Posted 15 April 2012 - 11:19 AM

I had ettercap working.

Will report back soon.

Best,
Sebkinne

#45 Vulture

Vulture
  • Active Members
  • Hak5 Fan ++

  • PipPipPipPip
  • 83 posts

Posted 15 April 2012 - 01:25 PM

Sebkinne,

That is amazing news, if you wouldn't mind after you release the details to explain why it didn't work WM and myself have been working on this with no progress or understanding of why it does not seem to function, and I found little on other sites detailing the issue.

#46 Whistle Master

Whistle Master
  • Pineapple Moderators
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 769 posts

Posted 15 April 2012 - 02:20 PM

Sebkinne,

That is amazing news, if you wouldn't mind after you release the details to explain why it didn't work WM and myself have been working on this with no progress or understanding of why it does not seem to function, and I found little on other sites detailing the issue.

I totally agree :P Everything is ready, just waiting for a solution for ettercap working!

Paypal: Donate Link
Bitcoin: 
1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#47 shadowmmm

shadowmmm
  • Active Members
  • Hak5 Fan ++

  • PipPipPipPip
  • 90 posts

Posted 21 April 2012 - 12:48 AM

still sooooooooooooooooo looking forward to this :)

#48 Whistle Master

Whistle Master
  • Pineapple Moderators
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 769 posts

Posted 21 April 2012 - 01:15 AM

We still have issue with ettercap :mellow: We are working on it with Seb.

Paypal: Donate Link
Bitcoin: 
1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#49 ON-jOlt

ON-jOlt
  • Active Members
  • Newbie

  • 7 posts

Posted 23 April 2012 - 07:08 PM

i've not completely familiarized myself with the pineapple, i know enough about it. I just put OpenWRT on a TP-Link MR3020 (the one they use for PirateBox) and thought to myself im going to make it more like a pineapple.

I digress, could you not just route them through a proxy that, instead of injecting an ad, you inject the JS. have the ajax point to HTML5 socket or nodeJS, hell you may even be able to open an XMLHttpRequest to "<anydomain-like-google.com/pineapple/kl" then just filter (regex) the request at the proxy for "/pineapple/kl" and redirect it to wherever you want to run it. I do XSS hacking this way alot.

Just my 2 cents, they do this kind of JS for logging mouse movements and keys on OWA (OpenWebAnilitics) and piwik and store it in DB so you can replay a session, its sick.

#50 hakatta

hakatta
  • Active Members
  • Newbie

  • 7 posts

Posted 28 May 2012 - 10:45 PM

Did I miss something, I cant find keylogger in the Module system. I have a Mk4 running v2.1.

Thanks

#51 Whistle Master

Whistle Master
  • Pineapple Moderators
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 769 posts

Posted 29 May 2012 - 01:12 AM

The first version of the keylogger module is not available because I currently trying to make a v2 with ettercap, but still having issue with it :mellow:

Paypal: Donate Link
Bitcoin: 
1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#52 KiatoGS

KiatoGS
  • Active Members
  • Hak5 Zombie

  • PipPipPipPipPip
  • 221 posts

Posted 21 June 2012 - 04:56 PM

Is there any progress with this module?? WM i am really hoping you are steel working on it because it sounds just PERFECT!

Is there any way of installing v. 1.1?? It has all I need ;)

Edited by Giannhs, 21 June 2012 - 05:00 PM.

KiatoGS


#53 thaihenry

thaihenry
  • Active Members
  • Hak5 Fan

  • PipPip
  • 29 posts

Posted 21 June 2012 - 06:24 PM

Instead of using ettercap, (the filters don't work properly) use sslstrip to write an iframe in the response body. If you provide me with your java script code, I can modify sslstrip for you to do that, so that your sslstrip module will also do key logging!

This can also be taken further to do all kinds of things like for example sending users to a computer running metasploit, set etc.

while you are at it might as well do a SET module since I have SET working on my router.

#54 Whistle Master

Whistle Master
  • Pineapple Moderators
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 769 posts

Posted 22 June 2012 - 12:33 AM

To be honest, I did not give a try since quite a long time :unsure: I have everything ready but I need to investigate some stuff with Seb on ettercap. You are right thaihenry, this could also be done with a modified version of sslstrip, I will give it a try.

Paypal: Donate Link
Bitcoin: 
1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#55 Crazy52

Crazy52
  • Active Members
  • Hak5 Fan

  • PipPip
  • 20 posts

Posted 22 June 2012 - 02:26 AM

ive had more luck with ajax keyloggers than java

#56 Whistle Master

Whistle Master
  • Pineapple Moderators
  • Hak5 Ninja

  • PipPipPipPipPipPipPip
  • 769 posts

Posted 22 June 2012 - 04:20 AM

This is a ajax keylogger but the injection with ettercap does not work at the moment. This is what I have to investigate.

Paypal: Donate Link
Bitcoin: 
1LvG9XXXUeiHPM5Cq1SzV7LoAQ5Pn63LMe


#57 KiatoGS

KiatoGS
  • Active Members
  • Hak5 Zombie

  • PipPipPipPipPip
  • 221 posts

Posted 22 June 2012 - 09:07 AM

Is it possible to make the v 1.1 available again until the release of v 2?

I think v 2 will become pineapple's top module ;)

KiatoGS


#58 Anton

Anton
  • Active Members
  • Hak5 Zombie

  • PipPipPipPipPip
  • 145 posts

Posted 22 June 2012 - 09:33 AM

Is there a module out there that will dump all traffic for every one connected to the pineapple to a file so i can open it in say wire shark or something like that latter?

Scotland_240-animated-flag-gifs.gif

1315848720480J32.jpg"Don't look for the router, Become the router" - The WiFi Pineapple1315848720480J32.jpg

01110100 01110010 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100


#59 Molotof

Molotof
  • Active Members
  • Hak5 Zombie

  • PipPipPipPipPip
  • 152 posts

Posted 22 June 2012 - 10:03 AM

Is there a module out there that will dump all traffic for every one connected to the pineapple to a file so i can open it in say wire shark or something like that latter?



Yes for sure it is call tcpdump it will capture all traffic and put it in a pcap file for your wireshark pleasure, but SSL traffic is going to be useless, so run sslstrip with it to have an all seeing eye :)

#60 Anton

Anton
  • Active Members
  • Hak5 Zombie

  • PipPipPipPipPip
  • 145 posts

Posted 22 June 2012 - 02:45 PM

getting an error with tcpdump "/usb/modules/tcpdump/tcpdump.sh: line 2: tcpdump: not found" is there a guid on how to use this any where?

Cheer Molotof.

Scotland_240-animated-flag-gifs.gif

1315848720480J32.jpg"Don't look for the router, Become the router" - The WiFi Pineapple1315848720480J32.jpg

01110100 01110010 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100 01101111 01101100