Skip navigation

Finding the keylogger hooks, part 1

Finding the keylogger hooks, part 1: Windows Performance Toolkit: Spyware Detection
Finding the keylogger hooks, part 1: Windows Performance Toolkit: Spyware Detection

A keylogger will most likely NOT be named "KeyLogger.exe" it will hide behind a common Microsoft service name such as "svchost.exe" or some other name. It is because of this hiding that you will want to look at what processes where active during the time you performed a key press and by looking at the CPU call stack information you will see Windows Hook APIs and structs, the word "Hook" is commonly used for grabbing your key presses.

Resume Transcript Auto-Scroll
Skill Level Intermediate
55m 6s
Duration
13,536
Views
Show More Show Less
Skills covered in this course
Development Tools Developer Windows

Continue Assessment

You started this assessment previously and didn't complete it. You can pick up where you left off, or start over.

Start My Free Month

Start your free month on LinkedIn Learning, which now features 100% of Lynda.com courses. Develop in-demand skills with access to thousands of expert-led courses on business, tech and creative topics.

Start My Free Month