From the course: Windows Performance Toolkit: Spyware Detection
Unlock the full course today
Join today to access over 22,400 courses taught by industry experts or purchase this course individually.
Looking at a keylogger - Windows Tutorial
From the course: Windows Performance Toolkit: Spyware Detection
Looking at a keylogger
- [Instructor] In the exercise files folder for this video, you'll see a folder named keylogger. Double-click on it to open it up, then double-click on bin, then Win32, then release. Inside the release folder, let's right-click on SVC host dot EXE, and select create shortcut. Now, SVC host is the same name of a Windows background service that you commonly see in the task manager. This is the keylogger disguised in order to avoid detection. Let's drag-and-drop the shortcut over to the desktop for easier access. Now, if you don't have access to the exercise files, don't worry. We go over the source code later in the course, so you can create your own Win32 project inside Visual Studio, and copy the source code that you see on screen into your own project. For now, let's see this keylogger in action. First, I'm going to double-click on the desktop shortcut, and it looks like nothing happened, but the application did launch. It was quick, but if we open up our task manager, we can see…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Contents
-
-
-
Looking at a keylogger4m 6s
-
Looking at the keylogger source code, part 14m 45s
-
Looking at the keylogger source code, part 24m 44s
-
Looking at the keylogger source code, part 34m 57s
-
Gathering keylogger evidence setup1m 55s
-
Gathering keylogger evidence4m 23s
-
WPA and symbol loading1m 49s
-
Finding the keylogger hooks, part 13m 12s
-
Finding the keylogger hooks, part 23m 13s
-
Finding the keylogger hooks, part 33m 27s
-
Finding the keylogger hooks, part 44m 41s
-
Finding the keylogger hooks, part 51m 51s
-
Keylogger deletion2m 36s
-
-