[TUT] Full Keylogging Tutorial- noob friendly + pics

[TUT] Full Keylogging Tutorial- noob friendly + pics

01-11-2010, 07:08 PM (This post was last modified: 02-21-2010 10:17 PM by No_Brains.) Post: #1

No_Brains  Grey Hat Hacker Posts: 458 Joined: Oct 2008 Reputation: 16

Complete Keylogging Tutorial: --------This Tutorial is for education purposes only---------- --------PLEASE COMMENT SO THIS THREAD STAYS ALIVE---------- -----UPDATED FEB 21 2010------- Hey members of Hackforums, today i will teach how to successfully create, crypt, set-up, and distribute a keylogger. This tutorial is very simple and very noob friendly. The keylogger will be updated using FTP (in my opinion it is more reliable and easier to understand than gmail keyloggers.) Tip: Make a folder on your computer that your Anti-virus does not scan. This will prevent your server from getting deleted. Tip: Look at the downloads section at bottom for faster learning Step One: Get the Keylogger For this tutorial i will use VicSpy 2008 keylogger available here: http://www.hackforums.net/showthread.php?tid=11530 Although this user has very few posts, the file is safe to download. Step Two: Setting up FTP server: Go to http://0catch.com/ and set up a free website with them. This website (in my experience) does not shut down illegal content because i honestly think they don't care. Also it is very easy to use especially for ftp. This website is not reliable for setting up a website because it contains many ads. Step Three: Getting an FTP client: Download this FTP client called Filezilla. Its free and easy to use: http://filezilla-project.org/ Step Four: Setting up the Keylogger **I highly recommend you have a no-scan folder for this part because your anti-virus will pick up on the virus.** Open up Peditor in the VicSpy folder you recently downloaded. In this step we will set up the FTP information used by the keylogger to send you logs. Quote:ftp://user:pass@ftp.example.com/logs/ The proper format for your FTP information is set up in the above format. For example, lets say i created an account called "Hacker" using 0catch with the password "Password". The format for the peditor will be Quote:ftp://Hacker.0catch.com:Password@0catch.com/logs/ Next, specify a reconnect time (how frequently the log will be updated); i set it differently depending on my target. I recommend 5 minutes. I also recommend hitting the "Melt" command. DO NOT PRESS CREATE YET!!! We will now test to make sure it works. Step Five: Testing the Keylogger Open up Filezilla, we will now update our website to include the folder "logs" where the files will be stored by Vicspy. In "Host" type in "http://0catch.com/" in the "username" field type in "yourusername.0catch.com" in "Password" type in your password and the port number is 21. Connect to your FTP server and right click in the write and field of the program (where is shows you your sites files.) Right click and hit "Create New directory". Name it "/logs/" (remember to omit the " ") After doing so disconnect from your FTP client (pressing the red X icon at the top in the tool bar) and switch back to Peditor. Hit the "test" button beside your FTP information and wait until you get a response. If it says "OK" then a file was created on your FTP server. Go back onto your FTP server and see if a file called "Test" was created in the folder logs. If it worked, then continue to next step, if not then review and see what you did wrong. Step Six: Crypting the Keylogger You can now create the keylogger server. Refer to my above, repeated tip or else your file will get deleted. You can optionally change the icon, name and even bind a file to your keylogger. That is all self explainable. After creating the keylogger, downloadhttp://www.hackforums.net/showthread.php?tid=221325 by Soul Collector. This is a great application that will attach a UD (some even FUD) stub to your keylogger. Open up "Infinity Crypter" select your server file you just created, then specify one of the stubs included with his program. Some are FUD, and some are partially UD. It is up to you to pick anyone you want. I first used Stub 6. So after doing the above, hit "Crypt" and wait until you get a response. Congratulations! You have created your first UD keylogger. To test how UD it is. go to http://www.novirusthanks.org/ and submit your file. Make sure you tick off "Do not distribute my sample." After waiting for the site to scan your file, you can determine if you did everything correctly. If the file is not UD, then attach a different stub to your original file. EDIT: Aprrantely the original link used has been locked so here are so more ways to get your virus crypted: http://www.hackforums.net/forumdisplay.php?fid=138 (free crypting service) http://www.hackforums.net/showthread.php?tid=175004 (create FUD stubs) If you want any other methods, just organize my most viewed results in the Cryptography, Encryption, and Decryption section. Step Seven: Extras: Security, Further Testing, and Neatness **These next step are optional but HIGHLY recommended. Download a proxy. Only check your FTP server using a proxy just in case, also, subscribe for 0catch.com using a proxy also. You do not need to do this, but i recommend it. I use Hotspot Shield: http://www.hotspotshield.com/ great proxy that allows all your internet activity to be hidden. I will not show you how to install or set this up because its very simple. Also, you can change the icon of your server. The problem with this sometimes is that some AV's pick up on programs with manuplitated icons, so this next part is up to you. Download Icon Changer, http://www.shelllabs.com/ I suggest you torrent the complete version. After installing, right click on your file, and press "Change Icon." The way to make sure your Virus stays UD is by downloading FUD icons, i do not know much about these so that is up to you. FINAL TESTING: This will make sure 100% that your program works after all the work you have done. Download Sandboxie:http://www.sandboxie.com/ install in (and in my opinion) add it as an exception on your AV because your AV will most likely pick it up and delete it. After installing, right click your file and hit "Run Sandboxed." In your Icon Tray (near time on windows) you will see a yellow triangle icon, open that up and you should see your keylogger running. DO NOT WORRY your not infected. To test your keylogger, right click notepad and run in sandbox. Type stuff into notepad, try doing the same with firefox. Wait for your log to get updated (the reconnect time) and check your FTP server. You should see your file there, if not, wait a little longer. If its not there within 30 minutes (unless your reconnect time is different) you did something wrong. When your done your testing, hit "File" "Terminate all programs" under sandboxie. I Also suggest you create a new email account if you don't already have a hacking or spam one. Step Eight: Spreading Methods:  * Soon to be added, but its really up to who your spreading it to. There You Go! You should have learned: - How to create a keylogger - Set up an FTP server - Access your FTP server and edit files - Make your keylogger FUD - Use a proxy Hopefully this was easy enough for you to understand. I spent a lot of time writing this. Also, some recognition should go out to the following users: d4rktrooper788 (my hacking buddy) 3 4 1 (uploaded vicspy) Soul Collector (for the crpyter). Downloads: * The following are links and software i used throughout this tutorial: http://www.google.com (your best friend + all pics from google) http://www.hackforums.net/showthread.php?tid=11530 (Keylogger) http://www.hackforums.net/showthread.php?tid=221325 (crypter) http://www.novirusthanks.org/ (Virus Scanner) http://www.hotspotshield.com/ (Proxy) http://www.sandboxie.com/ (Sand Box) http://filezilla-project.org/ (FTP client) ----UPDATE---- For those of you who are impatient and do not want to spend all this time setting up and FTP server etc, another REALLY fast way to keylog is looking through hackforums and downloading some free FUD gmail keylogging application. Just look through the site and you will find lots of home made application. They are very easy to use and i will not write a specific link because if everyone uses the same one it will not stay FUD anymore. Other Things to Read:  http://www.hackforums.net/showthread.php?tid=175004 by Verbal is 133T, another good tutorial on how to create FUD applications. Please Comment, Rate, and appreciate my effort so this thread doesn't die! If you have any questions, post so here. Also, if you see an error in my tutorial, say so so i may update it ASAP. [Grammar Nazi] Hacking since 1939