Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/anishvedant/hidden-keylogger

The provided code demonstrates techniques for gathering system and network information, capturing user activity, and encrypting data. It includes encryption and decryption scripts that use AES symmetric encryption. The project is designed for educational purposes to showcase how such tools operate and to highlight the importance of ethical use.
https://github.com/anishvedant/hidden-keylogger

aes-encryption browser-history clipboard-history cybersecurity-tools ethical-hacking-tools hacking-tools information-gathering keylogger-email keylogger-python keylogger-screenshot keylogger-stealer monitoring-tool network-analysis network-monitoring network-security python-script security-automation security-scanner security-tools system-information

Last synced: 9 days ago
JSON representation

Host: GitHub
URL: https://github.com/anishvedant/hidden-keylogger
Owner: anishvedant
License: mit
Created: 2024-06-19T04:39:52.000Z (7 months ago)
Default Branch: main
Last Pushed: 2024-06-21T04:48:22.000Z (7 months ago)
Last Synced: 2024-11-06T15:54:33.305Z (about 2 months ago)
Topics: aes-encryption, browser-history, clipboard-history, cybersecurity-tools, ethical-hacking-tools, hacking-tools, information-gathering, keylogger-email, keylogger-python, keylogger-screenshot, keylogger-stealer, monitoring-tool, network-analysis, network-monitoring, network-security, python-script, security-automation, security-scanner, security-tools, system-information
Language: Python
Homepage:
Size: 26.3 MB
Stars: 2
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
- Code of conduct: CODE_OF_CONDUCT.md
- Security: SECURITY.md

Awesome Lists containing this project

README

# Hidden-Keylogger

This project is an educational tool designed to monitor various aspects of a computer system, including clipboard data, system information, browser history, connected devices, network information, and keystrokes. It also captures screenshots periodically. The gathered data is encrypted and can be sent to a remote server. A separate decryption program is provided to decrypt the data. The project includes two primary scripts:

**Keylogger.py** - Gathers system information, network details, and browser history, captures keystrokes and screenshots, and encrypts the data
**Decrypter.py** - Decrypts the encrypted data produced by keylogger.py

## Features

- Clipboard monitoring
- System information gathering
- Connected devices information
- Network information
- Browser history extraction
- Screenshot capturing
- Keystroke logging
- Symmetric Data encryption
- Sending encrypted data to a server

## Requirements

To run this project, you need to install the following dependencies:

- psutil
- pynput
- pyautogui
- clipboard
- cryptography
- requests
- sqlite3

Install the required libraries using:

```bash
pip install -r requirements.txt
```

# Explanation

## Data Gathering and Logging (Keylogger.py)
### Encryption and File Transfer:

* symmetric_encrypt(data, key): Encrypts data using a symmetric key (AES) with CFB mode and a random IV.
* send_file(file_path, url): Sends a file to a specified URL using an HTTP POST request.

### Clipboard Monitoring:
* copy_clipboard(): Copies clipboard content to a file.
* refresh_clipboard(): Monitors clipboard changes every 2 seconds.

### System Information:
* gather_system_information(): Gathers detailed system information and writes it to a file.
* gather_connected_devices(): Collects information about connected devices and writes it to a file.
* gather_network_information(): Retrieves network information and writes it to a file.

### Browser History:
* gather_browser_history(): Extracts browser history from the Chrome browser and writes it to a file.

### Screenshot Capturing:
* capture_screenshot(): Takes screenshots every 30 seconds and saves them in a folder.

### Keylogger:
* write_file(key): Writes key presses to a file.
* write_letters_file(key): Writes only letter key presses to a separate file.
* on_press(key), on_release(key): Handle key press and release events.

### Encrypt Files and Folder:
* encrypt_files(): Encrypts specific files using symmetric encryption.
* encrypt_screenshots_folder(): Compresses the screenshots folder and encrypts it.

### Send Encrypted Files to Server:
* send_files_to_server(): Sends encrypted files to a remote server.

## Decryption Program (Decrypter.py)
### Decrypt Files and Folder:
* symmetric_decrypt(data, key): Decrypts data using a symmetric key (AES) with CFB mode and a random IV.
* decrypt_files(): Decrypts encrypted files using the symmetric key.
* decrypt_screenshots_folder(): Decrypts and extracts the screenshots folder.

# Usage
## Setting Up
1. Clone the repository
```bash
git clone https://github.com/anishvedant/Hidden-Keylogger.git
cd Hidden-Keylogger
```

2. Install the required packages
```bash
pip install -r requirements.txt
```

## Running the Main Script
1. Start the main script
```bash
python3 Keylogger.py
```

After the encrypted files are generated, run the decrypter program.

## Running the Decryption Program
1. Start the decryption program:
```bash
python3 Decrypter.py
```

# Screenshots

https://github.com/anishvedant/Hidden-Keylogger/assets/73393671/31cec229-07b6-42c2-81c5-27d21ce47a98

| ![Screenshots/Browser history & Connected Devices](https://github.com/anishvedant/Hidden-Keylogger/blob/main/Screenshots/Browser%20history%20%26%20Connected%20Devices.png)
|:--:|
| ***Browser History & Connected Devices*** |

| ![Clipboard Data](https://github.com/anishvedant/Hidden-Keylogger/blob/main/Screenshots/Clipboard%20Data.png)
|:--:|
| ***Clipboard data*** |

| ![Database is locked](https://github.com/anishvedant/Hidden-Keylogger/blob/main/Screenshots/Database%20is%20locked%2C%20if%20the%20browser%20is%20running.png)
|:--:|
| ***Database is locked*** |

| ![Enc are encrypted files](https://github.com/anishvedant/Hidden-Keylogger/blob/main/Screenshots/Encrypted%20files%20after%20encryption.png)
|:--:|
| ***Encrypted files (enc) are created after encryption*** |

| ![Files are encrypted and new files are created](https://github.com/anishvedant/Hidden-Keylogger/blob/main/Screenshots/Files%20are%20encrypted%20and%20new%20files%20are%20created.png)
|:--:|
| ***Files are encrypted and new files are created*** |

| ![Files created](https://github.com/anishvedant/Hidden-Keylogger/blob/main/Screenshots/Files%20Created.png)
|:--:|
| ***Files Created*** |

| ![Keylogger capturing only alphabets and capturing all keys](https://github.com/anishvedant/Hidden-Keylogger/blob/main/Screenshots/Keylogger%20with%20only%20alphabets%20and%20one%20with%20all%20keys%20captured.png)
|:--:|
| ***Keylogger capturing only alphabets and capturing all keys*** |

| ![System info & Network info](https://github.com/anishvedant/Hidden-Keylogger/blob/main/Screenshots/System%20info%20%26%20Network%20info.png)
|:--:|
| ***System info & Network info*** |

# Limitations

* Handling of Keystrokes: Currently, the combination of keystrokes with Ctrl is not handled properly.
* Numeric Numpad: Numeric numbers on the numpad cannot be captured properly.
* Resource Usage: The script could be optimized to use fewer system resources and be more efficient.
* Stealth Mode: Can be made to run in the background and undetectable.
* Browser History Access: Current implementation might not work if the browser's database schema changes or if multiple profiles are used.

# Scope for Improvements
1. Email Notifications: Implement a feature to send collected data to an email address periodically or receive an alert once the contents are received by the server.
2. Optimization: Reduce resource usage and improve efficiency.
3. Stealth Mode: Enhance stealth capabilities to avoid detection by antivirus software.
4. Enhanced Keystroke Logging: Improve handling of special key combinations and numeric numpad entries.
5. Executable File: Convert the script into an executable file that can run in the background and undetectable.
6. Cross-Platform Support: Extend compatibility to other operating systems like macOS and Linux.

# Browser History Gathering

The gather_browser_history function is trying to get the browser history by using the tasklist command. However, the tasklist command does not provide browser history. It only lists the currently running tasks or services in your system. If you want to gather browser history, you would need to access the SQLite databases that browsers like Chrome and Firefox use to store history data. This is a complex task and involves understanding the database schema used by each browser. Also, it's important to note that accessing browser history without user consent can be a violation of privacy.

To access chrome's history (this will only work if Chrome is not currently running, as the database will be locked otherwise) this code opens the history SQLite database that Chrome uses to store browsing history and writes each URL to a file. Note that this is a simplified example and may not work in all cases, especially if the user has multiple Chrome profiles or if the database schema changes in a future Chrome update.

# Contribution
Feel free to contribute by submitting pull requests. Ensure all contributions align with the educational purpose and ethical use of the software.

# License
This project is licensed under the MIT License.

# Disclaimer

## **Educational Purpose Only**
**This tool is intended to be used responsibly and for *educational purposes only*. The use of this software on any system or network without explicit permission from the owner is illegal and unethical. The developer is not responsible for any loss or damage resulting from the use or misuse of this software. Always follow ethical guidelines and ensure you have obtained the necessary permissions to monitor and log data on any system you use this software on.**