Wednesday, 26 June 2013

Website Keylogging and Sniffing Techniques

Today – I’m gonna show you Website Keylogging & Sniffing Techniques. Well I don’t mean Computer keylogger okay…! I hope you’ve heard about Javascript Keylogger, & the special thing in this Post is that we will teach you how Ethical Hacker harvest information of  Computer, Network & steals personal Information of Computer & users. This tricks isn’t much rocking & cool, but a Hacker must know website keylogging and Sniffing Techniques.


1. Website Keylogger

I hope you’ve heard about keyloggers,  Keyloggers are malwares and trojans that records victims Personal Computer activities and sends Screenshots, Key Strokes to an attacker, so an attacker hack his Computer. Basically this methods comes under Social Engineering. SET is an important part of Hacking. Well, in this method m gonna show you how can an attacker create a javascript keylogger and records keystrokes. Okay before I start this tutorial, I want to tell some advantage and disadvantages of this Trick.


# The advantage of this method is simply an attacker doesn’t require any type of software, trojan or any keylogger malware generator, It’s simple just code your script and send it to Victim.
# Disadvantage is : this method is only used in XSS Vulnerability Exploitation only to records HTTP Packets and keystrokes of normal users, it can also used in normal case to record keystrokes but not useful, but then also I want to share this tricks with you all.


# Requirements :




How to do key-logging using Javascript ?

      As, I told you this method is commonly used in XSS Exploitation to record victims keystrokes but you can also use it in normal mode but not useful. Just follow the below steps.

  • Download Javascript Key-logger Script.

  • Get free hosting and Domain on 000webhost.com

  • Upload all files in file manager and host it on Internet

  • Aftell all open your website and when you’ll see that website is showing something Error, well you can also Edit something in HTML File and add some Contents in it, but basically i created it just for Keylogging.

  • So, Again refresh that Page and Type any button in your keyboard or any statement.

  • Well, now go to your file manager and you’ll see one .txt file with the name of IP (It’s an IP of Visitors) whoever visits your website, I mean Key-logging website.

  • Now, when you’ll open it you’ll see the statement and keywords you’ve typed. It is called Javascript Keylogging



  • Well this trick is just awesome when you having XSS Vulnerable websites, so this scripts can record every chat, Keyword of victims. you can steal Passwords, Chats, Credit card details and personal Info’s.




2. Sniffing Techniques 



           This is one of mine favorite technique to sniff and harvest Personal Data of any Computer users, well let’s start it, in previous post of Sniffing I’d thought you only IP Sniffing Techniques but today I’ll teach you more sniffing techniques to steal personal data of Computer user such as Computer name, Host, IP, Server Agent, OS name and Version, etc.. this all info can harvest more information about any normal PC users Cyber Crime uses this techniques to Investigate and harvest information about Criminals. So let’s start.



# Requirements :

Okay, as I told you this Sniffer will sniff victim Computer name, Host, IP, Server Agent, OS name and Version, etc.. It’s cool Script. Follow the below steps.

# How to Sniff ?





  • Create free Web Hosting A/c on 000webhost.com

  • Download Sniffing Script

  • Upload all script in your File manager

  • Mak your Victim fool or Compromise your victim to click on your Sniffing Website link.

  • After all once your Victim will click on your Link, he will be redirected to your Sniffing Link and the Sniffer will Sniff all info of Victims computer.

  • And now just go back to your file manager Directory of your web host and you’ll see a new file with the name of “iplog” Just open it and you’ll get Sniffed Data like this:







0 comments:

Post a Comment